CoinMiner Análisis

IOB - Indicator of Behavior (18)

Cronología

Idioma

en16
ru2

País

Actores

Ocupaciones

Interesar

Cronología

Escribe

Proveedor

Producto

Google Chrome10
GNU PSPP2
Active Auction House2
Joomla CMS2

Vulnerabilidad

#VulnerabilidadBaseTemp0dayHoyExpConCTIEPSSCVE
1Joomla CMS LDAP Authentication Password escalada de privilegios7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.01039CVE-2017-14596
2DZCP deV!L`z Clanportal config.php escalada de privilegios7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix1.040.00943CVE-2010-0966
3Active Auction House ItemInfo.asp sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.00685CVE-2005-1029
4Google Chrome Network Service desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00808CVE-2021-30553
5Google Chrome Extension desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00286CVE-2021-30552
6Google Chrome V8 escalada de privilegios6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.12455CVE-2021-30551
7Google Chrome Accessibility desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00286CVE-2021-30550
8Google Chrome Spell Check desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00286CVE-2021-30549
9Google Chrome Loader desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00808CVE-2021-30548
10Google Chrome ANGLE desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00829CVE-2021-30547
11Google Chrome Autofill desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00808CVE-2021-30546
12Google Chrome Extension desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00808CVE-2021-30545
13Google Chrome BFCache desbordamiento de búfer6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00808CVE-2021-30544
14Active Intelligent Visualization Vdc Header sql injection6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000.00140CVE-2021-44835
15aEnrich eHRD Learning Management divulgación de información5.55.4$0-$5k$0-$5kNot DefinedNot Defined0.000.00153CVE-2022-28740
16GNU PSPP pspp-dump-sav.c read_bytes_internal desbordamiento de búfer6.66.6$0-$5k$0-$5kNot DefinedNot Defined0.000.00062CVE-2022-39831

IOC - Indicator of Compromise (114)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDdirección IPHostnameActorCampañasIdentifiedEscribeConfianza
12.58.149.237CoinMiner2024-03-18verifiedAlto
24.4.0.0Coinminer2020-04-05verifiedAlto
35.9.157.2static.2.157.9.5.clients.your-server.deCoinMiner2024-03-18verifiedAlto
45.196.13.2929.ip-5-196-13.euCoinMiner2021-07-22verifiedAlto
55.196.23.240240.ip-5-196-23.euCoinMiner2021-07-22verifiedAlto
613.107.21.200CoinMiner2021-07-22verifiedAlto
718.210.126.40ec2-18-210-126-40.compute-1.amazonaws.comCoinMiner2021-07-17verifiedMedio
823.21.48.44ec2-23-21-48-44.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
923.21.76.253ec2-23-21-76-253.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
1023.21.126.66ec2-23-21-126-66.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
1123.21.140.41ec2-23-21-140-41.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
1223.21.252.4ec2-23-21-252-4.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
1323.224.232.68CoinMiner2024-03-18verifiedAlto
1446.41.150.129CoinMiner2024-03-18verifiedAlto
1547.103.63.1CoinMiner2024-02-02verifiedAlto
1649.12.80.38static.38.80.12.49.clients.your-server.deCoinMiner2021-07-17verifiedAlto
1749.12.80.40static.40.80.12.49.clients.your-server.deCoinMiner2021-07-17verifiedAlto
1849.12.113.223static.223.113.12.49.clients.your-server.deCoinMiner2024-03-18verifiedAlto
1950.19.48.59ec2-50-19-48-59.compute-1.amazonaws.comCoinMiner2024-01-18verifiedMedio
2050.19.96.218ec2-50-19-96-218.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
2150.19.252.36ec2-50-19-252-36.compute-1.amazonaws.comCoinMiner2021-07-23verifiedMedio
2251.15.54.102102-54-15-51.instances.scw.cloudCoinMiner2021-07-22verifiedAlto
2351.15.58.224224-58-15-51.instances.scw.cloudCoinMiner2021-07-22verifiedAlto
24XX.XX.XX.XXXxxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxxxxx2021-07-22verifiedAlto
25XX.XX.XX.XXxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxxxxx2021-07-22verifiedAlto
26XX.XX.XX.XXXxxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxxxxx2021-07-22verifiedAlto
27XX.XX.XX.XXxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxxxxx2021-07-22verifiedAlto
28XX.XX.XXX.XXXxxx.xx-xx-xx-xxx.xxXxxxxxxxx2022-03-30verifiedAlto
29XX.XX.XX.XXXxxxx.xxxxxxx.xxxXxxxxxxxx2021-07-22verifiedAlto
30XX.XXX.XX.XXxxxx.xxxxxxx.xxxXxxxxxxxx2021-07-22verifiedAlto
31XX.XXX.XX.XXXxxx.xx-xx-xxx-xx.xxXxxxxxxxx2021-07-22verifiedAlto
32XX.XX.X.XXXXxxxxxxxx2021-07-22verifiedAlto
33XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
34XX.XXX.XX.XXXxxx-xx-xxx-xx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
35XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
36XX.XXX.XX.XXXxxx-xx-xxx-xx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
37XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
38XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
39XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxxxx2021-07-23verifiedMedio
40XX.XX.XX.XXXxxxxxxxx2021-07-17verifiedAlto
41XX.XXX.XXX.XXXXxxxxxxxx2024-03-18verifiedAlto
42XX.XXX.XXX.XXXXxxxxxxxx2024-03-18verifiedAlto
43XX.XX.XXX.XXXxxxxxxxxxxx.xxxXxxxxxxxx2022-03-30verifiedAlto
44XX.XX.XXX.XXxxxx.xxxxxxxxxxx.xxxXxxxxxxxx2022-03-30verifiedAlto
45XX.XX.XXX.XXXxxxxxx.xxx.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
46XX.XX.XXX.XXXxxxxxx.xxx.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-17verifiedAlto
47XX.XXX.XXX.XXXxxxx.xxxxxxxxxxxx.xxXxxxxxxxx2021-07-22verifiedAlto
48XX.XXX.XXX.XXxx.xxxx.xxxxx.xxxXxxxxxxxx2022-04-16verifiedAlto
49XX.XX.XXX.XXXxxxxxxxx2022-03-31verifiedAlto
50XX.XXX.XX.XXXxxxx.xxxxxx-xxxxx.xxxXxxxxxxxx2022-04-08verifiedAlto
51XX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-17verifiedAlto
52XX.XXX.XXX.XXxxxxxx.xx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2022-04-16verifiedAlto
53XX.XXX.XXX.XXxxxx.xxxxxxx.xxxXxxxxxxxx2021-07-22verifiedAlto
54XX.XXX.XX.XXXXxxxxxxxx2024-03-18verifiedAlto
55XX.XXX.XX.XXXXxxxxxxxx2023-12-16verifiedAlto
56XX.XXX.XXX.XXxxxxxx.xx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
57XX.XXX.XXX.XXxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
58XX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
59XX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
60XX.XXX.XX.XXxxxxxx.xx.xx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
61XX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
62XX.XXX.XXX.XXxxxxxx.xx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
63XXX.XXX.XXX.XXXxxx-xx.xxxxxxxxxxxxx.xxxXxxxxxxxx2024-01-18verifiedAlto
64XXX.XX.XX.XXXXxxxxxxxx2021-07-23verifiedAlto
65XXX.XX.XX.XXXXxxxxxxxx2021-07-17verifiedAlto
66XXX.XX.XX.XXXXxxxxxxxx2021-07-17verifiedAlto
67XXX.XX.XX.XXXxxxxxxxx2021-07-17verifiedAlto
68XXX.XX.XX.XXXxxxxxxxx2021-07-17verifiedAlto
69XXX.XX.XXX.XXXxxxxxxxx2024-02-02verifiedAlto
70XXX.XX.XX.XXXXxxxxxxxx2024-02-02verifiedAlto
71XXX.XXX.X.XXXXxxxxxxxx2022-04-16verifiedAlto
72XXX.XXX.XX.XXXXxxxxxxxx2022-03-31verifiedAlto
73XXX.XXX.X.XXXxxxxxxxx2024-02-02verifiedAlto
74XXX.XXX.X.XXXxxxxxx.xxx.x.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
75XXX.XX.XXX.XXXXxxxxxxxx2024-02-02verifiedAlto
76XXX.XXX.XX.XXXxxxxxxxx2024-02-02verifiedAlto
77XXX.XXX.XX.XXXxxxxxxxx2021-07-22verifiedAlto
78XXX.XXX.XX.XXxxxxxx.xx.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-23verifiedAlto
79XXX.XXX.XX.XXXxxxxxxxxXxxxxxxxx2021-07-23verifiedAlto
80XXX.XXX.XX.XXXxxxx.xxxxxxx.xxxXxxxxxxxx2021-07-22verifiedAlto
81XXX.XXX.XXX.XXXxxxxxxxx.xxxx-xxxxxxx.xxXxxxxxxxx2021-07-17verifiedAlto
82XXX.XX.XXX.XXXxxx.xx-xxx-xx-xxx.xxXxxxxxxxx2021-07-22verifiedAlto
83XXX.XX.XXX.XXXxxxxxxxx.xx-xxx-xx-xxx.xxxXxxxxxxxx2024-03-18verifiedAlto
84XXX.XX.XX.XXxxx-xxxxxxxx.xxx.xxx.xxxXxxxxxxxx2024-03-18verifiedAlto
85XXX.XXX.XXX.XXXxxxxxxxx2023-10-23verifiedAlto
86XXX.XXX.XXX.XXXxxxxxxxx2023-10-23verifiedAlto
87XXX.XXX.XXX.XXXxxxxxxxx2022-03-31verifiedAlto
88XXX.XX.XXX.XXXXxxxxxxxx2022-04-16verifiedAlto
89XXX.XX.XX.XXXxxx-xxxxxxxx.xx-xxxxxxXxxxxxxxx2021-07-23verifiedAlto
90XXX.XXX.XXX.XXXxxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxxxxx2024-03-18verifiedAlto
91XXX.XX.XXX.XXxxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-17verifiedAlto
92XXX.XXX.XXX.XXXXxxxxxxxx2024-03-18verifiedAlto
93XXX.XX.XXX.XXXxxxxxxx.xxxxxxxxx.xxXxxxxxxxx2021-07-22verifiedAlto
94XXX.XX.XX.XXxxxxxx.xx.xx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-17verifiedAlto
95XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxxxxx2021-07-23verifiedAlto
96XXX.XXX.XXX.XXXXxxxxxxxx2024-03-18verifiedAlto
97XXX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxxxx2021-07-22verifiedAlto
98XXX.XX.XX.XXXXxxxxxxxx2021-07-17verifiedAlto
99XXX.XX.XXX.XXXXxxxxxxxx2021-07-23verifiedAlto
100XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxx2024-03-18verifiedAlto
101XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxx2024-03-18verifiedAlto
102XXX.XXX.XX.XXXXxxxxxxxx2024-02-02verifiedAlto
103XXX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxxxxx2024-03-18verifiedAlto
104XXX.XXX.XX.XXxxx.xxx.xx.xx.xxxxxxx.xxxxxxxxxx.xxXxxxxxxxx2024-02-02verifiedAlto
105XXX.XXX.XX.XXXxxxxxxxx.xxxxxxx.xxXxxxxxxxx2022-10-10verifiedAlto
106XXX.XXX.XXX.XXxxxxxxxx2023-12-12verifiedAlto
107XXX.XXX.XXX.Xxxxxxxxx.xx.xxxxxxxXxxxxxxxx2022-10-10verifiedAlto
108XXX.XXX.XXX.XXxxxxx.xxxxxXxxxxxxxx2021-07-17verifiedAlto
109XXX.X.XXX.XXXxxxxxxxx2021-07-22verifiedAlto
110XXX.XXX.XXX.XXXxxxxxxx-xxxxx.xxXxxxxxxxx2024-03-18verifiedAlto
111XXX.XXX.XXX.XXXXxxxxxxxx2022-03-31verifiedAlto
112XXX.XX.XX.XXxxxxxx.xxxXxxxxxxxx2022-10-10verifiedAlto
113XXX.XXX.XXX.XXXxxx.xx-xxx-xxx-xxx.xxXxxxxxxxx2021-07-22verifiedAlto
114XXX.XX.XX.XXXxxxxxxxx2024-02-02verifiedAlto

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilidadVector de accesoEscribeConfianza
1T1059CWE-94Argument InjectionpredictiveAlto
2TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveAlto
3TXXXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto

IOA - Indicator of Attack (5)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClaseIndicatorEscribeConfianza
1Fileinc/config.phppredictiveAlto
2FileItemInfo.asppredictiveMedio
3Filexxxxxxxxx/xxxx-xxxx-xxx.xpredictiveAlto
4ArgumentxxxxxxxxpredictiveMedio
5ArgumentxxxxxxpredictiveBajo

Referencias (26)

The following list contains external sources which discuss the actor and the associated activities:

Samples (1)

The following list contains associated samples:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!