FIN12 Analisi

IOB - Indicator of Behavior (321)

Sequenza temporale

Linguaggio

en290
it10
sv4
ja4
fr4

Nazione

us106
cn6

Attori

Attività

Interesse

Sequenza temporale

Genere

Fornitore

Prodotto

Google Android14
dotProject8
Qualcomm Snapdragon Auto6
Qualcomm Snapdragon Consumer IOT6
Qualcomm Snapdragon Industrial IOT6

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash rivelazione di un 'informazione5.35.2$5k-$25k$0-$5kHighWorkaround0.020.02016CVE-2007-1192
2OpenBB read.php sql injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.080.00250CVE-2005-1612
3DZCP deV!L`z Clanportal config.php escalazione di privilegi7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.500.00943CVE-2010-0966
4DZCP deV!L`z Clanportal browser.php rivelazione di un 'informazione5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.030.02733CVE-2007-1167
5WordPress Media Attachment media-upload.php escalazione di privilegi5.45.2$5k-$25kCalcoloNot DefinedOfficial Fix0.030.00157CVE-2012-6634
6jforum User escalazione di privilegi5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.020.00289CVE-2019-7550
7vBulletin redirector.php Redirect6.66.6$0-$5k$0-$5kNot DefinedNot Defined0.280.00141CVE-2018-6200
8Devilz Clanportal File Upload vulnerabilità sconosciuta5.34.4$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.040.05362CVE-2006-6338
9EQdkp dbal.php escalazione di privilegi6.56.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.020.03188CVE-2006-2256
10UJCMS File escalazione di privilegi5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.380.00044CVE-2023-51806
11Apple macOS Find My Privilege Escalation5.55.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.040.00052CVE-2023-40437
12Electron autenticazione debole5.85.7$0-$5k$0-$5kNot DefinedOfficial Fix0.020.00050CVE-2023-44402
13Siemens Tecnomatix Plant Simulation PRT File buffer overflow7.87.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00055CVE-2023-37246
14starsoftcomm CooCare escalazione di privilegi5.35.1$0-$5k$0-$5kNot DefinedNot Defined0.030.00042CVE-2022-45988
15Google Chrome Blink Frames buffer overflow7.57.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.090.00211CVE-2022-4438
16Apple macOS DriverKit buffer overflow7.87.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00079CVE-2022-32942
17miniOrange Google Authenticator Plugin escalazione di privilegi6.86.8$0-$5k$0-$5kNot DefinedNot Defined0.000.00069CVE-2022-42461
18Cluster Statistics Plugin cross site request forgery4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.020.00056CVE-2022-45398
19Huawei HarmonyOS Power Module escalazione di privilegi6.56.5$5k-$25k$5k-$25kNot DefinedNot Defined0.000.00088CVE-2022-44554
20Cisco FirePOWER Management Center escalazione di privilegi6.66.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00109CVE-2022-20925

IOC - Indicator of Compromise (5)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (21)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (142)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1File/backups/predictiveMedia
2File/config/getuserpredictiveAlto
3File/forum/away.phppredictiveAlto
4File/includes/session.phppredictiveAlto
5File/modules/admin/vw_usr_roles.phppredictiveAlto
6File/modules/projects/vw_files.phppredictiveAlto
7File/modules/public/calendar.phppredictiveAlto
8File/ofrs/admin/?page=requests/view_requestpredictiveAlto
9File/pet_shop/classes/Master.php?f=delete_sub_categorypredictiveAlto
10File/services/details.asppredictiveAlto
11File/thruk/#cgi-bin/extinfo.cgi?type=2predictiveAlto
12File/user/dls_download.phppredictiveAlto
13File/_core/profile/predictiveAlto
14Fileadclick.phppredictiveMedia
15Fileadditem.asppredictiveMedia
16Fileaddsite.phppredictiveMedia
17Fileadmin/review.phppredictiveAlto
18FileAdvancedBluetoothDetailsHeaderController.javapredictiveAlto
19Filexxxx/xxxxxxx-xxxxxxx-xxxxxx.xxxpredictiveAlto
20Filexxxxxxxx/x/xxxxx/xxxxx-xxxxxxxxxxxpredictiveAlto
21Filexxxxxxxxxxxxxxx.xxxpredictiveAlto
22Filexxxxxxxxxxx/xxxxxxxxxxx/xxxxxx.xxxpredictiveAlto
23Filexxxxxxxx/xxxxx.xxxpredictiveAlto
24Filexxxxxxx\xxxxxxx_xxxxxx.xxxpredictiveAlto
25Filexxxx.xxxpredictiveMedia
26Filexxxxxxxxxxxxx.xxpredictiveAlto
27Filex:\xxxxxxx xxxxx\xxxxxx xxxxx\xxx\xxxxxxx.xxxpredictiveAlto
28Filexxx.xxxpredictiveBasso
29Filexxx_xxxx.xpredictiveMedia
30Filexxxxxx.xxx.xxxpredictiveAlto
31Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveAlto
32Filexx.xxxpredictiveBasso
33Filexxxxxxxxxxxx.xxpredictiveAlto
34Filexxxxxxxxxxxxxxx.xxxpredictiveAlto
35Filexxxx-xxxx.xxxpredictiveAlto
36Filexxxxxx.xxxxpredictiveMedia
37Filexxxxx.xxxpredictiveMedia
38Filexxxxx.xxxpredictiveMedia
39Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
40Filexxxxxxxxxxxxx.xxxpredictiveAlto
41Filexxxxxxx.xxxpredictiveMedia
42Filexxxxxx.xxxpredictiveMedia
43Filexxx/xxxxxx.xxxpredictiveAlto
44Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveAlto
45Filexxxxxxxx/xxxx.xxxpredictiveAlto
46Filexxxxx.xxxpredictiveMedia
47Filexxxxxxx/xxxxxxx.xxxpredictiveAlto
48Filexxxxxxxxxx.xxxpredictiveAlto
49Filexxxxx.xxxxxxx.xxxpredictiveAlto
50Filexxxx_xxxx.xxxpredictiveAlto
51Filexxxx_xxxx.xxxpredictiveAlto
52Filexxxxxxx.xpredictiveMedia
53Filexxxxxx/xxx/xxxxxxxx.xpredictiveAlto
54Filexxx/xxxxx.xxpredictiveMedia
55Filexxxxxxxxx.xxpredictiveMedia
56Filexxxxx.xxxpredictiveMedia
57Filexxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
58Filexxxxxx.xxxpredictiveMedia
59Filexxxxxxxxxxxxx.xxxxpredictiveAlto
60Filexxxxx_xxxxxx.xxxpredictiveAlto
61Filexxxxxxxxxxxxxx.xxxpredictiveAlto
62Filexxxxxxx_xxxxxxx.xxxpredictiveAlto
63Filexxxxxx.xxxpredictiveMedia
64Filexxxx.xxxpredictiveMedia
65Filexxxxxxxxxx.xxxpredictiveAlto
66Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveAlto
67Filexxx_xxx.xxpredictiveMedia
68Filexxxxxxxxxxxxx.xxxpredictiveAlto
69Filexxxxxxxxx.xxxpredictiveAlto
70Filexxxxxxx.xxxpredictiveMedia
71Filexxxxxxxxxxxxxxxx.xxxpredictiveAlto
72Filexxxx.xxxpredictiveMedia
73Filexxxx_xxxx.xxxpredictiveAlto
74Filexxxxx.xxpredictiveMedia
75Filexxxxxxx.xpredictiveMedia
76Filexxxx.xxxpredictiveMedia
77Filexxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
78Filexxxxxxxx.xxxpredictiveMedia
79Filexxxxxxxxxxxxxxx.xxxxpredictiveAlto
80Filexx-xxxxx/xxxxx-xxxxxx.xxxpredictiveAlto
81Libraryxxx_xxxxxx.xxxpredictiveAlto
82Libraryxxxxxxxxx.xxxpredictiveAlto
83Libraryxxxxxxxx.xxxpredictiveMedia
84ArgumentxxxxxxpredictiveBasso
85ArgumentxxxxxxxpredictiveBasso
86Argumentxxxxxx[xxxx]predictiveMedia
87ArgumentxxxxxxxpredictiveBasso
88ArgumentxxxxxxxxpredictiveMedia
89ArgumentxxxxxxxxpredictiveMedia
90Argumentxxxx_xxxpredictiveMedia
91Argumentxxxx_xxpredictiveBasso
92ArgumentxxxxxxxpredictiveBasso
93ArgumentxxxxxxxxxxpredictiveMedia
94Argumentxxxxxx_xxxxxxxpredictiveAlto
95Argumentxxxxxx_xxxxxx_xxpredictiveAlto
96Argumentxxxxxxxx[xxxx_xxx]predictiveAlto
97ArgumentxxxxxpredictiveBasso
98Argumentxxx_xxxxpredictiveMedia
99Argumentxxxxx_xxxx_xxxxpredictiveAlto
100Argumentxxxxxxx_xxpredictiveMedia
101ArgumentxxxxxxxxpredictiveMedia
102ArgumentxxxxpredictiveBasso
103Argumentxxxx_xxxxxpredictiveMedia
104Argumentxxxx/xxxxxxx/xxxxxxxpredictiveAlto
105ArgumentxxxxpredictiveBasso
106ArgumentxxpredictiveBasso
107Argumentxxxxxxxx_xxxxxxxx_xpredictiveAlto
108ArgumentxxxxxxxxxpredictiveMedia
109Argumentxxx_xxxpredictiveBasso
110Argumentxxx_xxxpredictiveBasso
111Argumentxxxx_xxpredictiveBasso
112ArgumentxxxxxpredictiveBasso
113Argumentxxx_xxxxxxx_xxxpredictiveAlto
114Argumentxxxxxxxxx_xxxxxxxx_xxxxpredictiveAlto
115ArgumentxxxxpredictiveBasso
116ArgumentxxpredictiveBasso
117ArgumentxxxxxxxpredictiveBasso
118Argumentxxxxxxx/xxxxxpredictiveAlto
119ArgumentxxxxpredictiveBasso
120Argumentxxxxx_xxxx_xxxxpredictiveAlto
121Argumentxxxx_xxpredictiveBasso
122Argumentxxxxx_xxxxxxpredictiveMedia
123Argumentxxx_xxxxpredictiveMedia
124ArgumentxxxxxxxxxxpredictiveMedia
125Argumentxxxx_xxxxpredictiveMedia
126Argumentxxx_xxxxx_xxx/xxx_xxxxxx_xxxpredictiveAlto
127Argumentxxxxxxx_xxpredictiveMedia
128ArgumentxxxxpredictiveBasso
129ArgumentxxxxxxpredictiveBasso
130ArgumentxxxxxxxxxpredictiveMedia
131ArgumentxxxxxxpredictiveBasso
132ArgumentxxxxxxxxxxpredictiveMedia
133ArgumentxxxxxxxxpredictiveMedia
134Argumentxxxxx_xxxxpredictiveMedia
135ArgumentxxxpredictiveBasso
136Argumentxxxxx/xxxxxxxxxxxpredictiveAlto
137ArgumentxxxpredictiveBasso
138ArgumentxxxxxxxxpredictiveMedia
139ArgumentxxxxxxxxpredictiveMedia
140ArgumentxxxxxxxxpredictiveMedia
141Argumentxxxxxxxx/xxxxxxxxpredictiveAlto
142Input Value\xxx../../../../xxx/xxxxxxpredictiveAlto

Referenze (2)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!