Shellbot 解析

IOB - Indicator of Behavior (353)

タイムライン

言語

en196
es134
de8
it4
fr4

国・地域

es134
us40
ru4
fr4
de2

アクター

アクティビティ

関心

タイムライン

タイプ

ベンダー

製品

Microsoft Windows16
Linux Kernel6
IBM AIX4
MyBB4
Adobe Framemaker4

脆弱性

#脆弱性BaseTemp0day本日修復CTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash 情報の漏洩5.35.2$5k-$25k$0-$5kHighWorkaround0.020.02016CVE-2007-1192
2DZCP deV!L`z Clanportal config.php 特権昇格7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.490.00943CVE-2010-0966
3Fortinet FortiOS Endpoint Monitor Persistent クロスサイトスクリプティング3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.020.00000
4IBM TRIRIGA Application Platform Error Message 情報の漏洩5.35.3$5k-$25k$5k-$25kNot DefinedNot Defined0.000.00107CVE-2020-4277
5IBM Security Secret Server URL Parameter 情報の漏洩3.73.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00063CVE-2021-20582
6Ultimate PHP Board UPB users.dat Password 特権昇格5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.000.00226CVE-2002-2322
7Microsoft Windows Netlogon 特権昇格7.57.4$25k-$100k$0-$5kNot DefinedOfficial Fix0.030.01121CVE-2016-3228
8Cisco Unified Communications Manager Mobile/Remote Access Services 特権昇格5.45.4$5k-$25k$5k-$25kNot DefinedNot Defined0.020.00095CVE-2015-6410
9Magnolia CMS Edit Contact クロスサイトスクリプティング4.84.8$0-$5k$0-$5kNot DefinedNot Defined0.020.00069CVE-2022-33098
10Tongda OA 2017 delete.php SQLインジェクション6.76.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.040.00079CVE-2023-5285
11SourceCodester Engineers Online Portal remove_inbox_message.php SQLインジェクション7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.070.00077CVE-2023-5281
12Caphyon Advanced Installer WinSxS DLL 特権昇格7.87.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.070.00042CVE-2022-4956
13ZZZCMS Database Backup File save.php restore 特権昇格7.16.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.070.00061CVE-2023-5263
14Tongda OA 2017 delete.php SQLインジェクション6.96.8$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.070.00077CVE-2023-5261
15SourceCodester Online Computer and Laptop Store Master.php register SQLインジェクション8.17.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.150.00063CVE-2023-5373
16Xinhu RockOA Password 特権昇格5.45.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00054CVE-2023-5296
17yasm nasm-pp.c if_condition サービス拒否4.54.5$0-$5k$0-$5kNot DefinedNot Defined0.000.00057CVE-2021-33460
18Multi-Vendor Online Groceries Management System view_product.php SQLインジェクション6.35.7$0-$5k計算中Proof-of-ConceptNot Defined0.020.00255CVE-2022-26632
19Linux Kernel KVM メモリ破損5.55.0$5k-$25k計算中Proof-of-ConceptOfficial Fix0.000.00042CVE-2021-22543
20vBulletin XMLRPC API breadcrumbs_create.php SQLインジェクション6.36.3$0-$5k$0-$5kHighUnavailable0.020.00102CVE-2014-2022

キャンペーン (1)

These are the campaigns that can be associated with the actor:

  • CVE-2020-17496

IOC - Indicator of Compromise (18)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (122)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDクラスIndicatorタイプ信頼度
1File.phppredictive
2File/admin/save.phppredictive
3File/cgi-bin/web_index.cgi?lang=en&src=AwSystem.html&ertqVvnKV4TjU9Vtpredictive
4File/chetc/shutdownpredictive
5File/etc/networkd-dispatcherpredictive
6File/integrations.jsonpredictive
7File/nav_bar_action.phppredictive
8File/nova/bin/traceroutepredictive
9File/photo/include/blog/article.phppredictive
10File/products/view_product.phppredictive
11File/purchase_order/classes/Master.php?f=delete_itempredictive
12File/rapi/read_urlpredictive
13File/var/adm/btmppredictive
14Fileactions/authenticate.phppredictive
15Filexxxxx.xxxpredictive
16Filexxxxx/xxxxxxxxx.xxxpredictive
17Filexxxxx/xxxxx.xxx/xxxxxxxx/xxxxxxpredictive
18Filexxx_xxxxxx_xxxxxx.xxxpredictive
19Filexxx.xxx?x=xxxxxxxx&x=xxxxxpredictive
20Filexxxxxxx.xxxpredictive
21Filexxxxxxxxxxx.xxxpredictive
22Filexxxxxxxxxxx_xxxxxx.xxxpredictive
23Filexxxx_xxxx.xxpredictive
24Filexxxxxx_xxxx.xxxpredictive
25Filexxxxxxxxx.xxpredictive
26Filexxxxxxxx.xpredictive
27Filexxxxxxxpredictive
28Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictive
29Filexxxxxxxxxx_xxxxx.xxxpredictive
30Filexxx.xxxxxxxxxx.xxxxxxxxxxx.xxxxxxxxxxxxpredictive
31Filexxxxxx.xxxpredictive
32Filexxxx/xxxxxxxxxxxxxxx.xxxpredictive
33Filexxxxxxxx.xxxxpredictive
34Filexxx.xpredictive
35Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictive
36Filexxxxxxx/xx/xxxxxx/xxxxx_xxxxx_xxxxxxxxxx/xxxxxx.xxxpredictive
37Filexxxxxxx/xx/xxxxxxx/xxxxxxxxxxx/xxxxxx.xxxpredictive
38Filexxxxxxxxxxxxx.xxxxxpredictive
39Filexxx.xxxpredictive
40Filexxx/xxxxxx.xxxpredictive
41Filexxx/xxxxxxx.xxxpredictive
42Filexxxxxxxxx/xxxxxxx_xxxx/xxxxxx.xxxpredictive
43Filexxxxxxxxxxxx.xxxpredictive
44Filexxxxx.xpredictive
45Filexxxxxxxxx.xxpredictive
46Filexxxxxxxxxx/xxxxxxxpredictive
47Filexxxxxx.xxxpredictive
48Filexxxxxxxxxpredictive
49Filexxxxxxxxx.xxxpredictive
50Filexxxxxxx.xxxpredictive
51Filexxxxxxx/xxxxxxxx/xxxx/xxxx-xx.xpredictive
52Filexxx_xxxxx.xxxx/xxx_xxxxxxxx.xxxxpredictive
53Filexxx/xxxx/xxx.xpredictive
54Filexxx.xxxpredictive
55Filexxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxxpredictive
56Filexxxxxxx.xxxpredictive
57Filexxxxxx_xxxxx_xxxxxxx.xxxpredictive
58Filexxxxxxx.xxpredictive
59Filexxxxx\xxxx.xxxpredictive
60Filexxxx-xxx/xxxxxxxx.xxxpredictive
61Filexxxxxx_xxxx.xxxpredictive
62Filexxxxxx-xxxx.xpredictive
63Filexxxxxxxxxxxxxxxxxxx?xxxxxx=xxxxxxxxxxxxxxxxxxxpredictive
64Filexxxxx.xxxpredictive
65Filexxxxx.xxxpredictive
66Filexxxxxxxxxx.xxxxpredictive
67Filexxxxxxx.xxxpredictive
68Filexxxxxxx.xxxpredictive
69Filexxxxxxxxxx.xxxpredictive
70Filexx-xxxxxxxx/xxxxxxxxx.xxxpredictive
71Library/xxx/xxx/xxx_xx-xxxxx-xxx/xxxxxxx.xx.xpredictive
72Library/_xxx_xxx/xxxxx.xxxpredictive
73Libraryxxxxxxxxx.xxxpredictive
74Libraryxxx/xxxx/xxxxxx.xpredictive
75Libraryxxxxxx_xxx.xxxpredictive
76Libraryxxxxxx.xxxpredictive
77Libraryxxxxxxxx.xxxpredictive
78Argument-xpredictive
79Argumentxxxxx/xxxxxpredictive
80Argumentxxxxxxpredictive
81Argumentxxx::xxxxxxx::xxxxxx/xxx::xxxxxxx::xxxxxxxxxxpredictive
82Argumentxxxxpredictive
83Argumentxxxxxxxxpredictive
84Argumentxxxxxx/xxxxxxxxxx/xxxxpredictive
85Argumentxxxxxxxxxxxxpredictive
86Argumentxxxxxxxx/xxxxxxpredictive
87Argumentxxxxxxxxxxxxxxxpredictive
88Argumentxxxxxxxxxpredictive
89Argumentxxxxxx_xxxxxxpredictive
90Argumentxxxxxxxxxxxxpredictive
91Argumentxx_xxx_xxxxxpredictive
92Argumentxxxxxpredictive
93Argumentxxxxxxxxxx_xxpredictive
94Argumentxxxxpredictive
95Argumentxxxxxxxxpredictive
96Argumentxxxxpredictive
97Argumentxxxpredictive
98Argumentxxxpredictive
99Argumentxxxxpredictive
100Argumentxxpredictive
101Argumentxxxxxpredictive
102Argumentxxxxpredictive
103Argumentxxxxxxxx_xxxpredictive
104Argumentxxxpredictive
105Argumentxxxx/xxxxxxxxxxxpredictive
106Argumentxxx xxxxxpredictive
107Argumentxxxxxxxxxxxxxxx/xxxx_xxxxpredictive
108Argumentxxxxxxxxpredictive
109Argumentxxxxxxpredictive
110Argumentxxxxxxxpredictive
111Argumentxxxxxpredictive
112Argumentxxxxxxxxxxx_xxpredictive
113Argumentxxxxxx_xxxxpredictive
114Argumentxxxxxx$xxxpredictive
115Argumentxxxxxxxxxxxxpredictive
116Argumentxxxxxxxxpredictive
117Argumentxxxxxpredictive
118Argumentxxxxpredictive
119Argumentxxxxxxxxpredictive
120Argumentxxxxxpredictive
121Input Valuex%xxxxx%xxx*x*x%xxx%xxxxx%xxxxx%xxxxxpredictive
122Network Portxxx xxxx/xxxx/xxxxpredictive

参考 (4)

The following list contains external sources which discuss the actor and the associated activities:

Might our Artificial Intelligence support you?

Check our Alexa App!