BazarLoader Análisis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (250)

Cronología

Idioma

en190
zh50
ru4
pt2
de2

País

us76
cn76
ru30
gb8
es4

Actores

Cobalt Strike8
BazarBackdoor4
RedLine Stealer4
Mirai3
IcedID3

Ocupaciones

Interesar

Cronología

Escribe

Not Defined92
Programming Language Software12
Content Management System12
Router Operating System8
Wireless LAN Software8

Proveedor

Not Defined82
Microsoft8
Google8
Cisco6
Netgear6

Producto

Google Android6
Grafana4
Crestron AM-1004
Crestron AM-1014
Netgear RAX404

Vulnerabilidad

#VulnerabilidadBaseTemp0dayHoyExpConEPSSCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash divulgación de información5.35.2$5k-$25k$0-$5kHighWorkaround0.020160.02CVE-2007-1192
2Zyxel NAS326/NAS542 Web Server escalada de privilegios9.89.8$5k-$25k$5k-$25kNot DefinedNot Defined0.000680.04CVE-2023-4473
3phpMyAdmin Privileges.php sql injection7.17.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.001450.09CVE-2020-10804
4Linux Kernel fbcon vt.c KD_FONT_OP_COPY divulgación de información5.04.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000420.00CVE-2020-28974
5Magento Sitemap escalada de privilegios5.95.7$0-$5k$0-$5kNot DefinedOfficial Fix0.002640.00CVE-2019-7932
6CKFinder File Name escalada de privilegios7.47.4$0-$5k$0-$5kNot DefinedNot Defined0.001550.04CVE-2019-15862
7Cisco IOS XE Web UI Remote Code Execution9.99.7$25k-$100k$5k-$25kNot DefinedOfficial Fix0.894280.03CVE-2023-20198
8Linux Kernel OverlayFS Subsystem escalada de privilegios6.36.3$5k-$25k$5k-$25kNot DefinedNot Defined0.000420.02CVE-2021-3847
9Magento Search Module sql injection7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.000700.02CVE-2021-21024
10Oracle JavaFX Remote Code Execution9.89.4$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.012400.00CVE-2013-1477
11Mavili Guestbook escalada de privilegios5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.005060.00CVE-2012-5298
12Mavili Guestbook edit.asp escalada de privilegios7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.009340.00CVE-2012-5299
13Saphp SaphpLesson misc.php sql injection7.37.3$0-$5k$0-$5kNot DefinedUnavailable0.005720.02CVE-2006-3161
14Zoho ManageEngine ServiceDesk Plus FileDownload.jsp directory traversal5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.005560.00CVE-2011-2757
15Liferay Portal/DXP Java2WsddTask._format XML External Entity6.05.9$0-$5k$0-$5kNot DefinedOfficial Fix0.000430.04CVE-2024-25606
16ThingsBoard Host Header escalada de privilegios6.36.0$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.001580.03CVE-2020-27687
17Netwave IP Camera Network Configuration kcore divulgación de información4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.002190.04CVE-2018-17240
18linlinjava litemall AdminOrdercontroller.java sql injection6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000430.04CVE-2024-24323
19Yii Yii2 directory traversal7.67.5$0-$5k$0-$5kNot DefinedOfficial Fix0.000910.04CVE-2015-5467
20Linux Kernel seq_buf.c seq_buf_putmem_hex desbordamiento de búfer6.66.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.000420.02CVE-2023-28772

Campañas (3)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (162)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDdirección IPHostnameActorCampañasIdentifiedEscribeConfianza
13.101.57.185ec2-3-101-57-185.us-west-1.compute.amazonaws.comBazarLoader2022-04-26verifiedMedio
25.45.97.127v22018107054674935.goodsrv.deBazarLoader2022-05-11verifiedAlto
35.135.183.146freya.stelas.deBazarLoader2022-05-11verifiedAlto
413.56.161.214ec2-13-56-161-214.us-west-1.compute.amazonaws.comContiBazarLoader2022-04-26verifiedMedio
513.225.230.232server-13-225-230-232.jfk51.r.cloudfront.netBazarLoader2022-02-19verifiedAlto
613.226.32.216server-13-226-32-216.ewr53.r.cloudfront.netBazarLoader2022-02-19verifiedAlto
718.67.60.164server-18-67-60-164.iad89.r.cloudfront.netBazarLoader2022-02-19verifiedAlto
823.56.10.219a23-56-10-219.deploy.static.akamaitechnologies.comBazarLoader2022-02-19verifiedAlto
923.62.25.178a23-62-25-178.deploy.static.akamaitechnologies.comBazarLoader2022-02-19verifiedAlto
1023.82.19.173BazarLoader2022-04-26verifiedAlto
1123.94.51.8023-94-51-80-host.colocrossing.comBazarLoaderAnchor2022-04-26verifiedAlto
1223.95.238.12223-95-238-122-host.colocrossing.comBazarLoader2022-03-19verifiedAlto
1323.106.160.77BazarLoader2022-04-26verifiedAlto
1423.106.215.61BazarLoader2022-04-26verifiedAlto
1523.106.223.174BazarLoader2022-03-25verifiedAlto
1623.152.0.22anahiem.netBazarLoaderDiavol2022-04-26verifiedAlto
1723.160.193.217unknown.ip-xfer.netBazarLoader2022-02-19verifiedAlto
1823.193.217.119a23-193-217-119.deploy.static.akamaitechnologies.comBazarLoader2022-02-19verifiedAlto
1931.14.40.160perico.cavepanel.comContiBazarLoader2022-04-26verifiedAlto
2031.41.44.153rodion.oftin.93.example.comBazarLoader2023-01-06verifiedAlto
2131.171.251.118ch.ns.mon0.liBazarLoader2021-07-22verifiedAlto
2231.214.240.203BazarLoader2021-07-22verifiedAlto
2334.209.40.84ec2-34-209-40-84.us-west-2.compute.amazonaws.comBazarLoader2021-01-08verifiedMedio
2434.210.71.206ec2-34-210-71-206.us-west-2.compute.amazonaws.comBazarLoaderAnchor2022-04-26verifiedMedio
2534.219.130.241ec2-34-219-130-241.us-west-2.compute.amazonaws.comContiBazarLoader2022-04-26verifiedMedio
2634.221.188.35ec2-34-221-188-35.us-west-2.compute.amazonaws.comBazarLoader2021-07-22verifiedMedio
2734.222.222.126ec2-34-222-222-126.us-west-2.compute.amazonaws.comBazarLoader2022-03-19verifiedMedio
2835.165.197.209ec2-35-165-197-209.us-west-2.compute.amazonaws.comBazarLoader2022-04-26verifiedMedio
2940.76.4.15BazarLoader2022-02-19verifiedAlto
3040.112.72.205BazarLoader2022-02-19verifiedAlto
3140.113.200.201BazarLoader2022-02-19verifiedAlto
3245.14.226.23BazarLoader2022-02-19verifiedAlto
3345.71.112.70host-45-71-112-70.nedetel.netBazarLoader2021-07-22verifiedAlto
34XX.XX.XXX.XXxx.xx.xxx.xx.xxxxx.xxxXxxxxxxxxxx2021-07-22verifiedMedio
35XX.XX.XX.XXXxxxxxxxx.xx.xxxxxxxXxxxxxxxxxx2022-04-26verifiedAlto
36XX.XX.XX.XXXxxxxxxxx.xx.xxxxxxxXxxxxxxxxxx2022-03-25verifiedAlto
37XX.XX.XX.XXXxxxxxxxx.xx.xxxxxxxXxxxxxxxxxx2022-03-25verifiedAlto
38XX.XX.XX.XXXxxxxxxxx.xx.xxxxxxxXxxxxxxxxxx2022-03-25verifiedAlto
39XX.XX.XX.XXXxxxx.xxXxxxxxxxxxx2022-03-25verifiedAlto
40XX.XX.XX.XXXxxxx.xxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-03-25verifiedAlto
41XX.XX.XX.XXXxxxxxxx.xxxXxxxxxxxxxx2022-03-25verifiedAlto
42XX.XXX.XXX.XXXXxxxxxxxxxx2022-04-26verifiedAlto
43XX.XXX.XX.XXXxxxxx.xx-xx-xxx-xx.xxXxxxxxxxxxx2022-03-19verifiedAlto
44XX.XXX.XXX.XXXxxx.xxx.xxx.xx.xxxxxxxx-xxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
45XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxxXxxxxx2022-04-26verifiedMedio
46XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxx2022-04-26verifiedMedio
47XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxx2022-03-25verifiedMedio
48XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxx2021-01-08verifiedMedio
49XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxxXxxxxx2022-04-26verifiedMedio
50XX.XXX.XX.XXXxxxxxxxxxx2022-02-19verifiedAlto
51XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxxXxxxxx2022-04-26verifiedMedio
52XX.XXX.XX.XXXXxxxxxxxxxx2022-07-13verifiedAlto
53XX.XXX.XX.XXXxxxx.xxxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto
54XX.XXX.XXX.XXXxxxxxxxxxxxxxxxxx.xxxxxxx.xxxXxxxxxxxxxx2023-01-06verifiedAlto
55XX.XXX.XXX.XXXxxxxxxxxxxxxxxx.xxxxxxx.xxxXxxxxxxxxxx2023-01-06verifiedAlto
56XX.XXX.XXX.XXXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
57XX.XXX.XX.XXXxxxxxxxxxx2022-04-26verifiedAlto
58XX.XXX.XX.XXxxxxx-xxx-xxxxxx-xxxxxxxx.xxxxx.xxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-04-26verifiedAlto
59XX.XXX.XXX.XXxx-xxx-xxx-xx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
60XX.XX.XX.XXXXxxxxxxxxxx2021-07-22verifiedAlto
61XX.X.XXX.XXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
62XX.X.XXX.XXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
63XX.X.XXX.XXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
64XX.XXX.XXX.XXxxxxxxxxx.xxxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto
65XX.XX.XXX.XXXxxxxxxxxxxxxxx.xxxx.xxxxxxxXxxxxxxxxxx2022-07-06verifiedAlto
66XX.XX.XX.XXXXxxxxxxxxxx2021-07-22verifiedAlto
67XX.XXX.XX.XXxxxxxxxxxx.xxxxx.xxXxxxxxxxxxx2022-05-11verifiedAlto
68XX.XXX.XXX.XXXXxxxxxxxxxx2022-07-13verifiedAlto
69XX.XX.XXX.XXXxxxxxxxxxx2022-03-19verifiedAlto
70XX.XX.XX.XXXxxxxxxxxxx2022-05-11verifiedAlto
71XX.XX.XXX.XXXXxxxxxxxxxx2022-03-25verifiedAlto
72XX.XXX.XXX.XXxxxx.xxxxxxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
73XX.XXX.XX.XXXxxxxx.xx-xx-xxx-xx.xxXxxxxxxxxxx2021-07-22verifiedAlto
74XX.XX.XXX.XXXxxxx.xxxxxx-xxxxxxx.xxXxxxxxxxxxx2022-03-19verifiedAlto
75XX.XXX.XXX.XXXXxxxxxxxxxx2022-05-11verifiedAlto
76XX.XXX.XXX.XXXxxxxxxxxxx2022-06-12verifiedAlto
77XX.XXX.XX.XXXxxxxxxxx.xxx-xxxxxxxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
78XX.XXX.XX.XXXXxxxxxxxxxx2022-03-19verifiedAlto
79XX.XX.XX.XXXxxx-xx-xx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
80XX.XXX.XX.XXXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
81XX.XXX.XX.XXXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
82XXX.XX.XX.XXxxxxxxxxxx2022-03-25verifiedAlto
83XXX.XX.XX.XXXXxxxxxxxxxx2022-06-12verifiedAlto
84XXX.XX.XX.XXXXxxxxxxxxxx2022-03-25verifiedAlto
85XXX.XX.XXX.XXXxxx.xxx.xx.xxx.xx-xxxx.xxxxXxxxxxxxxxx2021-07-22verifiedAlto
86XXX.XX.XX.XXXxxxx-xx-xx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
87XXX.XXX.XXX.XXxxxx-xxx-xxx-xx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
88XXX.XXX.XX.XXXxxxx-xxx-xx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
89XXX.XXX.XX.XXXXxxxxxxxxxx2022-07-06verifiedAlto
90XXX.XXX.XXX.XXXxxxxxxxxxx2022-02-19verifiedAlto
91XXX.XXX.XX.XXXXxxxxxxxxxx2022-06-11verifiedAlto
92XXX.XXX.XX.Xxx-xxxxxxx-xxxx-xxxxxx-xxx-xxxxxxxx.xxxxx.xxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-06-11verifiedAlto
93XXX.XXX.XX.XXXXxxxxxxxxxx2022-05-11verifiedAlto
94XXX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
95XXX.XXX.XX.XXXxxxxxxxxxx2022-03-25verifiedAlto
96XXX.X.XXX.XXXxxxxx.xx-xxx-x-xxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
97XXX.X.XXX.XXxxxxx.xx-xxx.xxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
98XXX.XX.XXX.XXxxxxxxx.xxxx.xxxXxxxxxxxxxx2022-03-19verifiedAlto
99XXX.XXX.XX.XXXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
100XXX.XX.XXX.XXXXxxxxxxxxxx2022-04-26verifiedAlto
101XXX.XX.XXX.XXXxxxxxxxxxx.xxxxxxx.xxxxXxxxxxxxxxx2022-03-25verifiedAlto
102XXX.XX.XXX.XXXxxxxxxxxxx2022-04-26verifiedAlto
103XXX.XX.XXX.XXXXxxxxxxxxxx2022-07-06verifiedAlto
104XXX.XX.XXX.XXXXxxxxxxxxxx2022-07-06verifiedAlto
105XXX.XX.XX.XXXxxxxxx.xxx.xx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxxxx2022-07-06verifiedAlto
106XXX.XXX.XX.XXXxxxx.xxxxxxxxxxxxx.xx.xxXxxxxXxxxxxxxxxx2022-04-26verifiedAlto
107XXX.XXX.XXX.XXxxx.xxxxxxxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
108XXX.XX.XXX.XXXxxxxxxxx.xxxxxxxxx.xxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
109XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxxxxx.xxx.xxxxxXxxxxxxxxxx2021-07-22verifiedAlto
110XXX.XX.XXX.XXXxxxxxxxxxx2022-06-12verifiedAlto
111XXX.XX.XXX.XXxxxxxxxx.xxxXxxxxxxxxxx2022-06-12verifiedAlto
112XXX.XX.XXX.XXXxxxxxxxxxx2022-07-06verifiedAlto
113XXX.XX.XXX.XXXXxxxxxxxxxx2021-07-22verifiedAlto
114XXX.XXX.XXX.XXXxxxx.xxxxxx.xxxXxxxxxxxxxx2022-06-11verifiedAlto
115XXX.XXX.XXX.XXxxxxxxxxxxx.xx-xxxxxXxxxxxxxxxx2022-06-11verifiedAlto
116XXX.XXX.XX.XXXxxxxxxxxxx2022-07-06verifiedAlto
117XXX.XXX.XXX.XXXxxxxxx.xxxxx.xxXxxxxxxxxxx2022-05-11verifiedAlto
118XXX.XX.XXX.XXXXxxxxxxxxxx2022-03-25verifiedAlto
119XXX.XX.XXX.XXXXxxxxxxxxxx2022-06-12verifiedAlto
120XXX.XX.XXX.XXXXxxxxxxxxxx2022-03-25verifiedAlto
121XXX.XX.XXX.XXXxxxxxxxxxx2021-07-22verifiedAlto
122XXX.XX.XXX.XXxxxxxx.xxxxxxxxxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto
123XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto
124XXX.XX.XXX.XXXXxxxxxxxxxx2022-02-19verifiedAlto
125XXX.XX.XXX.XXxxxxxxxxxx2023-01-06verifiedAlto
126XXX.XX.XXX.XXxxxxxxxxxx2023-01-06verifiedAlto
127XXX.XXX.XXX.XXXxxxxxxxxxx2022-03-25verifiedAlto
128XXX.XXX.XX.XXXxxxxxxx.xxxx.xxxxXxxxxxxxxxx2022-03-19verifiedAlto
129XXX.XX.XXX.XXXxxxxxxx.xxxXxxxxxxxxxx2022-03-19verifiedAlto
130XXX.XX.X.XXXxxx-xxx-xx-x-xxx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxxxxxxx2022-03-25verifiedMedio
131XXX.XX.XXX.XXXXxxxxxxxxxx2022-05-11verifiedAlto
132XXX.XX.XXX.XXXxxx.xx.xxxxxxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
133XXX.XXX.XXX.XXXxxxxxxxxxxxxx.xxxxxxx.xxXxxxxxxxxxx2022-03-19verifiedAlto
134XXX.XXX.XXX.XXXxxxxxx.xxxxx.xxXxxxxxxxxxx2022-03-19verifiedAlto
135XXX.XXX.XX.XXXxxxxxxx.xxxXxxxxxxxxxx2022-07-06verifiedAlto
136XXX.XXX.XXX.XXXXxxxxxxxxxx2022-05-11verifiedAlto
137XXX.XXX.XXX.XXXxxxxx.xxxXxxxxxxxxxx2022-08-10verifiedAlto
138XXX.XX.XXX.XXXxxxx.xxxxxxxxxxxxxx.xxXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
139XXX.XX.XXX.XXXxxx-xxx-xx-xxx-xxx.xxxxxxxxx.xxxXxxxxxxxxxx2022-03-19verifiedAlto
140XXX.XX.XX.XXXxxxxx.xx-xxx-xx-xx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
141XXX.XXX.XXX.XXXxxxx.xxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
142XXX.XXX.XX.XXXXxxxxxxxxxx2022-04-26verifiedAlto
143XXX.XXX.XXX.XXXxxxxx-xxxxxx.xxxxxxxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
144XXX.X.XXX.XXXxxxxxxxxx.xxx-xxxx.xxXxxxxxxxxxx2023-01-06verifiedAlto
145XXX.XXX.XX.XXXxxxxxxxxxx2022-03-19verifiedAlto
146XXX.X.XXX.XXXXxxxxxxxxxx2021-07-22verifiedAlto
147XXX.XX.XXX.XXXXxxxxxxxxxx2022-06-11verifiedAlto
148XXX.XX.XXX.XXXxxxxx.xxxXxxxxxxxxxx2022-07-06verifiedAlto
149XXX.XX.XXX.XXXxxxxxx.xxxxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxx2022-03-25verifiedAlto
150XXX.XX.XXX.XXxxxx.xxxxxxxxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
151XXX.XX.XXX.XXXXxxxxxxxxxx2022-03-19verifiedAlto
152XXX.XXX.XXX.XXxxxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
153XXX.XXX.XXX.Xxxxxxxxxxxxxxxxxx.xxxxxxx.xxXxxxxxxxxxx2021-07-22verifiedAlto
154XXX.XX.XXX.XXXxxx.xx.xxx.xxxxxxx.xxxxxxxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto
155XXX.XXX.XXX.XXxxxx.xx-xxx-xxx-xxx.xxXxxxxxxxxxx2022-03-25verifiedAlto
156XXX.XXX.XXX.XXXxx-xxxxxxx-xx-xxxxxxxx.xxxxxxx.xxx.xxxxxx.xxxXxxxxxxxxxx2022-02-19verifiedAlto
157XXX.XXX.XX.XXXXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
158XXX.XX.XXX.XXXxxx.xxxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
159XXX.XX.XXX.XXXxxx.xxxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
160XXX.XXX.XX.XXXxxxxx.xxx-xxx-xx.xxxxxx.xxxxxxxxxxxx.xxxXxxxxxxxxxxXxxxxx2022-04-26verifiedAlto
161XXX.XX.XXX.XXxxxxx.xxxxxxx.xxxXxxxxxxxxxx2022-05-11verifiedAlto
162XXX.XX.XX.XXXxxxxxxxxxxxxxxxxxxxx.xxxxx.xxxXxxxxxxxxxx2021-07-22verifiedAlto

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilidadVector de accesoEscribeConfianza
1T1006CWE-21, CWE-22, CWE-23Path TraversalpredictiveAlto
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveAlto
3T1055CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveAlto
4T1059CWE-94Argument InjectionpredictiveAlto
5TXXXX.XXXCWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveAlto
6TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
7TXXXXCWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx XxxxxxxxpredictiveAlto
8TXXXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveAlto
9TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveAlto
10TXXXXCWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
11TXXXXCWE-XXXxx XxxxxxxxxpredictiveAlto
12TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveAlto
13TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto
14TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveAlto
15TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveAlto
16TXXXXCWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto
17TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveAlto
18TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveAlto
19TXXXX.XXXCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveAlto

IOA - Indicator of Attack (118)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClaseIndicatorEscribeConfianza
1File//proc/kcorepredictiveMedio
2File/apipredictiveBajo
3File/api/sys_username_passwd.cmdpredictiveAlto
4File/forum/away.phppredictiveAlto
5File/home/cavesConsolepredictiveAlto
6File/inc/parser/xhtml.phppredictiveAlto
7File/include/makecvs.phppredictiveAlto
8File/PluXml/core/admin/parametres_edittpl.phppredictiveAlto
9File/requests.phppredictiveAlto
10File/usr/local/psa/admin/sbin/wrapperpredictiveAlto
11File/wp-admin/admin.php?page=wp_file_manager_propertiespredictiveAlto
12Fileadd.phppredictiveBajo
13Fileadmin/admin.shtmlpredictiveAlto
14FileAdminOrdercontroller.javapredictiveAlto
15Filexxxxx_xxx.xxxpredictiveAlto
16Filexxx/xxxx/xxxxxxxxxx/xxxxxxxxxxxxxx.xxxpredictiveAlto
17Filexxxxxxxx\xxxxx.xxxpredictiveAlto
18Filexxxxxxxxxxxxxxxx.xxxxpredictiveAlto
19Filexxx-xxxxxx-xxxxxx.xpredictiveAlto
20Filexxx.xxxpredictiveBajo
21Filexxx.xxxpredictiveBajo
22Filexxxxxxx/xxxxx.xxxpredictiveAlto
23Filexxxxx.xxxxxxxxx.xxxpredictiveAlto
24Filexxxxxxxxxx.xxxpredictiveAlto
25Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxpredictiveAlto
26Filexxx.xxxpredictiveBajo
27Filexxxxxxxx/xxx.xxx?xxxx=xxxxxxxpredictiveAlto
28Filexxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
29Filexxxxxxxxxx/xxxxxx/xxxxxxxxx.xxxx/xxxx.xxx/predictiveAlto
30Filexxxxxx/xx/xx_xxxxx.xpredictiveAlto
31Filexxxx:x.x/xx:x/xx:x/xx:x/xx:x/x:x/x:x/x:x/x:xpredictiveAlto
32Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveAlto
33Filexxxxxxx.xxxpredictiveMedio
34Filexxxxxx.xxxpredictiveMedio
35Filexxxxx_xxxxxxx_xxxx.xxxxx.xxxpredictiveAlto
36Filexxxxxxx/xxx/xx/xx.xpredictiveAlto
37Filexxxx.xxxpredictiveMedio
38Filexxxxx.xxxpredictiveMedio
39Filexxx.xpredictiveBajo
40Filexxxx/xxxxxxxxxx/xxxxxx-xxxxxxxxx.xpredictiveAlto
41Filexxxxxx.xxxpredictiveMedio
42Filexxxxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
43Filexxxxxxxxxxxx.xxxpredictiveAlto
44Filexxxx.xxxpredictiveMedio
45Filexxxxxxx/xxxxxx.xxxpredictiveAlto
46Filexxx/xxxxxx.xxxpredictiveAlto
47Filexxxxx.xxxpredictiveMedio
48Filexxxx.xxxpredictiveMedio
49Filexxxxxx\xxxxxxxxx\xxxxxx\xxxxxxx\xxxxxxxxxpredictiveAlto
50Filexx.xxxpredictiveBajo
51Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveAlto
52Filexxxxx_xx.xxxxpredictiveAlto
53Filexxxxxxxx_xxxxxxx.xxxpredictiveAlto
54Filexxxx.xxxpredictiveMedio
55Filexxxxxxx.xxxpredictiveMedio
56Filexxxxxx.xxx/xxxx_xxxx_xxxx.xxxpredictiveAlto
57Filexxxxxxxx/xxxxxx-xxxxx/xxxxxxxxxxx/xxxx.xxpredictiveAlto
58Filexxxxxxx.xxxpredictiveMedio
59Filexxxxxxx/xxx/xxxxx/xxxxx.xxxxxx.xxxpredictiveAlto
60Filexxxxx_xxxxxxxx.xxxpredictiveAlto
61Filexxxxxxx.xxxpredictiveMedio
62Filexxxxxxxxxxx.xxxpredictiveAlto
63Filexxxxx.xxxpredictiveMedio
64Filexxxxxxxx.xxxpredictiveMedio
65Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveAlto
66Filexx_xxx.xxpredictiveMedio
67Filexxxxxxxx.xx?xxxxxxxxxxxx=xxxxxxxx&xxxx=x-xxxx&xxxxxxxx=xxxxxxxxxx&xxpredictiveAlto
68Filexxxx.xxxpredictiveMedio
69Filexxxxxx.xxxxx.xxxpredictiveAlto
70Filexxxxxx/xxxxx/xx/xxxxxxxxxx/xxxxxxx/xxxxxxxxxx/xxxxxx/xxxxxxxxx.xxxpredictiveAlto
71Filexxxx-xxxxx.xxxpredictiveAlto
72Filexxxxxxxx.xxxpredictiveMedio
73Filexx-xxxxx/xxxxxxx.xxxpredictiveAlto
74Filexx-xxxxxx.xxxpredictiveAlto
75Filexx-xxxxxxxx.xxxpredictiveAlto
76File~/xxxxxxxxx/predictiveMedio
77Libraryxxx/xxxxxx.xxpredictiveAlto
78Libraryxxx/xxx_xxx.xpredictiveAlto
79Libraryxxxxxxxxx/xxx-xxxxxx/xxxxxxxx.xxxpredictiveAlto
80ArgumentxxxxxxpredictiveBajo
81ArgumentxxxxxxxxxxxxxxxxpredictiveAlto
82ArgumentxxxxxxxxpredictiveMedio
83ArgumentxxxpredictiveBajo
84ArgumentxxxxxxxpredictiveBajo
85ArgumentxxxxpredictiveBajo
86Argumentxxxxxxxxxxx(xxxxxx)predictiveAlto
87Argumentxxxx/xxxxxx/xxxpredictiveAlto
88ArgumentxxxxxpredictiveBajo
89ArgumentxxxxxxxxpredictiveMedio
90ArgumentxxxxxxxxxxxxpredictiveMedio
91Argumentxxxxx_xxpredictiveMedio
92ArgumentxxxxpredictiveBajo
93ArgumentxxpredictiveBajo
94Argumentxx_xxxxxxxxpredictiveMedio
95ArgumentxxxxpredictiveBajo
96ArgumentxxxxxxpredictiveBajo
97ArgumentxxxxxxpredictiveBajo
98Argumentxxxxx[xxxxx][xx]predictiveAlto
99ArgumentxxxxxpredictiveBajo
100ArgumentxxxxpredictiveBajo
101Argumentxxxx_xxxxpredictiveMedio
102ArgumentxxxxpredictiveBajo
103ArgumentxxxxxxxxpredictiveMedio
104ArgumentxxxxxxxxxpredictiveMedio
105ArgumentxxxxxxpredictiveBajo
106Argumentxxxxxxxx/xxxxxxxxx/xxxxxxx/xxxxxxxxxxxxxxxxpredictiveAlto
107ArgumentxxxxpredictiveBajo
108ArgumentxxxxxxxxpredictiveMedio
109ArgumentxxxxxxxxxxpredictiveMedio
110Argumentxxxxxxxxxx_xxxxpredictiveAlto
111ArgumentxxxpredictiveBajo
112ArgumentxxxpredictiveBajo
113Argumentxxxx-xxxxxpredictiveMedio
114Argumentxxxx_xxxxxpredictiveMedio
115ArgumentxxxxpredictiveBajo
116ArgumentxxxxxxxxxxxxxxxxpredictiveAlto
117Argumentxxxx->xxxxxxxpredictiveAlto
118Network Portxxx/xxx (xxxx)predictiveAlto

Referencias (27)

The following list contains external sources which discuss the actor and the associated activities:

AnteriorVisión De ConjuntoPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!