SocGholish Analysis

IOB - Indicator of Behavior (603)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en592
ru4
de4
sv2
es2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us172
ru32
es16
gb4
fr4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows26
Advantech WebAccess14
Adobe Acrobat Reader14
Google Chrome10
Google Android8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192
2Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.380.25090CVE-2017-0055
3Linux Kernel emulate.c access control6.86.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.01537CVE-2017-2583
4jQuery cross site scripting4.33.8$0-$5k$0-$5kNot DefinedOfficial Fix0.030.03407CVE-2011-4969
5Microsoft Dynamics GP Privilege Escalation6.86.3$5k-$25k$0-$5kUnprovenOfficial Fix0.000.01150CVE-2022-23273
6Plesk Onyx Reflected cross site scripting5.25.2$0-$5k$0-$5kNot DefinedNot Defined0.060.01055CVE-2020-11584
7Apache HTTP Server HTTP Digest Authentication Challenge improper authentication8.58.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.130.07767CVE-2018-1312
8DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.030.06790CVE-2007-1167
9MatrixSSL TLS matrixSslDecodeTls13 integer overflow6.86.7$0-$5k$0-$5kNot DefinedOfficial Fix0.060.05634CVE-2022-43974
10Qualcomm WSA8835 WLAN Firmware buffer over-read7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.00885CVE-2022-33286
11Tenda A15 SysToolChangePwd stack-based overflow5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.030.00885CVE-2022-47116
12usememos insufficient granularity of access control6.76.6$0-$5k$0-$5kNot DefinedOfficial Fix0.130.00885CVE-2022-4813
13FlatPress Media Manager Plugin panel.mediamanager.file.php main cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.080.01018CVE-2022-4755
14PostgreSQL os command injection5.95.9$0-$5k$0-$5kHighNot Defined0.000.88202CVE-2019-9193
15Microsoft Windows Common Log File System Driver Privilege Escalation8.17.4$25k-$100k$5k-$25kUnprovenOfficial Fix0.000.01178CVE-2022-37969
16Openads Media Manager Remote Code Execution7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010.01055CVE-2007-2047
17PostgreSQL link following6.05.9$0-$5k$0-$5kNot DefinedOfficial Fix0.080.01104CVE-2017-12172
18Permalink Manager Lite Plugin Title cross site scripting4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.060.00885CVE-2022-4410
19Western Digital My Cloud insufficiently protected credentials3.93.9$0-$5k$0-$5kNot DefinedOfficial Fix0.060.00885CVE-2022-29839
20Western Digital My Cloud Encrypted Pages improper authentication3.83.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00885CVE-2022-29838

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (23)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (170)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/addnews.htmlpredictiveHigh
2File/addsrvpredictiveLow
3File/Admin/Views/FileEditor/predictiveHigh
4File/adminlogin.asppredictiveHigh
5File/article/addpredictiveMedium
6File/controller/pay.class.phppredictiveHigh
7File/dev/kmempredictiveMedium
8File/dev/snd/seqpredictiveMedium
9File/device/device=140/tab=wifi/viewpredictiveHigh
10File/goform/SetClientStatepredictiveHigh
11File/goform/SysToolChangePwdpredictiveHigh
12File/jerry-core/ecma/base/ecma-gc.cpredictiveHigh
13File/product_list.phppredictiveHigh
14File/rrps/classes/Master.php?f=delete_categorypredictiveHigh
15File/rukovoditel_2.4.1/index.php?module=configuration/save&redirect_to=configuration/applicationpredictiveHigh
16File/src/core/controllers/cm.phppredictiveHigh
17File/transmission/web/predictiveHigh
18File/uncpath/predictiveMedium
19File/usr/localpredictiveMedium
20File/usr/sbin/sendmailpredictiveHigh
21File/xxxxx/xxxxxxxxxxxpredictiveHigh
22Filexxx.xxxpredictiveLow
23Filexxxxx/?x=xxxx&x=xxxxx&x=xxxxxpredictiveHigh
24Filexxxxx/xxxxx_xxx.xxxpredictiveHigh
25Filexxxxxxxxxxxxx/xxxxxxxxxx/xxx_xxxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
26Filexxxx_xxxxxxxxx.xxxpredictiveHigh
27Filexxx/xxpredictiveLow
28Filexxxxxxxxxxxxxxxx.xxxxpredictiveHigh
29Filexxxx/xxx/xxx/xxxxxxx.xpredictiveHigh
30Filexxxxx.xxxxpredictiveMedium
31Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
32Filexxxxxxx/xxxxx/xxxx_xxxxxxxxxx.xxx?xxxx_xx=x&xxxx_xx=xpredictiveHigh
33Filexxxxxx/xxxx.xpredictiveHigh
34Filexxxxxxxxxxx/xxxxxxxpredictiveHigh
35Filexxxx/xxxxxxx/xxxxxxxx_xxx_xxxxxxxxxx_xx.xxpredictiveHigh
36Filexxxx/xxxxxxx/xxxxxx_xxxxxx_xx.xxpredictiveHigh
37Filexxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
38Filexxxxx/xxxxx/?xxxx=xxxx/xxxxxx_xxxxpredictiveHigh
39Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
40Filexxxxxx.xpredictiveMedium
41Filexxxxxxxxx.xpredictiveMedium
42Filexxxxxxx.xxxpredictiveMedium
43Filexxxxxx.xxxpredictiveMedium
44Filexxxxx_xxxx.xxxpredictiveHigh
45Filexxxx_xxxxx/xxxxxxx.xxxpredictiveHigh
46Filexxxx_xxx/xx/xxxxxxxx/xxxxxx.xxxpredictiveHigh
47Filexxxx-xxxxxxx-xxxxxx.xpredictiveHigh
48Filexxxx/xxxxxxxxxx/xxxxxx-xxxxx.xpredictiveHigh
49Filexxxxxxx.xxxpredictiveMedium
50Filexxxxxx.xpredictiveMedium
51Filexxxx_xxxxxxxx.xxxpredictiveHigh
52Filexx-xxxxxxx/xxxxxxxxxxxx/xxxxxx/xxxxx.xxxxxxxxxxxx.xxxx.xxxpredictiveHigh
53Filexxxxxxxxxxxx.xxxpredictiveHigh
54Filexxx/xxxxxx.xxxpredictiveHigh
55Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
56Filexxxxxxxx/xxx/xxx_xxxxxxx.xxxpredictiveHigh
57Filexxxxx.xxxpredictiveMedium
58Filexxxxxxx/xxxxx.xxxpredictiveHigh
59Filexxxxxxxxxx.xxxpredictiveHigh
60Filexxxxxxxxxx_xxxx.xxxpredictiveHigh
61Filexxxxxxxxx.xxxpredictiveHigh
62Filexxxxxxxxxx/xxxxx-xxxxxxxx.xpredictiveHigh
63Filexxxxxxxxxx/xxxxxxx.xpredictiveHigh
64Filexxxxxxxxxx/xxxxxxxx.xpredictiveHigh
65Filexxxxxxx.xxxpredictiveMedium
66Filexxx/xxxx/xx/xxxxxx.xxxpredictiveHigh
67Filexxx_xxxxx.xpredictiveMedium
68Filexxxxxxxx.xxxpredictiveMedium
69Filexxxxx.xxxpredictiveMedium
70Filexxx_xxxx.xpredictiveMedium
71Filexxx_xxxxxx.xpredictiveMedium
72Filexxxxxxx.xxxpredictiveMedium
73Filexxxx/xxxx.xpredictiveMedium
74Filexxxxxxx.xpredictiveMedium
75Filexxxxxxxxx.xpredictiveMedium
76Filexxxxxxx.xxxpredictiveMedium
77Filexxxxxxx.xxxpredictiveMedium
78Filexxxxx.xpredictiveLow
79Filexxxx.xxxpredictiveMedium
80Filexxxxxxx_xxxxxx.xpredictiveHigh
81Filexxx/xxx_xxxpredictiveMedium
82Filexxxxxxxxxxxxxx.xxxxxxxxxxxxxxxpredictiveHigh
83Filexxxx/xxxxxxxxxxxxxx/xxxx_xxxxxxx.xpredictiveHigh
84Filexxxxx.xpredictiveLow
85Filexxxxxx.xxxpredictiveMedium
86Filexxxxxxxx/xxxxx/xxxxxxx.xxpredictiveHigh
87Filexxxx_xxxx.xxxpredictiveHigh
88Filexxx-xxxxxxxxx.xpredictiveHigh
89Filexxxxxx/xxxx/xxxxxx/xxxxxx/xxxxxxxxxx.xxpredictiveHigh
90Filexxxxxxx:xxxxxxxxxxxxxxxxxxxpredictiveHigh
91Filexxxxxxxx.xxxpredictiveMedium
92Filexxxxxxxx/xxxxx_xxxxxpredictiveHigh
93Filexxxxxxx.xxxpredictiveMedium
94Filexx-xxxxxxx/xxxxxxx/xxxxxxx/xxxxx_xxxxpredictiveHigh
95File~/xxxxx-xxxx.xxxpredictiveHigh
96File~/xxxxx/xxxxx-xxx-xxxxx-xxxxxxx-xxxxx.xxxpredictiveHigh
97File~/xxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
98Libraryxxxxxxxxx.xxxpredictiveHigh
99Libraryxxxxxxxx.xxxpredictiveMedium
100Libraryxxxx/xxxxxx.xxxpredictiveHigh
101Libraryxxxxxx.xxxpredictiveMedium
102Libraryxxx_xxxxxx.xxxpredictiveHigh
103Libraryxxxxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
104Libraryxxxxx.xxxpredictiveMedium
105Libraryxxxxxxxxxx.xxxpredictiveHigh
106Libraryxxx/xxxxxxxxxx.xpredictiveHigh
107Libraryxxxxxxxxx.xxxpredictiveHigh
108Libraryxxxxxxxx.xxxpredictiveMedium
109Libraryxxxxxx.xxxpredictiveMedium
110Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
111Libraryxxx.xxxpredictiveLow
112Argument$xxxxx_xxxxxxxxxxpredictiveHigh
113Argument-xpredictiveLow
114Argumentxxxx_xxpredictiveLow
115ArgumentxxxxxxxxpredictiveMedium
116ArgumentxxxxxxxpredictiveLow
117ArgumentxxxxxxxxxxxxxxxpredictiveHigh
118Argumentxxxxxxx[]predictiveMedium
119ArgumentxxxpredictiveLow
120Argumentxxxx_xxpredictiveLow
121ArgumentxxxxxxxpredictiveLow
122ArgumentxxxxxxxxxpredictiveMedium
123Argumentxxx_xxxxxxxxxxxxxxxxpredictiveHigh
124ArgumentxxxxxxxxxxxpredictiveMedium
125Argumentxxxxx_xxxxxpredictiveMedium
126Argumentxxxxxxx_xxxxpredictiveMedium
127ArgumentxxxxpredictiveLow
128Argumentxxxx_xxxxpredictiveMedium
129ArgumentxxxxxpredictiveLow
130Argumentxxxx_xxxx_xxxxpredictiveHigh
131ArgumentxxxxxxxxxxxxpredictiveMedium
132Argumentxxxxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxx/xxxxxxx/xxxxxxxxxxx/xxxxxxxxxxxpredictiveHigh
133Argumentxxxxxxx_xxxxpredictiveMedium
134ArgumentxxpredictiveLow
135ArgumentxxxxxxxxpredictiveMedium
136Argumentxxxx_xxpredictiveLow
137Argumentxxxxx[xxxxxx]predictiveHigh
138ArgumentxxxpredictiveLow
139ArgumentxxxxxxxxpredictiveMedium
140ArgumentxxxxxxxxpredictiveMedium
141ArgumentxxxxxxpredictiveLow
142Argumentxx-xxxxxxxxxx-xxxxpredictiveHigh
143Argumentx_xxxxxx/x_xxxxxxxxxxpredictiveHigh
144Argumentx_xxx/xxxxpredictiveMedium
145Argumentxxx_xxpredictiveLow
146ArgumentxxxxpredictiveLow
147ArgumentxxxxxxxxpredictiveMedium
148Argumentxxxxxxxx_xxxpredictiveMedium
149ArgumentxxxxxxxxxxxpredictiveMedium
150Argumentxxx_xxx_xxxxxpredictiveHigh
151ArgumentxxxxxxpredictiveLow
152ArgumentxxxxxpredictiveLow
153ArgumentxxxxxxxxxxxpredictiveMedium
154Argumentxxxxxxx xxxxpredictiveMedium
155Argumentxxxxxxx_xxxxpredictiveMedium
156ArgumentxxxxxxxpredictiveLow
157Argumentxxxxxxxxxx_xxpredictiveHigh
158ArgumentxxxxxpredictiveLow
159Argumentx_xxxxxxxxxxxxxxxxxx/x_xxxxxxxxxxxxxxxxxxxxxxx/x_xxxxxxxxxxxxxxxxxxxxpredictiveHigh
160ArgumentxxxxxpredictiveLow
161ArgumentxxxxxxpredictiveLow
162ArgumentxxxxxxxxpredictiveMedium
163ArgumentxxxxxxxxpredictiveMedium
164Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
165Argumentxxxx_xxxxpredictiveMedium
166Argumentxxxxxx-xxx[x][xxxx_xxxx]predictiveHigh
167ArgumentxxxxpredictiveLow
168Input Value'xx''='predictiveLow
169Input Value../predictiveLow
170Input Value/xxx/xxxxxxpredictiveMedium

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!