Tor2mine Analysis

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en743
zh7
es6
it2
pt2

Country

us736
cn14
ru3
au3

Actors

Tor2mine752
CopyKittens8

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Product

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTICVE
1Atlassian JIRA Server/Data Center QueryComponent!Default.jspa information disclosure5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.11CVE-2020-14179
2Lychee Message Guest.php exit cross site scripting3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2021-43675
3NetArt Media Real Estate Portal index.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.00CVE-2008-5309
4Papoo print.php sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.00
5WUSTL XNAT xml external entity reference6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-14276
6IBM WebSphere Application Server Liberty Admin Center input validation5.95.9$25k-$100k$25k-$100kNot DefinedNot Defined0.05CVE-2019-4285
7Microsoft Windows Kernel Privilege Escalation9.98.6$100k and more$25k-$100kUnprovenOfficial Fix0.00CVE-2021-34458
8Microsoft Exchange Server information disclosure5.44.7$5k-$25k$0-$5kUnprovenOfficial Fix0.07CVE-2021-41349
9Oracle MySQL Connectors Connector/C access control5.35.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-3635
10Microsoft IIS Frontpage Server Extensions shtml.dll Username information disclosure5.35.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2000-0114
11Telerik Reporting for ASP.NET WebForms Report Viewer Control cross site scripting5.24.9$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-9140
12the acf-to-rest-api Plugin Permalink information disclosure6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2020-13700
13Microsoft Windows splwow64 privileges management7.87.0$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2021-1648
14DevWorx BlogWorx view.asp sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.03CVE-2008-1915
15Quadcomm Q-Shop showcat.asp sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2004-2108
16OkayCMS ProductsView.php injection8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-16885
17PHP Arena paBugs main.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.04CVE-2007-4183
18Hispah Text Links Ads index.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.05CVE-2008-6154
19Todd Rogers PHPRecipeBook index.php sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.05CVE-2009-4883
20Module Olea Gift On Order getfile.php pathname traversal6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-9368

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsConfidence
1107.181.160.197unallocated.layer6.netTor2mineHigh
2XXX.XXX.XXX.XXXxxx-xxxxxx.xxxxxx-xx-xxxxx.xxxXxxxxxxxHigh
3XXX.XXX.XXX.XXXxxxxxxxxxx.xxxXxxxxxxxHigh

TTP - Tactics, Techniques, Procedures (6)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorConfidence
1T1059.007CWE-79, CWE-80Cross Site ScriptingHigh
2T1068CWE-264, CWE-284Execution with Unnecessary PrivilegesHigh
3TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxHigh
4TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxHigh
5TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxHigh
6TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxHigh

IOA - Indicator of Attack (374)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorConfidence
1File'phpshell.phpHigh
2File/.xsession-errorsHigh
3File/admin/general/change-langHigh
4File/Basic_Goperation_Content.aspHigh
5File/ControlManager/cgi-bin/VA/isaNVWRequest.dllHigh
6File/secure/QueryComponent!Default.jspaHigh
7File/tmpLow
8File/var/tmp/abrt/*/mapsHigh
9File/var/ypLow
10Fileaction.phpMedium
11Fileadd.aspLow
12Fileadd.phpLow
13Fileaddinterviewsform.phpHigh
14Fileadmin-files/ad.phpHigh
15Fileadmin.phpMedium
16Fileadmin/addsptemplate.phpHigh
17Fileadmin/admin.phpHigh
18Fileadmin/content.phpHigh
19Fileadmin/index.phpHigh
20Fileadmin/membership_pricing.phpHigh
21Fileadmin/picture/picture_real_edit.aspHigh
22Fileadmin/view.aspHigh
23Fileadminfoot.phpHigh
24Fileadministration.phpHigh
25Fileadvertise.phpHigh
26Fileappl/user_user/server.cHigh
27Fileapplication/classes/application.phpHigh
28Filearchiv.cgiMedium
29Filearchive_read_support_format_rar.cHigh
30Filearticle.aspMedium
31Filearticle.phpMedium
32Filearticles/edit.phpHigh
33Fileb2archives.phpHigh
34Filebase/ttinterp.cHigh
35Filebin/defaults/script/info/login.jsHigh
36Fileboard.phpMedium
37Filecategorie.php3High
38Filecategos.phpMedium
39Filecgi_test.cgiMedium
40Filecms/index.phpHigh
41FileCodeBrws.aspMedium
42Filecoders/mpc.cMedium
43Filecoders/wmf.cMedium
44Filecode_generator.phpHigh
45Filecomm.phpMedium
46Filexxxxxx.xxxMedium
47Filexxxxxx_xxxxxxxxx.xxxHigh
48Filexxxxxxxxxxxxx/xxxxxxxxxxx.xxxxxxxx.xxx.xxxHigh
49Filexxxxxxx_xxxxxxx.xxxHigh
50Filexxxxxxx.xxxMedium
51Filexxxxx.xxxMedium
52Filexxxxx/xxx/xxx_xxxx/xxxxxxxxxx/xxxxxx.xxxHigh
53Filexx_xxxx.xxxMedium
54Filexxxxxxx.xxxMedium
55Filexxxx/xxxxxxxx.xxxx.xxxxxxx.xxxHigh
56Filexxxxxx.xxxMedium
57Filexxxxxxx.xxxMedium
58FilexxxLow
59Filexxxxxxxxx.xxxHigh
60Filexxxxxxx/xxxxxx/xxxxx-xxx.xHigh
61Filexxxxxxx/xxx/xxx/xxxxxx/xxxxxxx_xxxxxx.xHigh
62Filexxxxxx.xMedium
63Filexxxxxxxx.xxxMedium
64Filexxxx.xxxMedium
65Filexxx/xxxxxxxx.xxxHigh
66Filexxxx/xxxxxxxxxx/xxxxxx-xxx.xHigh
67Filexxxxx-xxxxxx.xxxHigh
68Filexxxxxxxxx.xxxHigh
69Filexxxxxxxx.xxxMedium
70Filexxxxxxxx/xxxxxxxxxxxx/xxxxxxxxHigh
71Filexxxxxx.xxxMedium
72Filexxx/xxxx/xxxx.xHigh
73Filexxxxxxxxxxx.xxxxx.xxxHigh
74Filexxxxx.xLow
75Filexxxxxxxxxxx/xxxx.xxx?xxx[xxxx][xxxxHigh
76Filexxxxxxxx.xxxMedium
77Filexxxxxxxxx/xxxxxxx/xxxx/xxxxxxxxxxx/xxxxxxxxxxxxxx.xxxHigh
78Filexxxxxxxxxx.xx.xxHigh
79Filexxxxxxxxx.xxxHigh
80Filexxxxxxx.xxxMedium
81Filexxxxxxxxx.xxxHigh
82Filexxxxxxxxx.xxxHigh
83Filexxxx_xxxx.xxxHigh
84Filexxxx/xxxx/xxxxxxx/xxxxx_xxx.xxxxHigh
85Filexxxx_x.xMedium
86Filexx/xxxx/xxxxxxx.xHigh
87Filexx/xxxx/xxx_xxxxxx.xHigh
88Filexxxx.xLow
89Filexxx/xxx/xxxMedium
90Filexxx/xxxxxxxx.xxxHigh
91Filexxxxxxx/xxxx_xxx_xxxxxxx/xxxxx_xxxx.xxxHigh
92Filexxxxx.xxxMedium
93Filexxxxx.xxx/xxxxxxx/xxxx/xxxxxxxxxHigh
94Filexxxxxxxx.xxxMedium
95Filexxxx_xxxx.xxxHigh
96Filexxxxx-xxx.xMedium
97Filexxxxxxx.xxxMedium
98Filexxx.xxxLow
99Filexxx_xxx.xMedium
100Filexxx_xxx.xMedium
101Filexx/xxxxxxx-xxxxxx.xxxHigh
102Filexxxxx.xLow
103Filexx.xxLow
104Filexxxxxx/xxxxxxxx.xxHigh
105Filexxxxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxHigh
106Filexxxxxxxxxx/xxxx.xHigh
107Filexxxxxxxxxx/xxxxxx.xHigh
108Filexxxxxxxxxx/xxxxxx.xHigh
109Filexxxxxxxxxx/xxxx.xHigh
110Filexxxxxxxxx/xxxxxx.xxx.xxxHigh
111Filexxxxxxxxx/xxxxx/xxxxxHigh
112Filexxxxx-xxxxxx.xxxHigh
113Filexxxxx.xxxMedium
114Filexxxx.xxxMedium
115Filexxxxxxxx.xxxMedium
116Filexxxxxxxxx.xxxHigh
117Filexxxxx.xxxMedium
118Filexxxxx.xxxMedium
119Filexxxxx.xxxMedium
120Filexxxxxxxxxx/xx.xHigh
121Filexxxxxxxxxx/xxxxxx.xHigh
122Filexxxx.xxxMedium
123Filexxxx.xxxMedium
124Filexxxxxxxxx.xxxHigh
125Filexxxxxxx.xxxMedium
126Filexxxxxxxxx.xMedium
127Filexxxx.xLow
128Filexxxxxxx/xxxxxxxx/xxxxx.xxxHigh
129Filexxxxxxx/xxxxxxxx/xxxxx.xxxHigh
130Filexxxxxxx/xxxxxxx_xxxx.xxxHigh
131Filexxx_xxxxxxx_xxxxxxxx.xxxHigh
132Filexxxx.xLow
133Filexxxxxx.xxxMedium
134Filexxx.xLow
135Filexx.xxxLow
136Filexxxxxxxxxx.xxxHigh
137Filexxx/xxxxxx/xx_xxxxxx.xHigh
138Filexxxxxxxxxxx/xxxxxxxxxx.xxx.xxxHigh
139Filexxx_xxxxxx.xxxHigh
140Filexxxxx_xxxxxxxx.xxxHigh
141Filexxx/xxxxxxxxxxx.xxxxx.xxxHigh
142Filexxxxxxx.xMedium
143Filexxxxxx/xxxxx.xHigh
144Filexxxxxxx/xxxxxxx-xxx.xHigh
145Filexxxxxx.xxxMedium
146Filexxxxx_xxx.xxxHigh
147Filexxxxx_xxxxx.xHigh
148Filexxxxxxxxx_xxxxxx.xxxHigh
149Filexxxxx.xxxMedium
150Filexxx/xxxxxx/xxxxx.xxxHigh
151Filexxxxxxx.xxxMedium
152Filexxxxxx.xxxMedium
153Filexxxxxxxx.xxxMedium
154Filexxxxxxx.xxxMedium
155Filexxxxxxx/xxxxxxx/xx_xxxxxxxxx/xxxxxxxx/xxxxxxxx.xxxHigh
156Filexxxx/xxxxxxxxx.xxxHigh
157Filexxxx.xxxMedium
158Filexxxxxxx.xxxMedium
159Filexxxxx.xxxMedium
160Filexxxxxxx_xxxx.xxxHigh
161Filexxxxxxx.xxxMedium
162Filexxxxxxx_xxxxx.xxxHigh
163Filexxxxxxxxx.xxxHigh
164Filexxxxxxx/xxxxxxx.xxHigh
165Filexxxxxx.xxxMedium
166Filexxxxxx.xxxMedium
167Filexxxxxxx.xMedium
168Filexxx_xx.xxxMedium
169Filexxxxxxxxx.xxxHigh
170Filexxxxxxx.xxxMedium
171Filexxxxxxxxx.xxxHigh
172Filexxxxxxxxxx.xxxHigh
173Filexxxx.xxxMedium
174Filexxxxxx.xxxMedium
175Filexxxxx/xxx/xxxx_xxxxxxxx.xHigh
176Filexxxx_xxxx.xxxxHigh
177Filexxxxx.xLow
178Filexxx_xxxxxx_xxxxxxx.xHigh
179Filexxxxxx.xxMedium
180Filexxxxxxxxxxxx.xxxHigh
181Filexxxxxxxxxx.xxxxx.xxxHigh
182Filexxx_xxxx.xMedium
183Filexxxx-xxxxxxx_xxxxx.xxxHigh
184Filexxxxx/xxxxxxxx.xHigh
185Filexxxxxxxxx-xxxx-xxxxxx.xxxHigh
186Filexxxxxxxx/xxxxxx.xHigh
187Filexx.xxxLow
188Filexxxxxx_xxx_xxx.xxxHigh
189Filexxxx/xxxxx.xxxHigh
190Filexxxxxxx.xxxMedium
191Filexxxx.xxxMedium
192Filexxxx/xxxxxxxxxxxx.xxxHigh
193Filexxxxxxx.xxxMedium
194Filexxxxxxxxxxx.xxxHigh
195Filexxxx_xxxxx.xxxHigh
196Filexxxx_xxxxxxx.xxxHigh
197Filexxxx.xxxMedium
198Filexxx.xxxLow
199Filexxxxxxx/xxxx/xxxxx/xxx/xxxxxxxxx.xxxxxHigh
200Filexxxxxxx.xxxMedium
201Filexxxxxxxxxxxx.xxxHigh
202Filexxxxxx.xxxxxxxxxxxx.xxxHigh
203Filexxxxxx.xxxMedium
204Filexx-xxxxx/xxxxxxx.xxxHigh
205Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxHigh
206Filexx-xxxx/xxx/xx/xxxxxxx/High
207Filexxxxxxxxxxxxxx.xxxHigh
208Filexxxxx.xLow
209Filexxxx/xxxx_xxx_xxxxxx.xHigh
210Filexxxx/xxxx_xxxxxxxxx.xHigh
211Library/_xxx_xxx/xxxxx.xxxHigh
212Libraryxxxxxxxxxx/xxx/xxxxxx_xxxxxxxx/xxxx/xxxxxxx.xxHigh
213Libraryxxxxxxxx.xxxMedium
214Libraryxxxxxxxx.xxxMedium
215Libraryxxxxxxx.xxxMedium
216Libraryxxxx/xxxxxxx.xHigh
217Libraryxxxxxxxxxxxxx.xxxHigh
218Libraryxxx/xxxxxx/xxxxxx.xxxHigh
219Libraryxxx/xxxxxxxxxx/xxxxxx_xxxxxx.xHigh
220Libraryxxx/xxxxxxxxx.xxxxx.xxxHigh
221Libraryxxx/xxxxxxx.xxHigh
222Libraryxxxxxxxxxxxxxx.xxHigh
223Libraryxxxxxxxx.xxxMedium
224Libraryxxxxxxx.xxxMedium
225Libraryxxxxxx.xxxMedium
226LibraryxxxxxxxLow
227Argument$_xxxxxLow
228Argument-x/-x/-x/-x/-x/-xHigh
229ArgumentxxxxxxLow
230ArgumentxxxxxxxxxxxMedium
231ArgumentxxxxxxLow
232Argumentxx_xxLow
233ArgumentxxxxxxxLow
234ArgumentxxxxxxxxxxxxMedium
235ArgumentxxxxxxxxxxxxxxxHigh
236Argumentxxxx_xxxxMedium
237Argumentxxxxxx/xxxxxMedium
238Argumentxxxx_xxxxxxMedium
239ArgumentxxxxxxLow
240ArgumentxxxxxLow
241ArgumentxxxLow
242ArgumentxxxLow
243Argumentxxxxxxxx_xxMedium
244ArgumentxxxxxxxxxxxMedium
245ArgumentxxxLow
246ArgumentxxxLow
247Argumentxxxx/xxxxx/xxxxx_xxxxxxxxxxxHigh
248Argumentxxxxxx[xxxxxx_xxx]High
249Argumentxxxxxx[xxxx_xxxxxx]High
250Argumentxxxx[xxx_xxxx]High
251ArgumentxxxxxxxxxxMedium
252ArgumentxxxxxxxLow
253Argumentxxxxxx_xxMedium
254ArgumentxxxxLow
255Argumentxxxx_xxxxxx_xxHigh
256ArgumentxxxxLow
257ArgumentxxxLow
258ArgumentxxxxxxxxMedium
259Argumentxxx[xxx]Medium
260ArgumentxxxxxLow
261Argumentxxxxx_xxMedium
262Argumentxx_xxxxxxxMedium
263ArgumentxxxxxxxxxMedium
264ArgumentxxxxLow
265Argumentxxxxxxxxxxx/xxxx.xxx?xxx[xxxx][xxxxHigh
266ArgumentxxxxxxxxMedium
267ArgumentxxxxxxLow
268Argumentxxxx/xxLow
269ArgumentxxxxLow
270Argumentxxxxxxx[x_xxxxxxxxxxx]High
271Argumentxxxxxx_xxxxxxxxxxHigh
272Argumentxxxxx_xxMedium
273Argumentxxxxxx/xxxxxMedium
274Argumentxxxx/xxxxxxx/xxxxxxxxxHigh
275ArgumentxxxxxxxxxMedium
276ArgumentxxxxxxxxMedium
277ArgumentxxxxxxxxMedium
278ArgumentxxLow
279ArgumentxxxxxLow
280ArgumentxxxxxLow
281ArgumentxxLow
282Argumentxx_xxxxxx_xxxxxxHigh
283Argumentxx_xxxxxMedium
284ArgumentxxxxxxxLow
285ArgumentxxxxLow
286ArgumentxxxxxxxLow
287Argumentxxxx_xxxxMedium
288Argumentxx_xxxxxxxMedium
289Argumentxxx_xxxLow
290Argumentxxxx/xxxMedium
291ArgumentxxxxxxLow
292Argumentxxxxxxx_xxMedium
293ArgumentxxxxxxxxMedium
294ArgumentxxxxxxxxxxxMedium
295ArgumentxxxxxxxxxMedium
296ArgumentxxxxLow
297ArgumentxxxxxxLow
298ArgumentxxxxxLow
299Argumentxxxxxxxxx_xxxxxxxx_xxxxHigh
300Argumentxx_xxx[xxxx_xxxxxx_xxx]High
301Argumentxx_xx[xxxx]Medium
302ArgumentxxxxLow
303ArgumentxxxxxxxxxxxxxxHigh
304ArgumentxxxxLow
305ArgumentxxxxxxLow
306ArgumentxxxxxxxxxxMedium
307ArgumentxxxxxxxLow
308ArgumentxxxxxxLow
309ArgumentxxxxxLow
310ArgumentxxxxLow
311Argumentxxxx/xxxxxxMedium
312ArgumentxxxxxxLow
313ArgumentxxxxxLow
314Argumentxxxxxx_xxMedium
315ArgumentxxxxLow
316ArgumentxxxxxxxxMedium
317ArgumentxxxxLow
318Argumentxxxx[xxxxxxx]High
319Argumentxxxx_xxxxMedium
320Argumentxxxx_xxLow
321Argumentxxxxxx[xxxx_xxxx]High
322Argumentxxxxxx_xxxx_xxxxHigh
323ArgumentxxxLow
324ArgumentxxxxxxxxxxMedium
325ArgumentxxxxxxxxMedium
326ArgumentxxxxxxLow
327ArgumentxxxxxLow
328ArgumentxxxxxxLow
329Argumentxxxxxxxx_xxxMedium
330Argumentxxx_xxxxMedium
331ArgumentxxxxLow
332Argumentxxxx_xxxxMedium
333ArgumentxxxxxxxxxxxMedium
334ArgumentxxxxLow
335ArgumentxxxxxxxxxxMedium
336ArgumentxxxxxxLow
337ArgumentxxxxxxxxxxxMedium
338ArgumentxxxxxxxxxMedium
339ArgumentxxxxxxxxxxxMedium
340ArgumentxxxxxxxxMedium
341ArgumentxxxxxLow
342ArgumentxxxxxxxxxxxxxxxxxxxxxHigh
343Argumentxxxx_xxLow
344Argumentxxxx_xxxMedium
345Argumentxxxx_xxxxxxMedium
346ArgumentxxxxxxxxxMedium
347Argumentxxx_xxxx_xxxMedium
348Argumentxxxx[xxxxxxx_xxxx]High
349Argumentxxx_xxxLow
350ArgumentxxxxxxxLow
351ArgumentxxxxxxxxMedium
352ArgumentxxxLow
353ArgumentxxxxxLow
354Argumentxxxxx_xxxxxMedium
355ArgumentxxxxxxxxxMedium
356ArgumentxxxxxLow
357ArgumentxxxLow
358ArgumentxxxxLow
359ArgumentxxxxxxLow
360Argumentxxxx_xxLow
361Argumentxxx_xxxxxxxxMedium
362ArgumentxxxxxxxLow
363Argumentxxxxxx_xxxxxxxxxxxxHigh
364ArgumentxxxxxLow
365ArgumentxxxxxxLow
366Argumentxxxxx_xxx/xxxxx_xxx/xxxxx_xxx/xxxxx_xxx/xxxxx_xxxHigh
367ArgumentxxxxLow
368ArgumentxxxLow
369Argumentxxx_xxxxxx/xxx_xxxxxxxxHigh
370Argument_xxxxxx[xxxx_xxxx]High
371Input Value%xxLow
372Input Value%xx%xx%xx%xxMedium
373Input Value-xLow
374Input ValuexxxxxxLow

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!