TraderTraitor Analysis

IOB - Indicator of Behavior (450)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en356
de46
es10
it10
pl8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us266
de22
cn12
es10
it6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

WordPress6
Linux Kernel6
FFmpeg6
Juniper Junos4
Apache HTTP Server4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Phplinkdirectory PHP Link Directory conf_users_edit.php cross-site request forgery6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.180.00598CVE-2011-0643
2PHP Link Directory Administration Page index.html cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.460.00335CVE-2007-0529
3Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.040.01847CVE-2007-1192
4DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix1.470.00954CVE-2010-0966
5Tiki Wiki CMS Groupware tiki-edit_wiki_section.php cross site scripting5.25.2$0-$5k$0-$5kNot DefinedNot Defined0.030.00110CVE-2010-4240
6Archive_Tar Tar.php pathname traversal6.56.5$0-$5k$0-$5kNot DefinedNot Defined0.040.97371CVE-2020-36193
7Umbraco CMS File Upload unrestricted upload6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.020.00077CVE-2020-9472
8McAfee Client Proxy Microsoft Windows Client privileges management4.94.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.00058CVE-2019-3654
9antsle antman Web Management Console login ProcessBuilder access control8.57.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.030.38096CVE-2018-7739
10Joomla CMS LDAP Authentication improper authentication5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix0.070.00999CVE-2014-6632
11PuneethReddyHC Online Shopping System Advanced Admin Registration reg.php improper authentication8.17.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00091CVE-2023-3337
12JCK Editor links.php sql injection8.58.3$0-$5k$0-$5kHighNot Defined0.040.83749CVE-2018-17254
13Apache HTTP Server mod_rewrite redirect6.76.7$25k-$100k$5k-$25kNot DefinedNot Defined0.070.00138CVE-2020-1927
14WPS Hide Login post_password protection mechanism8.08.0$0-$5k$0-$5kNot DefinedNot Defined0.000.00177CVE-2021-3332
15Basti2web Book Panel books.php sql injection7.37.0$0-$5k$0-$5kHighOfficial Fix0.030.00064CVE-2009-4889
16JetBrains IntelliJ IDEA Plugin for Space unnecessary privileges4.84.7$0-$5k$0-$5kNot DefinedOfficial Fix0.250.00043CVE-2023-39261
17what3words Autosuggest Plugin Setting class-w3w-autosuggest-public.php enqueue_scripts information disclosure2.72.6$0-$5k$0-$5kNot DefinedOfficial Fix0.280.00045CVE-2021-4428
18CloudPanel 2 File Manager improper authentication8.07.9$0-$5k$0-$5kNot DefinedOfficial Fix0.490.00063CVE-2023-35885
19SourceCodester Online School Fees System GET Parameter ajx.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00077CVE-2023-3340
20code-projects Agro-School Management System exam-delete.php sql injection6.76.5$0-$5k$0-$5kProof-of-ConceptNot Defined0.070.00064CVE-2023-3339

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • TraderTraitor

IOC - Indicator of Compromise (13)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (21)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (175)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin.php/update/getFile.htmlpredictiveHigh
2File/admin/countrymanagement.phppredictiveHigh
3File/admin/newsletter1.phppredictiveHigh
4File/admin/payment.phppredictiveHigh
5File/admin/reg.phppredictiveHigh
6File/doc/packagespredictiveHigh
7File/forum/away.phppredictiveHigh
8File/getcfg.phppredictiveMedium
9File/hrm/employeeview.phppredictiveHigh
10File/loginpredictiveLow
11File/mkshop/Men/profile.phppredictiveHigh
12File/newsDia.phppredictiveMedium
13File/product_list.phppredictiveHigh
14File/reviewer/system/system/admins/manage/users/user-update.phppredictiveHigh
15File/rom-0predictiveLow
16File/scas/admin/predictiveMedium
17File/secure/admin/InsightDefaultCustomFieldConfig.jspapredictiveHigh
18File/tpts/manage_user.phppredictiveHigh
19File/var/log/nginxpredictiveHigh
20File/web/entry/en/address/adrsSetUserWizard.cgipredictiveHigh
21Filexxxxxxx.xxxpredictiveMedium
22Filexxx_xxxxxxx.xxxpredictiveHigh
23Filexxxxx.xxxpredictiveMedium
24Filexxxxx/xxxx.xxx?xxxxxx=xxxx_xxxxxxxxpredictiveHigh
25Filexxxxx/xxxxxxxxxxx.xxxpredictiveHigh
26Filexxxxx/xxxx_xxxxx_xxxx.xxxpredictiveHigh
27Filexxxxx/xxxxx.xxxpredictiveHigh
28Filexxxxxx.xxxpredictiveMedium
29Filexxx.xxxpredictiveLow
30Filexxx/xxxxxx_xxxxxxx.xxxpredictiveHigh
31FilexxxpredictiveLow
32Filexxxxx.xxxpredictiveMedium
33Filexxxxxxx/xxxxxxxxxx/xxxxxx_xxxxxx_xxxxxxxx_xxxxx.xxpredictiveHigh
34Filex:\xxxxxxx xxxxx (xxx)\xxxxxxxxxxx\xxx-xxx\xxx_xxxxxx.xxxpredictiveHigh
35Filexxxxx-xx-xxxxxx-xxxxx.xxxpredictiveHigh
36Filexxxxx.xxxpredictiveMedium
37Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
38Filexxxxxx.xxxpredictiveMedium
39Filexxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
40Filexxxxxxxxxxxxx.xxxpredictiveHigh
41Filexxxxxxxxxxxxx.xxxxpredictiveHigh
42Filexxxxxxxx.xpredictiveMedium
43Filexxxx-xxxxxx.xxxpredictiveHigh
44Filexxxxx_xxxxxx.xpredictiveHigh
45Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
46Filexxxxxxxxxx.xxxxx.xxx.xxxpredictiveHigh
47Filexxxxxxxxx.xxpredictiveMedium
48Filexx.xxxpredictiveLow
49Filexxxxx/xxxxx/xxxxx/xxxxxxxx.xxpredictiveHigh
50Filexxxx_xxxx.xpredictiveMedium
51Filexxx/xxxxxx.xxxpredictiveHigh
52Filexxxxxxx/xxxxxxxxxx.xxxxx.xxxpredictiveHigh
53Filexxxxxxx/xxx/xxxxx_xxxx.xpredictiveHigh
54Filexxxxx.xxxxpredictiveMedium
55Filexxxxx.xxxpredictiveMedium
56Filexxxxxx.xxxpredictiveMedium
57Filexxxxxxxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
58Filexxxxxxxxxx/xxxxxxxx.xpredictiveHigh
59Filexxxxxxxxxx/xxxxxxxx_xxxxxxxx.xpredictiveHigh
60Filexxxxxxxxxx/xxxxxxxxxxxxx.xpredictiveHigh
61Filexxxxxxxxxx/xxxx.xpredictiveHigh
62Filexxxxxxxxxxx/xx_xxxxx.xpredictiveHigh
63Filexxxxx.xxxpredictiveMedium
64Filexxxxx.xxxpredictiveMedium
65Filexxxxx_xxx.xxxpredictiveHigh
66Filexxxxxx.xxxpredictiveMedium
67Filexxxxxxxxx/xxxx-xxxxpredictiveHigh
68Filexxxxxx-xxxxxx/xxxxx/xxxxxxxxx/xxxxxxx/xxx_xxxxx.xxxpredictiveHigh
69Filexxx/xxxxx.xxxxpredictiveHigh
70Filexxx/xxx_xx.xpredictiveMedium
71Filexxx.xxxxpredictiveMedium
72Filexxxxxxxx_xxxxxx.xxxpredictiveHigh
73Filexxxxxxx/xxxxxxxxxxxxxxx.xxpredictiveHigh
74FilexxxxxxxxxxxxpredictiveMedium
75Filexxxxxxxx.xxxpredictiveMedium
76Filexxxxxxxxxxxxxx.xxxpredictiveHigh
77Filexxxxxxxx.xpredictiveMedium
78Filexxxxxxxx.xxxxpredictiveHigh
79Filexxxxxxxx.xxxpredictiveMedium
80Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
81Filexxx.xxxpredictiveLow
82Filexxxxxx.xxpredictiveMedium
83Filexxxxxx/xxxx.xpredictiveHigh
84Filexxxx.xxxpredictiveMedium
85Filexxx/xxxx/xxxx/xxx/xxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
86Filexxxxx_xxxxx.xxxpredictiveHigh
87Filexxxx_xxx.xxxpredictiveMedium
88Filexxx.xxxpredictiveLow
89Filexxxx.xxxpredictiveMedium
90Filexxxx-xxxx_xxxx_xxxxxxx.xxxpredictiveHigh
91Filexxxx-xxxxx.xxxpredictiveHigh
92Filexxxxxxxxx.xxxpredictiveHigh
93Filexxxxx.xxxpredictiveMedium
94Filexxxxxx.xxxpredictiveMedium
95Filexxxxx/xxxxxxxx.xxxpredictiveHigh
96Filexxx-xxxxxxxxxxx/xxxxxx/xxxxx-xxx-xxxxxxxxxxx-xxxxxx.xxxpredictiveHigh
97Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
98Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
99Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
100Filexxxxxxx/xxxxxx/xxxxx.xxxpredictiveHigh
101File\xxxxx\xxxxxxxxxxxpredictiveHigh
102File_xxxxxxxxx.xxxpredictiveHigh
103File~/.xxxpredictiveLow
104Libraryxxxxxx[xxxxxx_xxxxpredictiveHigh
105Libraryxxxxxxxxxxxxxx.xxxxxxx.xxxxxxxxxxxxxxx.xxxpredictiveHigh
106Libraryxx/xxx.xxx.xxxpredictiveHigh
107Libraryxxxxxxxxxxx.xxxpredictiveHigh
108Libraryxxxxxxxx/xxxxxxxxx/xxxxx/xxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
109Argument-xpredictiveLow
110Argument-xpredictiveLow
111Argument-xxpredictiveLow
112Argumentxxxxxxxx_xxxxpredictiveHigh
113ArgumentxxxxxxpredictiveLow
114ArgumentxxxxxxxxxxxxxxpredictiveHigh
115ArgumentxxxxpredictiveLow
116ArgumentxxxxxxxxpredictiveMedium
117Argumentxxxx_xxxpredictiveMedium
118Argumentxxxx_xxx[xxx_xxxxxxxxxx]predictiveHigh
119ArgumentxxxxxxpredictiveLow
120ArgumentxxxxxxxxxxpredictiveMedium
121Argumentxxx_xxpredictiveLow
122ArgumentxxxpredictiveLow
123Argumentxxxxxx[xxxxxx_xxxx]predictiveHigh
124ArgumentxxxxxxxxpredictiveMedium
125ArgumentxxxxxxxxpredictiveMedium
126ArgumentxxxxxxxxxxxpredictiveMedium
127ArgumentxxxxxpredictiveLow
128ArgumentxxxxxpredictiveLow
129ArgumentxxxxxxpredictiveLow
130Argumentxxxx_xxxxxxxx_xx_xxpredictiveHigh
131ArgumentxxpredictiveLow
132Argumentxx_xxxxpredictiveLow
133ArgumentxxxpredictiveLow
134ArgumentxxxxpredictiveLow
135ArgumentxxxpredictiveLow
136ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
137ArgumentxxxpredictiveLow
138ArgumentxxxxxpredictiveLow
139Argumentxxxx_xxxxxxxxxxpredictiveHigh
140Argumentxx_xxpredictiveLow
141Argumentxxxxxx xxxxxxpredictiveHigh
142ArgumentxxxpredictiveLow
143ArgumentxxxxpredictiveLow
144ArgumentxxxxxxpredictiveLow
145ArgumentxxxxxxxxpredictiveMedium
146Argumentxxxx_xxxxpredictiveMedium
147Argumentxx_xxxxpredictiveLow
148ArgumentxxxxxxpredictiveLow
149ArgumentxxxxxxpredictiveLow
150Argumentxxxxxx_xxxpredictiveMedium
151ArgumentxxxxxxxxpredictiveMedium
152ArgumentxxxxpredictiveLow
153ArgumentxxxxxxxxpredictiveMedium
154ArgumentxxxxxxxxxpredictiveMedium
155Argumentxxxx_xxpredictiveLow
156Argumentxxxx_xxpredictiveLow
157ArgumentxxxxpredictiveLow
158Argumentxxxx_xxpredictiveLow
159ArgumentxxxpredictiveLow
160ArgumentxxxpredictiveLow
161ArgumentxxxxpredictiveLow
162ArgumentxxxxxxxxpredictiveMedium
163Argumentxxxxxxxx=>/xxxxxxxx=%xxpredictiveHigh
164Argumentxxxx_xxpredictiveLow
165Argumentxxxx_xxxxxpredictiveMedium
166ArgumentxxxpredictiveLow
167Argumentx-xxxxxxxxx-xxxpredictiveHigh
168Input Value%xx%xx%xxxxx%xxxxx=x%xxxxxxxxx=xxxxx(x)%xxpredictiveHigh
169Input Valuexxx@xx.xxx' xx (xxxxxx xxxx xxxx(xxxxxx xxxxx(*),xxxxxx(xxxxxxxxxxxx,(xxxxxx (xxx(xxxx=xxxx,x))),xxxxxxxxxxxx,xxxxx(xxxx(x)*x))x xxxx xxxxxxxxxxx_xxxxxx.xxxxxxx xxxxx xx x)x)-- xxxxpredictiveHigh
170Input Value?<!xxxxxx?predictiveMedium
171Input Valuexxxx -x xxxxxxxx=xxxxxx.xxxxxxx xxxx://xxx.xxx.x.x/xxxxxx.xxxpredictiveHigh
172Network Portxxx/xx (xxx)predictiveMedium
173Network Portxxx/xx (xxxxxx)predictiveHigh
174Network Portxxx/xxxxpredictiveMedium
175Network Portxxx xxxxxx xxxxpredictiveHigh

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!