SideCopy Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en844
zh34
pt26
de24
ar20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

nl880
us30
pt26
de14
es2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows104
Linux Kernel24
Apache HTTP Server20
Google Android16
F5 BIG-IP14

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.020.04499CVE-2019-7550
2nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined1.360.00000CVE-2020-12440
3Huawei ACXXXX/SXXXX SSH Packet input validation7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.020.01055CVE-2014-8572
4Microsoft Windows WPAD access control8.07.9$25k-$100k$0-$5kHighOfficial Fix0.000.34346CVE-2016-3213
5Microsoft Windows Graphics Remote Code Execution7.06.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.070.01648CVE-2021-34530
6Microsoft Windows Event Tracing Privilege Escalation7.36.3$25k-$100k$5k-$25kUnprovenOfficial Fix0.010.01150CVE-2021-34487
7Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.090.25090CVE-2017-0055
8Cisco Secure Email and Web Manager Web-based Management Interface improper authentication9.89.6$25k-$100k$5k-$25kNot DefinedOfficial Fix0.020.01055CVE-2022-20798
9nginx Log File link following7.87.4$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.020.05028CVE-2016-1247
10Apache HTTP Server mod_rewrite redirect6.76.7$25k-$100k$5k-$25kNot DefinedNot Defined0.110.07767CVE-2020-1927
11Microsoft .NET Core/Visual Studio denial of service6.45.5$5k-$25k$0-$5kUnprovenOfficial Fix0.010.02427CVE-2021-26423
12Microsoft Windows TCP/IP Stack Privilege Escalation9.98.6$100k and more$5k-$25kUnprovenOfficial Fix0.050.01728CVE-2021-26424
13Microsoft Windows Event Tracing Privilege Escalation8.37.3$100k and more$5k-$25kUnprovenOfficial Fix0.040.01150CVE-2021-26425
14Microsoft Windows Bluetooth Driver Privilege Escalation8.37.3$100k and more$5k-$25kUnprovenOfficial Fix0.020.01150CVE-2021-34537
15Microsoft Dynamics 365 Privilege Escalation8.57.4$25k-$100k$0-$5kUnprovenOfficial Fix0.020.01967CVE-2021-34524
16Microsoft Windows Storage Spaces Controller Local Privilege Escalation7.86.8$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.01150CVE-2021-34536
17Microsoft Windows Graphics Remote Code Execution7.06.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.01648CVE-2021-34533
18Microsoft Windows Services for NFS ONCRPC XDR Driver information disclosure6.45.5$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.02427CVE-2021-36926
19Microsoft ASP.NET Core/Visual Studio information disclosure4.94.3$5k-$25k$0-$5kUnprovenOfficial Fix0.000.01150CVE-2021-34532
20Microsoft Windows Services for NFS ONCRPC XDR Driver information disclosure6.45.5$25k-$100k$5k-$25kUnprovenOfficial Fix0.020.02427CVE-2021-36933

IOC - Indicator of Compromise (16)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (228)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.travis.ymlpredictiveMedium
2File/.envpredictiveLow
3File/admin.phppredictiveMedium
4File/admin/?page=inmates/view_inmatepredictiveHigh
5File/admin/subnets/ripe-query.phppredictiveHigh
6File/core/conditions/AbstractWrapper.javapredictiveHigh
7File/debug/pprofpredictiveMedium
8File/dvcset/sysset/set.cgipredictiveHigh
9File/edit-db.phppredictiveMedium
10File/exportpredictiveLow
11File/file?action=download&filepredictiveHigh
12File/forum/away.phppredictiveHigh
13File/goform/aspFormpredictiveHigh
14File/hardwarepredictiveMedium
15File/installers/common.shpredictiveHigh
16File/medical/inventories.phppredictiveHigh
17File/monitoringpredictiveMedium
18File/opt/zimbra/jetty/webapps/zimbra/publicpredictiveHigh
19File/plugin/LiveChat/getChat.json.phppredictiveHigh
20File/plugins/servlet/audit/resourcepredictiveHigh
21File/plugins/servlet/project-config/PROJECT/rolespredictiveHigh
22File/replicationpredictiveMedium
23File/RestAPIpredictiveMedium
24File/tmp/zarafa-vacation-*predictiveHigh
25File/uncpath/predictiveMedium
26File/xxxxxxpredictiveLow
27File/xxxx/xxxxxx.xxx?xxx=xpredictiveHigh
28File/xxx/xxx/xxxxxpredictiveHigh
29File/xxx/xxx/xxxxxxxx.xxxpredictiveHigh
30File/xxxxxx/xxxxxx.xxxxpredictiveHigh
31File/xxxxxxxx_xxxxx/xxxxxxx/xxxxxx.xxx?x=xxxxxx_xxxxxpredictiveHigh
32File/xx-xxxx/xxxxxx/x.x/xxxxx?xxxpredictiveHigh
33Filexxxxxxx.xxxpredictiveMedium
34Filexxxxx-xxxx.xxx?xxxxxx=xxx_xxxxxxx xxxxx[x][xxx]predictiveHigh
35Filexxxxxxx.xxxpredictiveMedium
36Filexxx.xxxpredictiveLow
37Filexxxxxxx.xxxpredictiveMedium
38Filexxx/xxx/xxxx-xxxpredictiveHigh
39Filexxx/xx/xxxxxxpredictiveHigh
40Filexxxx/xxxxxxx/xxx/xxxxxx_xxxx.xpredictiveHigh
41Filexxxx-xxxx.xpredictiveMedium
42Filexxxx/xxxxxxx.xxxpredictiveHigh
43Filex/xxxxxx/xxxxx.xxxpredictiveHigh
44Filex:\xxxxxxx xxxxx\xxxxxx xxxxx\xxx\xxxxxxx.xxxpredictiveHigh
45Filex:\xxxxxxx\xxxxxxxx\xxxxxx\xxxpredictiveHigh
46Filexxx-xxx/xx.xxxpredictiveHigh
47Filexxx/xxxxxxx.xxpredictiveHigh
48Filexxxxx.xxxpredictiveMedium
49Filexxxxxx.xxxpredictiveMedium
50Filexxx_xxxxxx.xxxpredictiveHigh
51Filexxx.xxxpredictiveLow
52Filexxxxxxx.xxxpredictiveMedium
53Filexxxxxx.xxxpredictiveMedium
54Filexxxxxxxx.xxpredictiveMedium
55Filex_xxxxxxpredictiveMedium
56Filexxxxxx.xxxpredictiveMedium
57Filexxxxxxx.xxxpredictiveMedium
58Filexxxx_xxxxxx.xxxpredictiveHigh
59Filexxxxxxx/xxxxx/xxxxxx.xpredictiveHigh
60Filexxxxxxx/xxx/xxxxxxx/xxxx.xpredictiveHigh
61Filexxxxxxx/xxxx/xxxx_xxxxxxxxx_xxxxx.xpredictiveHigh
62Filexxxx_xxxxx.xxxpredictiveHigh
63Filexxxx.xxxpredictiveMedium
64Filexxx/xxxxxxxx/xxxx.xpredictiveHigh
65Filexxx/xxxxxxxx/xxx_xxxxxxxxxxxx.xpredictiveHigh
66Filexxxxxxxx.xpredictiveMedium
67Filexxxxxx.xxxpredictiveMedium
68Filexx/xxxxxxxxx.xpredictiveHigh
69Filexx/xxxxx.xpredictiveMedium
70Filexx/xxxxx/xxxxxxx.xpredictiveHigh
71Filexxxxx.xxxpredictiveMedium
72Filexxxxxxxxxx.xxpredictiveHigh
73Filexxxxxxxxxxxxx.xxxxpredictiveHigh
74Filexxxx/xxxxxxxxxxxxxxxxxxxxxxxx.xxpredictiveHigh
75Filexxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
76Filexxxxx-xxxxx.xpredictiveHigh
77Filexxxxxx_xxxxx_xxxxxxx.xpredictiveHigh
78Filexxxxxxx/xxxx.xxxpredictiveHigh
79Filexxxxx.xxxpredictiveMedium
80Filexxxxx.xxx?xx=xxxxxxxx.xxxxxxpredictiveHigh
81Filexxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxpredictiveHigh
82Filexxxx_xxxx.xxxpredictiveHigh
83Filexxxx_xxxxxx.xxpredictiveHigh
84Filexxxxxx/xxx/xxxxxxxx.xpredictiveHigh
85Filexxxxxx/xxxxx/xxxxx_xxxxxx_xxxxxx.xpredictiveHigh
86Filexxxxxxx/xx_xxx.xpredictiveHigh
87Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
88Filexxxx.xxxpredictiveMedium
89Filexxxxx.xxxpredictiveMedium
90Filexxxxx.xxxpredictiveMedium
91Filexxxxx/predictiveLow
92Filexxxxxxxxxx/xxxxxxxx.xpredictiveHigh
93Filexxxx.xpredictiveLow
94Filexxxxxxx.xxxpredictiveMedium
95Filexxxxxx_xxxxx_xxxxxxx.xpredictiveHigh
96Filexxxxxxxxxxxxxxxx.xpredictiveHigh
97Filexxx/xxxxxxxxx/xx_xxxxxx_xxx.xpredictiveHigh
98Filexxx/xxxxxxxxx/x_xxxxxx.xpredictiveHigh
99Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
100Filexxx_xx.xpredictiveMedium
101Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
102Filexxxx_xxxxxx.xpredictiveHigh
103Filexxxxxxxxx.xxx.xxxpredictiveHigh
104Filexxxxxxx.xxxpredictiveMedium
105Filexxxxxxxxxxxxx.xxxxpredictiveHigh
106Filexxxxx.xxxpredictiveMedium
107Filexxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]predictiveHigh
108Filexxxxxxxx.xxxpredictiveMedium
109Filexxxxxxx.xpredictiveMedium
110Filexxxxxxx.xxxpredictiveMedium
111Filexxxxx.xxxpredictiveMedium
112Filexxxxx.xxxpredictiveMedium
113Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
114Filexxxxxxx.xpredictiveMedium
115Filexxxx_xxx_xx.xpredictiveHigh
116Filexx_xxx.xpredictiveMedium
117Filexxx.xpredictiveLow
118Filexxxxxx.xpredictiveMedium
119Filexxxxx.xxxpredictiveMedium
120Filexxxx-xxxxxx.xpredictiveHigh
121Filexxxxxxx.xpredictiveMedium
122Filexxx/xxx_xxxxx.xpredictiveHigh
123Filexxxxxxx.xxxpredictiveMedium
124Filexxxxxxx.xxx.xx.xxxxxxxxxxx.xxxpredictiveHigh
125Filexxxxxxx/xxxxxxx/xxxxxx/xxxxxx_xxxx.xxxpredictiveHigh
126Filexxxx.xxxxxxxxx.xxxpredictiveHigh
127Filexxxxxx.xxxpredictiveMedium
128Filexxx.xxxpredictiveLow
129Filexxx.xxxxxxpredictiveMedium
130Filexxxxxx/xx/xxxx.xxxpredictiveHigh
131Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
132Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
133Filexx-xxxxxxxx/xxxxxxx-xxxxxxxx.xxxpredictiveHigh
134Filexx/xx/xxxxxpredictiveMedium
135Filexx_xxxxxxx.xpredictiveMedium
136File_xxxxxxxx/xxxxxxxx.xxxpredictiveHigh
137File~/xxxx/xxx/xxxxxxx/xxxxxxxxxx/xxxxxx.xxxpredictiveHigh
138Libraryxxxxx/xxxxxxxxx/xxxx.xxxxxxxxx.xxxpredictiveHigh
139Libraryxxxxxxxx.xxxpredictiveMedium
140Libraryxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
141Libraryxxxxxxxxxx/xxxxxxxx.xpredictiveHigh
142Libraryxxxxxxxx.xxxpredictiveMedium
143Libraryxxxxxxxxx.xxxpredictiveHigh
144Libraryxxxxxx.xxx.xxx.xxxpredictiveHigh
145Libraryxxxxxxxx.xxxpredictiveMedium
146Libraryxxxxx.xxxpredictiveMedium
147Libraryxxxxxxxx.xxxpredictiveMedium
148Libraryxxxxxxxx.xxxpredictiveMedium
149Argument-xpredictiveLow
150Argumentxxxxx.xxxxxxxxpredictiveHigh
151Argumentxxxxxx_xxxxpredictiveMedium
152ArgumentxxxpredictiveLow
153ArgumentxxxxxpredictiveLow
154Argumentxxx_xxpredictiveLow
155Argumentxxxx_xxpredictiveLow
156ArgumentxxxxxxpredictiveLow
157ArgumentxxxxxxxxxxpredictiveMedium
158ArgumentxxxxxxxpredictiveLow
159Argumentxxxxxxx_xxxx->xxx($xxxxxxxx)predictiveHigh
160ArgumentxxxxxxxpredictiveLow
161ArgumentxxxxpredictiveLow
162ArgumentxxxxxxxxxxxpredictiveMedium
163Argumentxxxxxx_xxxxpredictiveMedium
164ArgumentxxxxpredictiveLow
165ArgumentxxxxpredictiveLow
166Argumentxxxx_xxpredictiveLow
167ArgumentxxpredictiveLow
168ArgumentxxxxxxxxxxxxxxpredictiveHigh
169ArgumentxxxxxxxpredictiveLow
170Argumentxxxx_xxxxxx_xxxxpredictiveHigh
171Argumentxxxxxxxxx/xxxxxxxxxpredictiveHigh
172ArgumentxxxpredictiveLow
173Argumentxx_xxxxpredictiveLow
174ArgumentxxxxpredictiveLow
175ArgumentxxxxxxxxxxxxxxxxxxxxpredictiveHigh
176ArgumentxxpredictiveLow
177Argumentxxxxxxx/xxxx/xxxxxxxxpredictiveHigh
178ArgumentxxxxxpredictiveLow
179Argumentxxxxx/xxxxxxpredictiveMedium
180Argumentxxxx_xxxxpredictiveMedium
181ArgumentxxxxxxxxpredictiveMedium
182ArgumentxxxxxxxxpredictiveMedium
183ArgumentxxxxxxxxxpredictiveMedium
184Argumentxxx_xxxpredictiveLow
185ArgumentxxxxxxpredictiveLow
186ArgumentxxxxxxpredictiveLow
187Argumentxx_xxxxxxx_xxxxxxxpredictiveHigh
188ArgumentxxxxxpredictiveLow
189Argumentxxxxxxx_xxxpredictiveMedium
190ArgumentxxxxpredictiveLow
191ArgumentxxxxxxxxxxxxxpredictiveHigh
192ArgumentxxxxxxxpredictiveLow
193ArgumentxxxxxxpredictiveLow
194Argumentxxxxxxxx_xxxxxpredictiveHigh
195ArgumentxxxpredictiveLow
196ArgumentxxxxxxxxxxxxpredictiveMedium
197ArgumentxxxxxxpredictiveLow
198ArgumentxxxxxxxxxpredictiveMedium
199ArgumentxxxpredictiveLow
200Argumentxxx/xxxxxxxpredictiveMedium
201ArgumentxxxxxxpredictiveLow
202ArgumentxxxpredictiveLow
203Argumentxxxxxxxx-xxxxxxxxpredictiveHigh
204ArgumentxxxxxxxxxxxxxxpredictiveHigh
205ArgumentxxxpredictiveLow
206ArgumentxxxxpredictiveLow
207ArgumentxxxxxxxxpredictiveMedium
208ArgumentxxxxxxxpredictiveLow
209Argumentxxxx->xxxxxxxpredictiveHigh
210ArgumentxxxpredictiveLow
211Argument\xxxxxx\predictiveMedium
212Argument_xxx_xxxxxxx_xxxxxxx_xxxxxxxxxxxxx_xxx_xxx_xxxxxxx_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx_xxxxxxxxxxxxxxxpredictiveHigh
213Argument_xxx_xxxxxxxxxxx_predictiveHigh
214Input Value.%xx.../.%xx.../predictiveHigh
215Input Value//predictiveLow
216Input Valuexxx xxxxxxxxpredictiveMedium
217Input Valuex%xx%xxxxx%xxx=x%xxxxxxx%xxxxxxxx%xxx,xxxx(),x,x,x,x,x,x,x,x,xxxxxxxx(),x,x,x,x,x,x,x,x,x,x,x,x,x--+predictiveHigh
218Input Valuexxxxxxxxx' xxx 'x'='xpredictiveHigh
219Input ValuexxxxxpredictiveLow
220Input Valuexxxxxxx_xxxxx.xxxxxxx_xxxxxxxpredictiveHigh
221Input Value\xpredictiveLow
222Input Value….//predictiveLow
223Pattern|xx|predictiveLow
224Network PortxxxxxpredictiveLow
225Network Portxx xxxxxxx xxx.xx.xx.xxpredictiveHigh
226Network Portxxxxx xxx-xxx, xxxpredictiveHigh
227Network Portxxx/xx (xxxxxx)predictiveHigh
228Network Portxxx xxxxxx xxxxpredictiveHigh

References (5)

The following list contains external sources which discuss the actor and the associated activities:

Interested in the pricing of exploits?

See the underground prices here!