TokyoX Analysis

IOB - Indicator of Behavior (27)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en20
ru6
fr2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

MikroTik RouterOS4
phpMyAdmin4
WordPress4
Intel Baseboard Management Controller2
Alt-N MDaemon2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 Version Data version.js information disclosure5.35.1$0-$5k$0-$5kProof-of-ConceptWorkaround0.000450.21CVE-2024-4022
2Keenetic KN-1010/KN-1410/KN-1711/KN-1810/KN-1910 Configuration Setting ndmComponents.js information disclosure5.35.1$0-$5k$0-$5kProof-of-ConceptWorkaround0.000450.10CVE-2024-4021
3Sendmail E-Mail Message protection mechanism4.84.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.001730.05CVE-2023-51765
4MikroTik RouterOS FTP Request buffer overflow4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.001070.02CVE-2020-22845
5MikroTik RouterOS SMB memory corruption8.58.4$0-$5k$0-$5kHighOfficial Fix0.854760.05CVE-2018-7445
6MikroTik RouterOS Winbox/HTTP Interface privileges management7.87.8$0-$5k$0-$5kNot DefinedNot Defined0.000760.05CVE-2023-30799
7MikroTik RouterOS Winbox improper authentication8.28.0$0-$5k$0-$5kHighOfficial Fix0.974600.10CVE-2018-14847
8Yii Framework runAction sql injection6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.003910.05CVE-2023-26750
9MediaWiki Bad Image List protection mechanism4.44.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000520.05CVE-2023-36674
10ClipperCMS index.php server-side request forgery7.67.5$0-$5k$0-$5kNot DefinedNot Defined0.002830.00CVE-2022-41497
11WP Database Backup Plugin Setting cross site scripting3.63.5$0-$5k$0-$5kNot DefinedOfficial Fix0.000540.04CVE-2022-2271
12Tableau Password access control4.34.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000800.05CVE-2022-22127
13Alt-N MDaemon Worldclient injection4.94.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.000900.07CVE-2021-27182
14Intel Baseboard Management Controller memory corruption7.47.4$5k-$25k$5k-$25kNot DefinedNot Defined0.001100.00CVE-2019-11182
15Intel Baseboard Management Controller access control8.58.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.002900.00CVE-2018-12171
16Microsoft Outlook Express InetComm.dll MimeOleClearDirtyTree resource management5.35.3$5k-$25k$0-$5kNot DefinedNot Defined0.039250.05CVE-2008-5424
17phpMyAdmin PMA_safeUnserialize deserialization9.89.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.004330.00CVE-2016-9865
18phpMyAdmin Username sql injection7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.003260.00CVE-2016-9864
19WordPress Media Attachment media-upload.php access control5.45.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.001970.00CVE-2012-6634
20WordPress press-this.php Security Bypass access control4.33.8$5k-$25k$0-$5kUnprovenOfficial Fix0.000970.04CVE-2011-5270

IOC - Indicator of Compromise (1)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
131.192.107.187TokyoX03/22/2022verifiedMedium

TTP - Tactics, Techniques, Procedures (5)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
2TXXXX.XXXCAPEC-209CWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
3TXXXXCAPEC-122CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
4TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
5TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (14)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/manager/index.phppredictiveHigh
2File/ndmComponents.jspredictiveHigh
3File/xxxxxxx.xxpredictiveMedium
4Filexxxxx_xxxxxxx.xxxpredictiveHigh
5Filexxxxxxxxxxxxxxxx.xxpredictiveHigh
6Filexxxxx-xxxx.xxxpredictiveHigh
7Filexxx/xxxxxxx.xpredictiveHigh
8Filexx-xxxxx/xxxxx-xxxxxx.xxxpredictiveHigh
9Libraryxxxxxxxx.xxxpredictiveMedium
10Argumentxxxxxxx_xxxpredictiveMedium
11Argumentxxxxxxx_xx_xxxxxxxpredictiveHigh
12Argumentxxx_xxxpredictiveLow
13Argumentxxxx_xxpredictiveLow
14ArgumentxxxxxpredictiveLow

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!