Moon Analisi

IOB - Indicator of Behavior (1000)

Sequenza temporale

Linguaggio

en920
de38
fr28
es8
pl4

Nazione

de38
fr26
gb14
es8
pl4

Attori

Attività

Interesse

Sequenza temporale

Genere

Fornitore

Prodotto

Microsoft Windows28
Linux Kernel26
Juniper Junos26
IBM Security Access Manager12
IBM AIX12

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConCTIEPSSCVE
1Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.020.00548CVE-2017-0055
2Microsoft IIS IP/Domain Restriction escalazione di privilegi6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.030.00817CVE-2014-4078
3IBM Cognos Disclosure Management EdrawSoft ActiveX Component escalazione di privilegi10.08.7$25k-$100k$0-$5kUnprovenOfficial Fix0.000.00452CVE-2013-0501
4VMware vSphere Client Certificate crittografia debole4.84.2$5k-$25k$0-$5kUnprovenOfficial Fix0.000.00059CVE-2014-1210
5Cisco IOS Service Module escalazione di privilegi7.87.0$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.000.00042CVE-2013-5522
6Sun Solaris tcsh Remote Code Execution8.88.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00122CVE-2003-1024
7IBM Cognos TM1 API denial of service5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix0.000.00228CVE-2013-0484
8IBM AIX TLS escalazione di privilegi3.73.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.020.00368CVE-2016-0266
9Automatedsolutions Modbus/TCP Master OPC Server buffer overflow10.09.0$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000.67846CVE-2010-4709
10Microsoft MS-DOS/Windows Carbon Copy 32 rivelazione di un 'informazione3.33.2$25k-$100k$0-$5kNot DefinedOfficial Fix0.020.00000
11IBM Tivoli Monitoring Express Enterprise Portal kde.dll buffer overflow10.09.0$25k-$100kCalcoloProof-of-ConceptOfficial Fix0.000.90916CVE-2007-2137
12Cisco Call Manager cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000.00257CVE-2007-4633
13Asterisk PBX res_http_websocket.so denial of service6.46.3$0-$5kCalcoloNot DefinedOfficial Fix0.030.61746CVE-2018-17281
14Red Hat Enterprise Linux Desktop 389 Directory Server Password rivelazione di un 'informazione7.57.3$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000.00647CVE-2016-5405
15IBM AIX rmsock Kernel rivelazione di un 'informazione4.24.2$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00055CVE-2018-1655
16Citrix Receiver Desktop Lock Screen Lock escalazione di privilegi6.86.6$5k-$25k$0-$5kProof-of-ConceptUnavailable0.000.00419CVE-2016-9111
17IBM Cognos TM1 admin escalazione di privilegi4.34.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00112CVE-2016-0381
18Juniper Junos srxpfe denial of service6.86.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00112CVE-2019-0052
19Microsoft IIS FTP Server buffer overflow7.57.2$25k-$100k$0-$5kHighOfficial Fix0.040.96872CVE-2010-3972
20Microsoft Internet Explorer buffer overflow6.96.6$25k-$100k$5k-$25kNot DefinedOfficial Fix0.030.09181CVE-2014-8985

IOC - Indicator of Compromise (20)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (20)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (196)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1File/appLms/ajax.server.phppredictiveAlto
2File/config/pw_changeusers.htmlpredictiveAlto
3File/dev/dri/card1predictiveAlto
4File/etc/cmh/cmh.confpredictiveAlto
5File/etc/shadowpredictiveMedia
6File/includes/plugins/mobile/scripts/login.phppredictiveAlto
7File/monitor/data/Upgrade/predictiveAlto
8File/port_3480predictiveMedia
9File/proc/kcore/predictiveMedia
10File/Site/Troubleshooting/DiagnosticReport.asppredictiveAlto
11File/systemlog.logpredictiveAlto
12File/tmppredictiveBasso
13File/uncpath/predictiveMedia
14Fileadmin/src/containers/InputModalStepperProvider/index.jspredictiveAlto
15Fileadmin\db\DoSql.phppredictiveAlto
16Fileadmsession.phppredictiveAlto
17Fileapcupsd_status.phppredictiveAlto
18FileAppOpsService.javapredictiveAlto
19Fileapp\contacts\contact_addresses.phppredictiveAlto
20Fileapp\contacts\contact_edit.phppredictiveAlto
21Fileapp\messages\messages_thread.phppredictiveAlto
22Filearch/powerpc/mm/mmu_context_book3s64.cpredictiveAlto
23FileBaseWidgetProvider.javapredictiveAlto
24Filexxxxxx/xxxxxxx.xpredictiveAlto
25Filexxxxxx.xpredictiveMedia
26Filexxxxxxxxxxxxx.xxxxx.xxxpredictiveAlto
27Filexxxx.xxxpredictiveMedia
28Filexxxxxxxxx/xxxxxxxxxx/xxxxxxpredictiveAlto
29Filexxxxxx/xx_xxxx.xxxxpredictiveAlto
30Filexxxxxxx.xxxpredictiveMedia
31Filexxxx/xxxxxxxxxxxx.xxxxxx/xxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
32Filexxxxxxxx.xpredictiveMedia
33Filexxxxxxx.xxxpredictiveMedia
34Filexxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
35Filexxxx_xxxxxxx.xxxpredictiveAlto
36Filexxx/xxxxxxx.xxxpredictiveAlto
37Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
38Filexxxxxxx/xxx/xxxxxx/xxxxxx.xpredictiveAlto
39Filexxxxxxx/xxxxx/xx-xxxxxxx.xpredictiveAlto
40Filexxxxxxx/xxx/xxx/xxx/xxxx_xxx.xpredictiveAlto
41Filexxxxxxx/xxx/xxx/xxx/xxxx_xxx/xxxx_xxx_xxx.xpredictiveAlto
42Filexxxxxxx/xxx/xxxxxxxxxx/xxxxx.xpredictiveAlto
43Filexxxxxxx/xxx/xxxxx/xxx.xpredictiveAlto
44Filexxxxxxx/xxx/xxxxx/xxx-xxx.xpredictiveAlto
45Filexxxxxxx/xxx/xxxx/xxxx.xpredictiveAlto
46Filexxxxxxx/xxx/xxxx/xxxxxx.xpredictiveAlto
47Filexxxxxxx/xxx/xxxx/xxxxxxxxx.xpredictiveAlto
48Filexxxxxxx/xxx/xxxx/xxxxx.xpredictiveAlto
49Filexxxxxxxx.xxxpredictiveMedia
50Filexxxxxxxxxxxx.xxxpredictiveAlto
51Filexxx_xxxxxxxx.xxpredictiveAlto
52Filexxxx_xxxxxxxxx.xpredictiveAlto
53Filexxxx/xxxxxxxxxx.xxpredictiveAlto
54Filexxxxxxxx/xxxxxxx.xpredictiveAlto
55Filexx/xxxxx/xxxxx-xxxxxx.xpredictiveAlto
56Filexx/xxxxx/xxxxxx.xpredictiveAlto
57Filexxxxxxxxx.xxxxxxxx.xxxxx.xxx.xxxpredictiveAlto
58Filexxxxxxxx_xxxxxx.xxpredictiveAlto
59Filexxx_xxxx.xxpredictiveMedia
60Filexxx_xxxxxx.xxxpredictiveAlto
61Filexxxx/xxxxx/xx/xxxxxpredictiveAlto
62Filexx/xxxxxxx/xxxxxx_xxx.xpredictiveAlto
63Filexx/xxxx/xxx_xxxxxx.xpredictiveAlto
64Filexx/xxx/xxx-xxxx.xpredictiveAlto
65Filexx/xxxxxx/xxxxxx.xpredictiveAlto
66Filexxxxxxxx-xxxxx-xxxxxxxx.xpredictiveAlto
67Filexxxxxxxx/xxxxxxx/xxxxxxx.xxxx.xxxpredictiveAlto
68Filexxxxx.xxxpredictiveMedia
69Filexxxxx.xxx?x=xxxxxx-xxxxxxpredictiveAlto
70Filexxxxxx/xxxxxxx/xxxxx.xpredictiveAlto
71Filexxxxxx/xxxxx.xpredictiveAlto
72Filexxxx/xxx/x/xxx_xxxxxx.xpredictiveAlto
73Filexxxx/xxx/x/xxx_xxxx.xpredictiveAlto
74Filexxxxxx.xpredictiveMedia
75Filexxxxx.xxxxpredictiveMedia
76Filexxxx.xxx.xxxpredictiveMedia
77Filexxxx.xxxpredictiveMedia
78Filexxxx.xxx?x=xxxxxpredictiveAlto
79Filexxxx.xxx?x=xxxxxpredictiveAlto
80Filexxxx.xxx?x=xxxxx&xxxx=xpredictiveAlto
81Filexxxxxxx.xpredictiveMedia
82Filexx_xxxx.xpredictiveMedia
83Filexxxxxx/xxxxx.xxxpredictiveAlto
84Filexxxxxxxx.xpredictiveMedia
85Filexxxxxxxxx.xxxpredictiveAlto
86Filexxxxxxx.xxxpredictiveMedia
87Filexxx_xx_xxx.xxpredictiveAlto
88Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
89Filexxx_xxxxxx.xxxxpredictiveAlto
90Filexxxxx.xxxpredictiveMedia
91Filexxxxxxxxxxx.xxxpredictiveAlto
92Filexxxxxxxxxxxxxx.xxxpredictiveAlto
93Filexxxxxxxxxx.xxxpredictiveAlto
94Filexxxxxxxxxxxxxx.xxxpredictiveAlto
95Filexxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxxpredictiveAlto
96Filexxxxx_xxx.xxxpredictiveAlto
97Filexxxxxx/xxx_xxxxxxx.xxxpredictiveAlto
98Filexxxxx.xxxpredictiveMedia
99Filexxxxx.xxpredictiveMedia
100Filexxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
101Filexxxxx.xxpredictiveMedia
102Filexxx/xxx_xxx_xxxxxxxx.xpredictiveAlto
103Filexxx_xxxx_xxxxxxxxx.xxpredictiveAlto
104Filexxx.xpredictiveBasso
105Filexxxxxxxx/xxxx/xxxxxx.xpredictiveAlto
106Filexxxxxx_xxxxxxxx.xxxpredictiveAlto
107Filexxxxxx_xxxxxxxxx.xxxpredictiveAlto
108Filexxxxxxxxxx.xxxpredictiveAlto
109Filexxxxx/xxxx/xxx_xxxxxx.xpredictiveAlto
110Filexxxxxx.xxxpredictiveMedia
111Filexxxxxxxxxx/xxxxxx_xxxxxxxx_xxxxxxx_xxxxxxx_xxxxxxx_xxxxxxxx.xxxpredictiveAlto
112Filexxxxxxxxxxxxxx.xxxxxxx.xxxxxxx.xxxpredictiveAlto
113Filexxxxxx.xxxpredictiveMedia
114Filexxxx.xpredictiveBasso
115Filexxxxxxxxx.xpredictiveMedia
116Filexxxxxxx.xxxpredictiveMedia
117Filexx/xxxxxx/xxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
118Filexxx_xxxxxx.xpredictiveMedia
119Filexxxxxxxxxx_xxxxxxxxx.xxxpredictiveAlto
120Filexxx_xxxxxxxxx.xpredictiveAlto
121Filexxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
122Filexxx/xxxxxxx/xxxx/xxxx/xxxx.xxxpredictiveAlto
123Filexxxx/xxxx_xxxxxxxxx.xpredictiveAlto
124Libraryxxxxxx.xxxpredictiveMedia
125Libraryxxxxxx.xxxpredictiveMedia
126Libraryxxxxxxxxx.xxxpredictiveAlto
127Libraryxxx.xxxpredictiveBasso
128Libraryxxxxxx.xxxpredictiveMedia
129Libraryxxxxxxx.xxxpredictiveMedia
130Libraryxxxxxxxxxxxx.xxxxxx.xxxpredictiveAlto
131Libraryxxxxxxx.xxxpredictiveMedia
132Libraryxxxxxx.xxxpredictiveMedia
133Argument$xxxxxpredictiveBasso
134Argument$xxxxxx.xxxxxxxxpredictiveAlto
135Argumentxxxxxx-xxxxxxxxpredictiveAlto
136ArgumentxxxxxxxxxxxpredictiveMedia
137ArgumentxxxpredictiveBasso
138ArgumentxxxxpredictiveBasso
139Argumentxxxxxxx_xxxxpredictiveMedia
140Argumentxxxxxx.xxxx[]/xxxxxx.xxxxx[]predictiveAlto
141ArgumentxxxxxxpredictiveBasso
142Argumentxxxxxxxxx/xxx-xxxxxxpredictiveAlto
143ArgumentxxxxxpredictiveBasso
144ArgumentxxxxxxxxpredictiveMedia
145ArgumentxxxxxxxxpredictiveMedia
146Argumentxxxxxx_xxxpredictiveMedia
147Argumentxxxxxx_xxxxxxpredictiveAlto
148Argumentxxxx_xxxxxxxxpredictiveAlto
149ArgumentxxpredictiveBasso
150Argumentxx_xxxxx_xxxxxxxxxxpredictiveAlto
151ArgumentxxxxpredictiveBasso
152Argumentxx-xpredictiveBasso
153ArgumentxxxxxpredictiveBasso
154ArgumentxxxxxpredictiveBasso
155ArgumentxxxxxxpredictiveBasso
156Argumentx_xxxxpredictiveBasso
157ArgumentxxxxxxxxxxpredictiveMedia
158ArgumentxxxxxxxxxpredictiveMedia
159ArgumentxxxxxxxxxxxpredictiveMedia
160Argumentx_xx_x_xpredictiveMedia
161ArgumentxxxxxpredictiveBasso
162Argumentxxxxx_xxxxxxpredictiveMedia
163ArgumentxxxxxxxxpredictiveMedia
164Argumentxxxxxx_xxxxpredictiveMedia
165ArgumentxxxpredictiveBasso
166ArgumentxxxxxxxxxxxxpredictiveMedia
167Argumentxxxxxx/xxxxxx/xxxpredictiveAlto
168ArgumentxxxxxxxpredictiveBasso
169Argumentxxxxxxx/xx/xxxxxxxxxxx/xxxx_xxpredictiveAlto
170ArgumentxxxxxxxxpredictiveMedia
171Argumentxxxxxx_xxxxpredictiveMedia
172ArgumentxxxpredictiveBasso
173Argumentxxxx_xxxxxxxxpredictiveAlto
174Argumentxxxxxx xxxxx xxpredictiveAlto
175Argumentxxxxxx xxxxxxxpredictiveAlto
176ArgumentxxxxxxxxxxpredictiveMedia
177ArgumentxxxxxxxxxxxpredictiveMedia
178ArgumentxxxxxpredictiveBasso
179ArgumentxxxpredictiveBasso
180ArgumentxxxpredictiveBasso
181Argumentxxxx-xxxxxpredictiveMedia
182ArgumentxxxxxxxxpredictiveMedia
183Input Value..predictiveBasso
184Input Value../predictiveBasso
185Input Value/../predictiveBasso
186Input Valuexxx.xxxx.%xxx.%xxxpredictiveAlto
187Input ValuexxxxxxxxpredictiveMedia
188Input Value::$xxxxx_xxxxxxxxxxpredictiveAlto
189Input Value{"x":(xxxxxxxx(){xxxxxxx(x)})()}predictiveAlto
190Pattern|xx|xx|xx|predictiveMedia
191Pattern|xx xx xx xx xx|predictiveAlto
192Network Portxxx xxxxxpredictiveMedia
193Network Portxxxxxxxxxx xxxxxxxpredictiveAlto
194Network Portxxx/xxxxpredictiveMedia
195Network Portxxx/xxxxpredictiveMedia
196Network Portxxx xxxxxx xxxxpredictiveAlto

Referenze (3)

The following list contains external sources which discuss the actor and the associated activities:

Do you need the next level of professionalism?

Upgrade your account now!