Nexus Analysisinfo

IOB - Indicator of Behavior (621)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en510
ru34
de20
fr14
es12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft IIS4
Billing System Project4
IsolSoft Support Center4
PHP4
Joomla CMS4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Lars Ellingsen Guestserver guestbook.cgi cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.001690.06CVE-2005-4222
2Matt Wright Matt Wright Guestbook guestbook.pl cross site scripting4.34.1$0-$5k$0-$5kProof-of-ConceptUnavailable0.009910.04CVE-2006-1697
3PHP phpinfo cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.017440.12CVE-2007-1287
4PHP Link Directory Administration Page index.html cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.003990.65CVE-2007-0529
5SPIP spip.php cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001320.47CVE-2022-28959
6Joomla CMS com_easyblog sql injection6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.000001.23
7Void Contact Form 7 Widget for Elementor Page Builder Plugin void_cf7_opt_in_user_data_track cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000750.00CVE-2022-47166
8DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.021950.88CVE-2010-0966
9SourceCodester Online Flight Booking Management System POST Parameter review_search.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.001630.18CVE-2023-0283
10Responsive Menus Configuration Setting responsive_menus.module responsive_menus_admin_form_submit cross site scripting3.23.2$0-$5k$0-$5kNot DefinedOfficial Fix0.001340.04CVE-2018-25085
11TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.0107510.00CVE-2006-6168
12Intelliants eSyndiCat suggest-category.php cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.003671.63CVE-2010-4504
13MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.013021.59CVE-2007-0354
14Phorum register.php sql injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.001830.03CVE-2004-2110
15WordPress AdServe adclick.php sql injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.001770.76CVE-2008-0507
16Esoftpro Online Guestbook Pro ogp_show.php cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.001600.08CVE-2009-2447
17OpenX adclick.php redirect5.34.7$0-$5k$0-$5kUnprovenUnavailable0.003100.05CVE-2014-2230
18MilliScripts register.php cross site scripting4.34.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.005180.05CVE-2005-4161
19DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.027330.29CVE-2007-1167
20E-topbiz Viral DX 1 adclick.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.000870.15CVE-2008-2867

IOC - Indicator of Compromise (13)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.161.23.233static.233.23.161.5.clients.your-server.deNexus04/27/2023verifiedHigh
25.161.97.57static.57.97.161.5.clients.your-server.deNexus04/02/2024verifiedVery High
35.161.201.122static.122.201.161.5.clients.your-server.deNexus03/07/2023verifiedHigh
4XX.XX.XX.XXXXxxxx04/27/2023verifiedHigh
5XX.XX.XX.XXXXxxxx03/07/2023verifiedHigh
6XX.XXX.XXX.XXXxxxx04/27/2023verifiedHigh
7XX.XXX.XX.XXXXxxxx04/27/2023verifiedHigh
8XX.XXX.XX.XXXXxxxx04/27/2023verifiedHigh
9XX.XXX.XX.XXXXxxxx04/27/2023verifiedHigh
10XXX.XX.XX.XXXxxxx03/30/2023verifiedHigh
11XXX.XX.XX.XXXxxxx03/30/2023verifiedHigh
12XXX.XX.XXX.XXXxxxx04/27/2023verifiedHigh
13XXX.XX.XXX.XXXxxxx04/27/2023verifiedHigh

TTP - Tactics, Techniques, Procedures (20)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (229)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/acms/admin/cargo_types/manage_cargo_type.phppredictiveHigh
2File/admin/?page=user/manage_user&id=3predictiveHigh
3File/admin/ajax/avatar.phppredictiveHigh
4File/admin/employee_edit.phppredictiveHigh
5File/admin/fields/manage_field.phppredictiveHigh
6File/admin/optionspredictiveHigh
7File/admin/pages/yearlevel.phppredictiveHigh
8File/admin/show.phppredictiveHigh
9File/be/erpc.phppredictiveMedium
10File/bin/shpredictiveLow
11File/cgi-bin/system_mgr.cgipredictiveHigh
12File/cgi-bin/vitogate.cgipredictiveHigh
13File/ebics-server/ebics.aspxpredictiveHigh
14File/forum/away.phppredictiveHigh
15File/front/admin/tenancyDetail.phppredictiveHigh
16File/horde/util/go.phppredictiveHigh
17File/importexport.phppredictiveHigh
18File/mgmt/tm/util/bashpredictiveHigh
19File/my_photo_gallery/image.phppredictiveHigh
20File/oews/classes/Master.php?f=update_cartpredictiveHigh
21File/patient/doctors.phppredictiveHigh
22File/php-fusion/infusions/shoutbox_panel/shoutbox_archive.phppredictiveHigh
23File/phpinventory/editcategory.phppredictiveHigh
24File/phpinventory/edituser.phppredictiveHigh
25File/schedules/view_schedule.phppredictiveHigh
26File/Service/ImageStationDataService.asmxpredictiveHigh
27File/spip.phppredictiveMedium
28File/uncpath/predictiveMedium
29File/useratte/inc/userattea.phppredictiveHigh
30File/var/log/cronpredictiveHigh
31File/xxxx/xxxxxxx_xxxx_xxxx_xxxxxx_xxxxx.xxxpredictiveHigh
32File/xx/xxxxx/xxxxxxx.xxxpredictiveHigh
33File/xx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
34Filexxx/xxx.xxxpredictiveMedium
35Filexxxxxxx.xxxpredictiveMedium
36Filexxxxxx/xxxxxxx/xxx/xxx-xxxxx.xxpredictiveHigh
37Filexxxxx.xxxpredictiveMedium
38Filexxxxx.xxxxpredictiveMedium
39Filexxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
40Filexxxxx/xxx.xxxpredictiveHigh
41Filexxxxx/xxxxx-xxxxxxx-xx-xxxxxxxxxxxxxxxxxxxx-xxxxx.xxxpredictiveHigh
42Filexxxxx/xxxxx.xxx?xx=xxxxxx&xxxxxx=xxxx_xxxxxpredictiveHigh
43Filexxxxx_xxxxx.xxxpredictiveHigh
44Filexxx.xxxpredictiveLow
45Filexxxxxxxxxxxxx.xxxpredictiveHigh
46Filexxxxxxx.xxpredictiveMedium
47Filexxxxxxx.xxpredictiveMedium
48Filexxxx_xxxxxxxxxxx.xxxpredictiveHigh
49Filexxxxxx.xxxpredictiveMedium
50Filexxxx.xxxpredictiveMedium
51Filexxxxxx_xxxxxx.xxxpredictiveHigh
52Filexxxxxx-xxxxxx-xx.xxxpredictiveHigh
53Filex:\xxxxxxx xxxxx\xxxxxx xxxxx\xxx\xxxxxxx.xxxpredictiveHigh
54Filexxxxxxxx.xxxpredictiveMedium
55Filexxx-xxx/xxxxxxx.xxpredictiveHigh
56Filexxxxx.xxxpredictiveMedium
57Filexxxxx-xxxxxxx.xxxpredictiveHigh
58Filexxxxxxxx-xxx.xxxpredictiveHigh
59Filexxxxxx-xxxxx.xxxpredictiveHigh
60Filexxxxxxxxx.xxxpredictiveHigh
61Filexxxx.xxxpredictiveMedium
62Filexxxxx/xxxx/xxxxxxxxpredictiveHigh
63Filexxxxxxxxx.xxxpredictiveHigh
64Filexxxxxxxx.xxx.xxxpredictiveHigh
65Filexxxxx.xxxpredictiveMedium
66Filexxxxxxxx/xxx-xxxx.xxxpredictiveHigh
67Filexxxxxxxxxxxxxxxx/xxxxxxxxxxxxxx.xxpredictiveHigh
68Filexxxx.xxxpredictiveMedium
69Filexxx/xxxx/xxx/xxxxx_xxxx.xpredictiveHigh
70Filexxx/xxxx/xxxx.xpredictiveHigh
71Filexxxxxxxx.xxxpredictiveMedium
72Filexxxxxxxxxxxx_xxxx.xxxpredictiveHigh
73Filexxxxxx/xxxxxxxxx?xx=xxx_xxx.xxxpredictiveHigh
74Filexxxxxxxxx.xxxpredictiveHigh
75Filexxxxxxxxx.xxpredictiveMedium
76Filexxxx.xxxpredictiveMedium
77Filexxxxxxxxxxxxxx.xxxpredictiveHigh
78Filexxx/xxxxxx.xxxpredictiveHigh
79Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
80Filexxxxxxx.xxxpredictiveMedium
81Filexxxxxxx/xxxxxxx/xxxxxx.xxx.xxxpredictiveHigh
82Filexxxxxxx_xxxxx.xxxpredictiveHigh
83Filexxxxx.xxxxpredictiveMedium
84Filexxxxx.xxxpredictiveMedium
85Filexxxxxxxxxxxxx.xxxpredictiveHigh
86Filexxx.xxxpredictiveLow
87Filexxxxxxxx.xxx.xxxpredictiveHigh
88Filexxxxxxx.xxxpredictiveMedium
89Filexxxx.xxxxpredictiveMedium
90Filexxxxxxxxxxx.xxxpredictiveHigh
91Filexxxxxxx/xxx_xxxxxxxx.xxxpredictiveHigh
92Filexxx_xxxxxxxx.xxxpredictiveHigh
93Filexxxxxxxx.xxxxxxxxxxxxxxxxxxx.xxxxxxxxxxxxxxxxxxpredictiveHigh
94Filexxxxxxxxx.xpredictiveMedium
95Filexxxxxxxxx.xxxpredictiveHigh
96Filexxx_xxxx.xxxpredictiveMedium
97Filexxxxxx_xxxxxx.xxxpredictiveHigh
98Filexxxx.xxxpredictiveMedium
99Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
100Filexxxxxxxxx.xxx.xxxpredictiveHigh
101Filexxx.xxxpredictiveLow
102Filexxxxxxx_xxxxxx_xxx.xxxxpredictiveHigh
103Filexxxxxxx/xxxxxxx/xx_xxxxxxxxx/xxxxxxxx/xxxxxxxx.xxxpredictiveHigh
104Filexxxxx_xxxxxx.xxxpredictiveHigh
105Filexxxxx.xxxpredictiveMedium
106Filexxxxx.xxxpredictiveMedium
107Filexxxx.xxxpredictiveMedium
108Filexxxxx.xxxpredictiveMedium
109Filexxxxx_xxxx_xxxx_xxxx.xxxpredictiveHigh
110Filexxxxxxxx.xxxpredictiveMedium
111Filexxxxxxxx_xxxxxx.xxxpredictiveHigh
112Filexxxxxxxxxx_xxxxx.xxxxxxpredictiveHigh
113Filexxxxxx_xxxxxx.xxxpredictiveHigh
114Filexxxxx-xxxxxx-xx.xxxpredictiveHigh
115Filexxxxxx_xxx_xxxxxx.xxxpredictiveHigh
116Filexxxx.xxxpredictiveMedium
117Filexxxxxxxx.xxxpredictiveMedium
118Filexxxxxxxx.xxx/xxxxxx.xxx/xxxxxxxx.xxxpredictiveHigh
119Filexxxxxxx/xxxxxx.xxxpredictiveHigh
120Filexxxxx.xxxpredictiveMedium
121Filexxxxxxxxx.xxxpredictiveHigh
122Filexxxxxxx-xxxxxxxx.xxxpredictiveHigh
123Filexxxxxxx-xxxxxxx.xxxpredictiveHigh
124Filexxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
125Filexxxxxxxxx/xxxxx/xxxx/xxx_xxxxxxx/xxxxxxx/xxxxxxx.xxxpredictiveHigh
126Filexxxx-xxxxx.xxxpredictiveHigh
127Filexxxx-xxxxxxxx.xxxpredictiveHigh
128Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
129Filexxxx.xpredictiveLow
130Filexxxxxx.xxxpredictiveMedium
131Filexxxxxxxxx.xxxpredictiveHigh
132Filexx-xxxxxxxx/xxxxx-xx-xxxxxx-xxxxxx.xxxpredictiveHigh
133Filexxx/xxxxxxxx/xxxxxxxx.xxxpredictiveHigh
134File~/xxxxxxx/xxxxxxx/xxxxxxxxxxxx.xxxpredictiveHigh
135File~/xxxxxxxx/xxxxxxx/xxxxx-xxxx-xxxxxxx.xxxpredictiveHigh
136Libraryxxxxxx.xxxpredictiveMedium
137Libraryxxxxxxxxxxxxxxxx.xxxpredictiveHigh
138Libraryxxx/xxxx/xxxxxxx/xxxxxxxx_xxxxxxx/xxxxxxxx.xxpredictiveHigh
139Libraryxxxxxxxxx/xxx-xxxxxx/xxxxxxxx.xxxpredictiveHigh
140Libraryxxxxxxxxx.x.x.xxx.xxxpredictiveHigh
141Libraryxxxxxxxxx.xxxpredictiveHigh
142Libraryxxxxxxxxxxx.xxxpredictiveHigh
143Libraryxxxxxxxx.xxxpredictiveMedium
144Libraryxxxxxxxxxxxx.xxxpredictiveHigh
145Libraryxxxxxxxx.xxxpredictiveMedium
146Argumentxx_xxxx_xxxxpredictiveMedium
147Argumentxxx/xxxpredictiveLow
148ArgumentxxxxxpredictiveLow
149Argumentxxxxxxx_xxpredictiveMedium
150ArgumentxxxxxxxxxpredictiveMedium
151ArgumentxxxxxxxxpredictiveMedium
152ArgumentxxxxxxxxpredictiveMedium
153Argumentxxxx_xxxpredictiveMedium
154Argumentxxxxx_xxxpredictiveMedium
155Argumentxxxx_xxxxpredictiveMedium
156Argumentxxx_xxxpredictiveLow
157Argumentxxxx_xxpredictiveLow
158ArgumentxxxpredictiveLow
159ArgumentxxxxxxxxpredictiveMedium
160ArgumentxxxxxxxxxxpredictiveMedium
161ArgumentxxxpredictiveLow
162ArgumentxxxxxxpredictiveLow
163ArgumentxxxxxxxxxxpredictiveMedium
164Argumentxxxxxx[xxxx]predictiveMedium
165ArgumentxxxxxxxxpredictiveMedium
166ArgumentxxxxxxxxxxxpredictiveMedium
167ArgumentxxxxpredictiveLow
168ArgumentxxxxxxxpredictiveLow
169ArgumentxxxxxxxxxxpredictiveMedium
170ArgumentxxxxxpredictiveLow
171ArgumentxxxxxpredictiveLow
172Argumentxx_xxxxx_xxpredictiveMedium
173ArgumentxxxxpredictiveLow
174ArgumentxxxxxpredictiveLow
175ArgumentxxxxxxpredictiveLow
176ArgumentxxxxxxxxpredictiveMedium
177ArgumentxxxxxpredictiveLow
178Argumentxxxx/xxxxpredictiveMedium
179Argumentxxxx_xxxxxpredictiveMedium
180Argumentxxxx_xxxxxxxpredictiveMedium
181ArgumentxxpredictiveLow
182ArgumentxxpredictiveLow
183ArgumentxxxpredictiveLow
184ArgumentxxxxxpredictiveLow
185Argumentxxx_xxxpredictiveLow
186Argumentxxxxx.xxx?xxxxxx=xxx_xxxxxxx/xxxx=xxxxxxx/xx=x/xxxxxxxx=xxxxxpredictiveHigh
187Argumentxxxxxxx_xxxxpredictiveMedium
188ArgumentxxxxpredictiveLow
189Argumentxxxxx_xxxpredictiveMedium
190ArgumentxxxxpredictiveLow
191Argumentxxxxxxxxxxxxx/xxxxxxxxxxxxxpredictiveHigh
192Argumentxxx_xxpredictiveLow
193Argumentxxxxxxxxx_xxxxxxxx_xxxxpredictiveHigh
194ArgumentxxxpredictiveLow
195Argumentxxxxxxx_xxpredictiveMedium
196Argumentxxxxxxxxx/xxxxxxxxxxxpredictiveHigh
197ArgumentxxxxxxpredictiveLow
198Argumentxxxxxx_xxxxxx[xxxxxx_xxxx]predictiveHigh
199ArgumentxxpredictiveLow
200ArgumentxxxxxxpredictiveLow
201ArgumentxxxxxxxxxpredictiveMedium
202Argumentxxxxxxx_xxxpredictiveMedium
203Argumentxxxxxxxx_xxxxxpredictiveHigh
204ArgumentxxxxpredictiveLow
205ArgumentxxxxxxxpredictiveLow
206ArgumentxxxxxxpredictiveLow
207ArgumentxxxxxxxxpredictiveMedium
208ArgumentxxxxxxpredictiveLow
209Argumentxxxxxx_xxxxxxpredictiveHigh
210ArgumentxxxxxxpredictiveLow
211ArgumentxxxxpredictiveLow
212ArgumentxxxpredictiveLow
213ArgumentxxxxxxxxxxpredictiveMedium
214ArgumentxxxxxxpredictiveLow
215ArgumentxxxpredictiveLow
216ArgumentxxxxxpredictiveLow
217ArgumentxxxxxxxxxpredictiveMedium
218ArgumentxxxpredictiveLow
219ArgumentxxxxxpredictiveLow
220Argumentxxxx xxxxx/xxxxxxxpredictiveHigh
221Argument_xxxxx_xxxxxxx_xxxxxxxxx_xxxxxxx-xxxpredictiveHigh
222Input Value"><xxxxxx>xxxxxx(x)</xxxxxx>predictiveHigh
223Input Value%xxpredictiveLow
224Input Value-xx%xxxxxxx%xxxxx%xxxxxxxx%xxx,@@xxxxxxx,x,x,x,x,x,x--predictiveHigh
225Input Valuex xxxxx xxx xxxxxx xxxx,xxxx,xxxx,xxxx,xxxxxx(xxxxxxxxxxxx,xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx,xxxxxxxxxxxx)--predictiveHigh
226Input Valuexxxxx"><xxxxxx>xxxxx('xxx')</xxxxxx>predictiveHigh
227Input Value\xxx../../../../xxx/xxxxxxpredictiveHigh
228Network Portxxx/xxxpredictiveLow
229Network Portxxx/xxxxpredictiveMedium

References (4)

The following list contains external sources which discuss the actor and the associated activities:

This view requires CTI permissions

Just purchase a CTI license today!