Fareit Analiza

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (434)

Oś czasu

Język

en320
zh56
ru48
pl4
it2

Kraj

la212
us102
ru80
cn22
gb18

Aktorzy

Cobalt Strike14
RedLine Stealer13
TrickBot11
Ave Maria10
Quasar RAT4

Zajęcia

Wysiłek

Oś czasu

Rodzaj

Not Defined166
Content Management System32
Operating System16
Programming Language Software12
Groupware Software10

Sprzedawca

Not Defined168
Microsoft20
Atlassian12
Apache10
Bitrix8

Produkt

WordPress10
Microsoft Windows10
Atlassian Data Center8
phpMyAdmin6
Apache Tomcat6

Luki w zabezpieczeniach

#Słaby punktBaseTemp0dayDzisiajWykPrzEPSSCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.020160.02CVE-2007-1192
2DZCP deV!L`z Clanportal config.php privilege escalation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.009430.47CVE-2010-0966
3TikiWiki tiki-register.php privilege escalation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010091.00CVE-2006-6168
4nginx privilege escalation6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002413.12CVE-2020-12440
5Tiki Admin Password tiki-login.php weak authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix0.009362.94CVE-2020-15906
6Bitrix Site Manager Vote Module Remote Code Execution7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.006680.11CVE-2022-27228
7jQuery html cross site scripting5.85.1$0-$5k$0-$5kNot DefinedOfficial Fix0.019000.00CVE-2020-11023
8Esri ArcGIS Server sql injection8.18.0$0-$5k$0-$5kNot DefinedOfficial Fix0.001230.04CVE-2021-29114
9ILIAS Cloze Test Text gap Persistent cross site scripting5.25.1$0-$5k$0-$5kNot DefinedOfficial Fix0.001930.03CVE-2019-1010237
10OpenX adclick.php Redirect5.34.7$0-$5k$0-$5kUnprovenUnavailable0.004400.50CVE-2014-2230
11Drupal Sanitization API cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000560.02CVE-2020-13672
12LogicBoard CMS away.php Redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000001.93
13Harbor weak authentication6.96.8$0-$5k$0-$5kNot DefinedNot Defined0.014730.03CVE-2022-46463
14LiteSpeed Cache Plugin Shortcode cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.000510.03CVE-2023-4372
15WebTitan Appliance Extensions Persistent cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.000000.02
16ipTIME NAS-I Bulletin Manage privilege escalation7.17.1$0-$5k$0-$5kNot DefinedNot Defined0.009880.03CVE-2020-7847
17Jitsi Meet weak authentication8.57.9$0-$5k$0-$5kNot DefinedNot Defined0.001960.03CVE-2020-11878
18request-baskets API Request {name} privilege escalation6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.081090.00CVE-2023-27163
19PHP phpinfo cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.021010.04CVE-2007-1287
20Microsoft Windows Scripting Engine Remote Code Execution5.95.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.371130.00CVE-2021-34480

IOC - Indicator of Compromise (183)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDadres IPHostnameAktorKampanieIdentifiedRodzajPewność siebie
12.59.41.199man-spb.ruFareit2022-04-12verifiedWysoki
25.77.32.186horwich.eukhosting.netFareit2022-05-05verifiedWysoki
317.173.66.181Fareit2022-05-05verifiedWysoki
420.42.73.29Fareit2022-04-23verifiedWysoki
520.189.173.22Fareit2022-04-23verifiedWysoki
623.21.126.66ec2-23-21-126-66.compute-1.amazonaws.comFareit2021-07-24verifiedMedium
723.21.252.4ec2-23-21-252-4.compute-1.amazonaws.comFareit2021-07-24verifiedMedium
823.96.24.107Fareit2022-05-05verifiedWysoki
923.247.23.36Fareit2022-04-08verifiedWysoki
1034.117.168.233233.168.117.34.bc.googleusercontent.comFareit2021-10-24verifiedMedium
1134.200.198.80ec2-34-200-198-80.compute-1.amazonaws.comFareit2022-05-05verifiedMedium
1235.171.65.219ec2-35-171-65-219.compute-1.amazonaws.comFareit2022-05-05verifiedMedium
1335.223.217.188188.217.223.35.bc.googleusercontent.comFareit2022-05-05verifiedMedium
1437.10.116.208Fareit2022-04-29verifiedWysoki
1537.48.104.71Fareit2022-05-05verifiedWysoki
1637.57.15.77.15.57.37.triolan.netFareit2022-05-07verifiedWysoki
1738.18.228.192Fareit2022-04-08verifiedWysoki
1846.37.195.55.pool-46.37.195.icn.uaFareit2022-05-07verifiedWysoki
1946.101.56.69Fareit2022-05-05verifiedWysoki
2046.101.122.232Fareit2022-05-05verifiedWysoki
2146.118.147.5446-118-147-54.broadband.kyivstar.netFareit2022-05-07verifiedWysoki
2246.211.74.7946-211-74-79.mobile.kyivstar.netFareit2022-05-07verifiedWysoki
2346.216.100.4Fareit2022-05-07verifiedWysoki
2446.250.3.8846.250.3.88.pool.breezein.netFareit2022-05-07verifiedWysoki
2550.87.236.23850-87-236-238.unifiedlayer.comFareit2021-10-24verifiedWysoki
2650.97.212.250fa.d4.6132.ip4.static.sl-reverse.comFareit2022-04-08verifiedWysoki
2751.15.44.251tor-13.dc6jgk.deFareit2022-04-08verifiedWysoki
2852.1.79.244ec2-52-1-79-244.compute-1.amazonaws.comFareit2022-05-05verifiedMedium
2952.8.196.60ec2-52-8-196-60.us-west-1.compute.amazonaws.comFareit2022-05-05verifiedMedium
3052.54.24.134ec2-52-54-24-134.compute-1.amazonaws.comFareit2022-04-08verifiedMedium
3152.86.54.255ec2-52-86-54-255.compute-1.amazonaws.comFareit2022-05-05verifiedMedium
3252.182.143.212Fareit2022-04-23verifiedWysoki
3362.75.224.4prag239.dedicatedpanel.comFareit2022-05-05verifiedWysoki
3462.173.140.44itkn.planetahost.ruFareit2022-04-12verifiedWysoki
3562.210.204.5562-210-204-55.rev.poneytelecom.euFareit2022-04-08verifiedWysoki
3662.212.132.14862.212.132.148.xenosite.netFareit2023-10-02verifiedWysoki
3763.141.242.46Fareit2021-11-16verifiedWysoki
38XX.XXX.XXX.XXXxxxx-xx-xxx-xxx-xxx.xxx.xxxxxx.xxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
39XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxxxxx.xxxx.xxxXxxxxx2022-05-05verifiedWysoki
40XX.XXX.XX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
41XX.XX.X.XXXXxxxxx2022-05-05verifiedWysoki
42XX.XXX.XXX.XXXxxxxxxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
43XX.XXX.XXX.XXxx-xxx-xxx-xx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
44XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xx.xxx.xx.xxxXxxxxx2021-10-24verifiedWysoki
45XX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2021-11-16verifiedWysoki
46XX.XX.XXX.XXXxxxxxx.xxxxxxxxx.xxxXxxxxx2021-10-16verifiedWysoki
47XX.XX.XX.XXXxx-xx-xx-xxx.xx-xxxxx.xxxxxx.xxXxxxxx2023-10-02verifiedWysoki
48XX.XX.XX.XXXxxxx-xxxx.xxxxxx.xxxxx-x.xxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
49XX.XXX.XXX.XXxxxxxxxxxxx.xxxxxxxx-xxxx.xxx.xxxXxxxxx2022-04-14verifiedWysoki
50XX.XXX.XX.XXxx.xxx.xx.xx.xxx.xxxxx.xxxXxxxxx2022-05-07verifiedWysoki
51XX.XXX.XX.Xxx.xxx.xx.x.xxx.xxxxx.xxxXxxxxx2022-05-07verifiedWysoki
52XX.XXX.XXX.XXXXxxxxx2022-04-12verifiedWysoki
53XX.XX.XX.XXxxxxxx.xx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx2022-05-05verifiedWysoki
54XX.XX.XX.XXXxxxxxx.xxx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx2022-05-05verifiedWysoki
55XX.XX.XXX.XXXxxxx.xxxxxxxxx.xxXxxxxx2022-04-08verifiedWysoki
56XX.XXX.XXX.XXXxxxxx2021-07-24verifiedWysoki
57XX.XX.XX.Xxxxxx-xxxx.xx.xxXxxxxx2022-04-12verifiedWysoki
58XX.XXX.XX.XXxxxxxx-xx-xxx-xx.xxxxxxxxxxxxxx.xxxxx.xxXxxxxx2022-04-30verifiedWysoki
59XX.XX.XX.XXXXxxxxx2021-11-16verifiedWysoki
60XX.XX.XX.XXXXxxxxx2021-11-16verifiedWysoki
61XX.XXX.XXX.XXxxx.xxxxx.xxXxxxxx2021-10-24verifiedWysoki
62XX.XXX.XXX.XXXxxx.xxxxx.xxXxxxxx2021-10-24verifiedWysoki
63XX.XXX.XXX.XXxxxxxxxx.xxxxxxxxxxxx.xxxXxxxxx2023-10-02verifiedWysoki
64XX.XXX.XXX.XXXxxxxxx.xxXxxxxx2023-10-02verifiedWysoki
65XX.XXX.XX.XXxxxxxxxxxxxx.xxxxxxxx.xxxxxxxxx.xxXxxxxx2022-05-07verifiedWysoki
66XX.XXX.XX.XXxxxxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
67XX.XXX.XXX.XXxx.xxx.xxx.xx.xx.xxxxx.xxXxxxxx2022-05-07verifiedWysoki
68XX.XXX.XX.XXXxxxxx2021-10-24verifiedWysoki
69XX.XXX.XXX.XXxxxxxxxx.xxxxxx.xxXxxxxx2023-10-02verifiedWysoki
70XX.XXX.XXX.XXXxxxxx2022-05-07verifiedWysoki
71XX.XX.XXX.XXXxxxxxxx.xxxxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
72XX.XX.XXX.XXxxxxxxx.xxxxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
73XX.XX.XXX.XXxxxxx2022-05-05verifiedWysoki
74XX.XX.XXX.XXXxxxxxx-xx-xx-xx-xxx-xxx.xxxxxx.xx-xxxx.xxxXxxxxx2022-05-05verifiedWysoki
75XX.XXX.XXX.XXXxxxxxx-xxxxxx.xxx.xxxxx.xxXxxxxx2021-10-24verifiedWysoki
76XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
77XX.XXX.XXX.XXxxxxx.xxxxx-xxxxxxxxxxx.xxxXxxxxx2023-10-02verifiedWysoki
78XX.XXX.XX.XXXxxx.xxxxxxxxx.xxXxxxxx2021-10-24verifiedWysoki
79XX.XXX.XX.XXXxxxxx2023-10-02verifiedWysoki
80XX.XX.XX.XXxxxxxx.xx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx2022-05-05verifiedWysoki
81XX.XXX.XX.XXXXxxxxx2022-04-12verifiedWysoki
82XX.XXX.XXX.XXXXxxxxx2021-07-24verifiedWysoki
83XX.XXX.XXX.XXxxxxx.xxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
84XX.XXX.XX.XXxxxxxxx.xxxxxxxxxx.xxXxxxxx2021-10-24verifiedWysoki
85XX.XX.XXX.XXxx.xx.xxx.xx.xxx.xxxxx.xxxXxxxxx2022-05-07verifiedWysoki
86XX.XXX.XXX.XXXXxxxxx2022-04-12verifiedWysoki
87XX.XXX.XXX.XXXxxxxx2022-04-08verifiedWysoki
88XX.XXX.XXX.XXXxxxxx2022-04-08verifiedWysoki
89XXX.XX.XX.XXXxxxxxxx.xxxxx.xxXxxxxx2022-04-08verifiedWysoki
90XXX.XX.XX.XXXxxxxxxx.xxxxx.xxXxxxxx2021-11-16verifiedWysoki
91XXX.XX.XX.XXxxxxxx.xxXxxxxx2022-05-05verifiedWysoki
92XXX.XX.XXX.XXXxxx-xx-xxx-xxx.xxxxxxx.xxxXxxxxx2022-05-11verifiedWysoki
93XXX.XX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
94XXX.XX.XX.XXXXxxxxx2022-04-30verifiedWysoki
95XXX.XX.XX.XXXXxxxxx2022-04-30verifiedWysoki
96XXX.XX.XXX.XXXXxxxxx2022-04-08verifiedWysoki
97XXX.XX.XX.XXXXxxxxx2022-05-11verifiedWysoki
98XXX.XX.XX.XXXXxxxxx2022-05-11verifiedWysoki
99XXX.XXX.XXX.XXXxxxx-xxx-xxx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
100XXX.XXX.XX.XXXxxxxx2022-04-23verifiedWysoki
101XXX.XXX.XXX.XXXxxxxx2022-05-05verifiedWysoki
102XXX.XXX.XXX.XXXxx-xxxxxxxx.xxxxx.xxxXxxxxx2021-10-24verifiedWysoki
103XXX.XXX.XXX.XXxxx-xxx-xxx-xx-xxxx.xxxxxxxxxxxx.xxxXxxxxx2021-07-24verifiedWysoki
104XXX.XXX.XXX.XXXxxxxx2022-05-05verifiedWysoki
105XXX.XX.XX.Xx.xx.xx.xxx.xxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
106XXX.XXX.X.XXxxx-xxx-x-xx.xxxxxxxxx.xxxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
107XXX.XX.XX.XXXXxxxxx2022-10-23verifiedWysoki
108XXX.XXX.XXX.XXXxx.xxxxxxxxxxx.xx.xxXxxxxx2021-10-24verifiedWysoki
109XXX.XXX.XXX.XXXxxxxxx.xxxxxxxx.xxxXxxxxx2021-10-16verifiedWysoki
110XXX.XXX.XXX.XXxxxxx2022-05-07verifiedWysoki
111XXX.XX.XX.Xxxxxxxxxx.xxxxxxx.xxXxxxxx2022-04-08verifiedWysoki
112XXX.XXX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
113XXX.XX.XXX.XXxx-xxx-xx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxx2021-10-16verifiedWysoki
114XXX.XX.XXX.XXXxxx.xxxxxxx.xxxXxxxxx2022-04-12verifiedWysoki
115XXX.XXX.XX.XXXXxxxxx2022-10-01verifiedWysoki
116XXX.XX.XXX.XXXxxxxx2022-04-30verifiedWysoki
117XXX.XX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
118XXX.XX.XXX.XXXxxxxx2022-04-30verifiedWysoki
119XXX.XX.XXX.XXXXxxxxx2022-05-11verifiedWysoki
120XXX.XXX.XX.XXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
121XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2022-05-05verifiedWysoki
122XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2022-05-05verifiedWysoki
123XXX.XXX.XX.Xx.xx.xxxx.xxx.xxxxxx.xx-xxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
124XXX.XXX.XX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
125XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
126XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-11-16verifiedWysoki
127XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-11-16verifiedWysoki
128XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2021-11-16verifiedWysoki
129XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
130XXX.XXX.XXX.XXXxxxxx2022-05-05verifiedWysoki
131XXX.XXX.XXX.XXXxxxxx2021-10-24verifiedWysoki
132XXX.XXX.XXX.XXXXxxxxx2022-04-30verifiedWysoki
133XXX.XXX.XXX.XXXXxxxxx2022-04-30verifiedWysoki
134XXX.X.XX.XXXxxx-x-xx-xxx.xxxxxxxxx.xxxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
135XXX.XXX.X.XXxxx-xxx-x-xx.xxxxxxx.xxXxxxxx2022-05-07verifiedWysoki
136XXX.XX.XX.Xxxx.xx-xxx-xx-xx.xxXxxxxx2023-10-02verifiedWysoki
137XXX.XX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
138XXX.XXX.XXX.XXXXxxxxx2022-04-12verifiedWysoki
139XXX.XXX.XXX.XXxx.xxx.xxx.xxx.xxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
140XXX.XXX.XX.Xx.xx.xxx.xxx.xxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
141XXX.XXX.XXX.XXxx.xxx.xxx.xxx.xxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki
142XXX.XXX.XX.XXxxx-xxx-xx-xx-xx.xxxxxx.xxXxxxxx2022-05-07verifiedWysoki
143XXX.XXX.XX.XXxxxxx-xxx-xx.xxxxxx.xxXxxxxx2022-05-07verifiedWysoki
144XXX.XX.XXX.XXXxxxx-xx-xxx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
145XXX.XXX.XXX.XXXxx-xxx-xxx-xxx-xxx.xx.xxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
146XXX.XX.XXX.Xxxx.xx.xxx.x.xxxxxxxxx-xxxXxxxxx2022-04-08verifiedWysoki
147XXX.XXX.XXX.XXXxxxxxxxxxxxxxxxxxx.xxxxxxxxxxxxxxxxx.xxXxxxxx2022-04-08verifiedWysoki
148XXX.XXX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
149XXX.XXX.XX.XXXxxxxxxxxxx.xx.xxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
150XXX.XXX.XX.XXxxxx-xxx-xxx-xx-xx.xx.xxx.xxXxxxxx2022-05-07verifiedWysoki
151XXX.XXX.XXX.XXXxxxxx2022-05-07verifiedWysoki
152XXX.XXX.XX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxx2022-04-30verifiedWysoki
153XXX.XXX.XX.XXxxxxx-xx.xxxxxxx.xxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
154XXX.XXX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
155XXX.XXX.XXX.XXXxxx.xxxxx.xxxxXxxxxx2021-11-16verifiedWysoki
156XXX.XX.XXX.XXXxxxxxxxxxx.xxxxxxx.xxXxxxxx2022-04-08verifiedWysoki
157XXX.XX.XX.XXXxxx.xx.xx.xxx.xxxxxx.xxxxxx.xxXxxxxx2022-05-05verifiedWysoki
158XXX.XXX.XXX.XXXxxxxx2022-05-05verifiedWysoki
159XXX.XX.XXX.XXXXxxxxx2022-05-05verifiedWysoki
160XXX.XXX.XXX.XXXxxx.xxxxx.xxxXxxxxx2022-04-12verifiedWysoki
161XXX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx2022-05-05verifiedWysoki
162XXX.XX.XX.XXXXxxxxx2022-04-30verifiedWysoki
163XXX.XX.XX.Xxxxxxx.xxxxxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
164XXX.XX.XXX.XXxxxxxxxxxx-x.xxx-xxxxxxx.xxxXxxxxx2021-10-24verifiedWysoki
165XXX.XX.XXX.XXxxxxx-xx.xxxxxxx.xxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
166XXX.XXX.XXX.XXXXxxxxx2022-04-30verifiedWysoki
167XXX.XXX.XX.XXXxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
168XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxx2022-05-11verifiedWysoki
169XXX.XXX.XXX.XXxxxxx.xxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
170XXX.XX.XXX.Xxx-xxx.xxxXxxxxx2022-05-05verifiedWysoki
171XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-11-16verifiedWysoki
172XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
173XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx2021-07-24verifiedWysoki
174XXX.XX.XXX.XXXXxxxxx2023-10-02verifiedWysoki
175XXX.XXX.XXX.XXXXxxxxx2022-04-08verifiedWysoki
176XXX.X.XX.XXXxxxxxxxxxxx-xxxxx.xxxxxxxxx-xxxxx.xxXxxxxx2021-10-24verifiedWysoki
177XXX.XXX.XX.XXxxxxxxxx.xxxxx.xxxxxXxxxxx2022-04-12verifiedWysoki
178XXX.XXX.XXX.XXXxxx-xxxxxxx.xxxxxxx.xxXxxxxx2022-04-12verifiedWysoki
179XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx2022-05-05verifiedWysoki
180XXX.XXX.X.XXxxx-xxx-x-xx.xxxxxxx-xxx.xx-x.xxxXxxxxx2021-10-24verifiedWysoki
181XXX.XXX.X.XXXxxx-xxx-x-xxx.xxxxxxx-xxx.xx-x.xxxXxxxxx2021-10-24verifiedWysoki
182XXX.XXX.XXX.XXxxxxxxxxxxxxx.xxXxxxxx2022-04-08verifiedWysoki
183XXX.XX.XXX.XXxxxx-xxx-xx-xxx-xx.xxxxxxx.xxxxxxxxx.xxxXxxxxx2022-05-07verifiedWysoki

TTP - Tactics, Techniques, Procedures (21)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueKlasaLuki w zabezpieczeniachWektor dostępuRodzajPewność siebie
1T1006CAPEC-126CWE-21, CWE-22, CWE-24Path TraversalpredictiveWysoki
2T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveWysoki
3T1059CAPEC-137CWE-88, CWE-94, CWE-1321Argument InjectionpredictiveWysoki
4T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveWysoki
5T1068CAPEC-122CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveWysoki
6TXXXXCAPEC-150CWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx XxxxxxxxpredictiveWysoki
7TXXXX.XXXCAPEC-16CWE-XXX, CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveWysoki
8TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveWysoki
9TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveWysoki
10TXXXXCAPEC-0CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveWysoki
11TXXXXCAPEC-1CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveWysoki
12TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveWysoki
13TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveWysoki
14TXXXXCAPEC-112CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveWysoki
15TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveWysoki
16TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveWysoki
17TXXXXCAPEC-116CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveWysoki
18TXXXX.XXXCAPEC-0CWE-XXXxxxxxxxxxxxxpredictiveWysoki
19TXXXXCAPEC-112CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveWysoki
20TXXXX.XXXCAPEC-0CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveWysoki
21TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveWysoki

IOA - Indicator of Attack (216)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlasaIndicatorRodzajPewność siebie
1File/admin/dl_sendmail.phppredictiveWysoki
2File/admin/login.phppredictiveWysoki
3File/adminPage/conf/reloadpredictiveWysoki
4File/api/baskets/{name}predictiveWysoki
5File/api/v2/cli/commandspredictiveWysoki
6File/app/Http/Controllers/Admin/NEditorController.phppredictiveWysoki
7File/Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=predictiveWysoki
8File/DXR.axdpredictiveMedium
9File/forum/away.phppredictiveWysoki
10File/mfsNotice/pagepredictiveWysoki
11File/mgmt/tm/util/bashpredictiveWysoki
12File/mifs/c/i/reg/reg.htmlpredictiveWysoki
13File/novel/bookSetting/listpredictiveWysoki
14File/novel/userFeedback/listpredictiveWysoki
15File/owa/auth/logon.aspxpredictiveWysoki
16File/secure/ViewCollectorspredictiveWysoki
17File/SessionpredictiveMedium
18File/spip.phppredictiveMedium
19File/usr/bin/pkexecpredictiveWysoki
20File/xAdmin/html/cm_doclist_view_uc.jsppredictiveWysoki
21File/x_portal_assemble_surface/jaxrs/portal/list?v=8.2.3-4-43f4fe3predictiveWysoki
22File/zm/index.phppredictiveWysoki
23Fileadclick.phppredictiveMedium
24Fileadd_comment.phppredictiveWysoki
25Filexxxxx.xxxxxxxxx.xxxpredictiveWysoki
26Filexxxxx/xxxxxxx.xxxpredictiveWysoki
27Filexxxxxxxxxxx/xxxxxxx/xxxxx/xxxxx/xxxxxxxxx/xxxxxxxx.xxxpredictiveWysoki
28Filexxxx/xxxxxxxxxxxx.xxxpredictiveWysoki
29Filexxxx.xxxpredictiveMedium
30Filexx_xxxx_xx_xxxx_xxxx.xxxpredictiveWysoki
31Filexxxx_xxxxxxx.xxxpredictiveWysoki
32Filexxx.xxxpredictiveNiski
33Filexxx-xxx/xxxxxxx.xxpredictiveWysoki
34Filexxxxxxxx.xxxpredictiveMedium
35Filexxxxx.xxxpredictiveMedium
36Filexxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx/xxxx_xxxxx.xxxxpredictiveWysoki
37Filexxxxx-xxxxxxx.xxxpredictiveWysoki
38Filexxxxxxxxxx/xxx_xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxpredictiveWysoki
39Filexxxxxx.xxxpredictiveMedium
40Filexxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxpredictiveWysoki
41Filexxxxxxxxxx\xxxx.xxxpredictiveWysoki
42Filexxxxxxxxxxx.xxxpredictiveWysoki
43Filex_xxxxxxpredictiveMedium
44Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveWysoki
45Filexxxxxxx_xxxxx.xxxpredictiveWysoki
46Filexxxx-xxxxxx.xxxpredictiveWysoki
47Filexxxxx.xxxpredictiveMedium
48Filexxxxxxxxxxx.xxxxx.xxxpredictiveWysoki
49Filexxxx_xxxxxxxx.xxxpredictiveWysoki
50Filexxxxxxxxxxxxxxxxx.xxxpredictiveWysoki
51Filexxxxxxxxx/xxxxx/xxxxxxxxxxxx/xxxxxxxxx.xxxpredictiveWysoki
52Filexxxxxxxxxxx.xpredictiveWysoki
53Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveWysoki
54Filexxxx.xxxpredictiveMedium
55Filexxxxx_xxxx.xxxpredictiveWysoki
56Filexxxxxxxxx.xxxpredictiveWysoki
57Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveWysoki
58Filexxx/xxxxxx.xxxpredictiveWysoki
59Filexxxxxxxx/xxxxxxx/xxxxxxx.xxxx.xxxpredictiveWysoki
60Filexxxxx.xxxxpredictiveMedium
61Filexxxxx.xxxpredictiveMedium
62Filexxxxx.xxx/xxxxxx.xxx/xxxxxxxxxxxxx.xxx/xxxxxxxx.xxxpredictiveWysoki
63Filexxxxx.xxx/xxxxxxx/xxxxxpredictiveWysoki
64Filexxxxx.xxx?x=xxxx&x=xxxx&x=xx_xxx_xxxxxxpredictiveWysoki
65Filexxxxx.xxx?x=xxxx&x=xxxxxxx&x=xxxpredictiveWysoki
66Filexxxxx.xxpredictiveMedium
67Filexxxxxxx.xxxpredictiveMedium
68Filexxxx.xxxpredictiveMedium
69Filexxxx_xxxxxxx.xxxpredictiveWysoki
70Filexxxxxxxxx/xxxxxx.xxx.xxxpredictiveWysoki
71Filexxx.xxxpredictiveNiski
72Filexxxxx-xxxx-xxxx.xxxpredictiveWysoki
73Filexxxxx.xxxxpredictiveMedium
74Filexxxxx.xxxpredictiveMedium
75Filexxxx.xxxxpredictiveMedium
76Filexx_xxxx.xpredictiveMedium
77Filexxx_xxxxx_xxxx.xpredictiveWysoki
78Filexxx/xxxx/xxxx_xxxxxxxxx.xpredictiveWysoki
79Filexxxxxxx_xxxx.xxxpredictiveWysoki
80Filexxxxxxxxxxxxxxxxx.xxxpredictiveWysoki
81Filexxxxxxx.xxxpredictiveMedium
82Filexxxxxxx.xxxpredictiveMedium
83Filexxxxxxx/xxxxxxx/xxx/xxxxxxxxxx.xxx?xxxxxxxx=xxxx&xxxxxx=xxxxxxxxxxpredictiveWysoki
84Filexxxxxxx_xxxxxxx_xxxx.xxxpredictiveWysoki
85Filexxx_xxxxxx.xxxxpredictiveWysoki
86Filexxxxxxxx.xxxpredictiveMedium
87Filexxxxxxxx.xxxpredictiveMedium
88Filexxxxxxx.xxxpredictiveMedium
89Filexxxxxxx/xxxxxxxxxxxxx.xxxxpredictiveWysoki
90Filexxxxxxxxxxxxxxx.xxxpredictiveWysoki
91Filexxxx_xxxx_xxxxxx.xxxpredictiveWysoki
92Filexxxxxx.xxpredictiveMedium
93Filexxxxxx_xxxxxxx.xxxpredictiveWysoki
94Filexxxxxxxx/xxxx/xxxx.xxx?xxxxxx=xxxxxxxxxxxxxxxxpredictiveWysoki
95Filexxxx.xxxpredictiveMedium
96Filexxxx.xxpredictiveNiski
97Filexxxxxxxx_xxxx.xxxpredictiveWysoki
98Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveWysoki
99Filexxxx_xxxxx.xxxxpredictiveWysoki
100Filexxxxx.xxxpredictiveMedium
101Filexxxxxxxxxx_xxxx.xxxpredictiveWysoki
102Filexxx/xxxx/xxxxpredictiveWysoki
103Filexxxxxx\xxxxxxxx\xx_xxxxx_xxxxxxx.xxxpredictiveWysoki
104Filexxxxxxx.xxx.xx.xxxxxxxxxxx.xxxpredictiveWysoki
105Filexxxxxxxx.xxxxx.xxxpredictiveWysoki
106Filexxxxxxxxx/xxxxxxxx.xxxpredictiveWysoki
107Filexxxx_xxxxxx.xxpredictiveWysoki
108Filexxxx-xxxxx.xxxpredictiveWysoki
109Filexxxx-xxxxxxxx.xxxpredictiveWysoki
110Filexxxxxx_xxxxx.xxxpredictiveWysoki
111Filexxxxxx.xxxpredictiveMedium
112Filexxxxxxx-xxxxx.xxxpredictiveWysoki
113Filexxxx_xxxxx.xxxpredictiveWysoki
114Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveWysoki
115Filexxxxx.xpredictiveNiski
116Filexxxx.xxxpredictiveMedium
117Filexxx-xxx/predictiveMedium
118Filexxxxxxx/xxx/xxxxxxxpredictiveWysoki
119Filexx-xxxxx-xxxxxx.xxxpredictiveWysoki
120Filexx-xxxx.xxxpredictiveMedium
121Filexx-xxxxxxxxx.xxxpredictiveWysoki
122Filexxx/xxxxxxxx/xxxxxxxx.xxxpredictiveWysoki
123Filexxxx.xxxpredictiveMedium
124File~/xxx/xxxx-xxxxxxxxx.xxxpredictiveWysoki
125File~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxxxxxxx.xxxpredictiveWysoki
126Libraryxxxxxxx/xxx.xxx.xxx.xxxpredictiveWysoki
127Argument*xxxxpredictiveNiski
128ArgumentxxpredictiveNiski
129Argumentxxx_xxxpredictiveNiski
130ArgumentxxxxpredictiveNiski
131ArgumentxxxxxxxxxpredictiveMedium
132ArgumentxxxxxxxxxxxxpredictiveMedium
133ArgumentxxxxxxpredictiveNiski
134ArgumentxxxxxxxxpredictiveMedium
135ArgumentxxxxxxxxpredictiveMedium
136Argumentxxx_xxx_xx_xxx_xxxxxxxxxx_xpredictiveWysoki
137Argumentxxxxx_xxxxpredictiveMedium
138ArgumentxxxxxxxxpredictiveMedium
139Argumentxxxx_xxx_xxxxpredictiveWysoki
140ArgumentxxxxxxxxxxpredictiveMedium
141ArgumentxxxxxpredictiveNiski
142Argumentxxx_xxpredictiveNiski
143ArgumentxxxpredictiveNiski
144ArgumentxxxxxxxxxxxxxxxpredictiveWysoki
145Argumentxxxxxx_xxpredictiveMedium
146ArgumentxxxxxxpredictiveNiski
147Argumentxxxxxxxx_xxxxxx/xxxxxxxx_xxxx/xxxxxxxx_xxxxxxxx/xxxxxxxx_xxxxpredictiveWysoki
148ArgumentxxxxpredictiveNiski
149ArgumentxxxpredictiveNiski
150ArgumentxxxxxxxxxxpredictiveMedium
151ArgumentxxxxxxxpredictiveNiski
152Argumentxx_xxxx/xxxxx/xxxpredictiveWysoki
153Argumentxxxxxxxxx->xxxxxxxxxpredictiveWysoki
154Argumentxxxxxxxxx_xxxxxxpredictiveWysoki
155ArgumentxxxxxxxxxpredictiveMedium
156Argumentxx_xxxxxxxpredictiveMedium
157ArgumentxxxxpredictiveNiski
158ArgumentxxxxxxxxpredictiveMedium
159ArgumentxxxxxpredictiveNiski
160Argumentxxxxxx_xxxxxpredictiveMedium
161Argumentxxxxxx_xxxxx_xxxpredictiveWysoki
162Argumentxx_xxpredictiveNiski
163Argumentxxxxxxx[xxxxxxx]predictiveWysoki
164ArgumentxxxxpredictiveNiski
165ArgumentxxxxxxxpredictiveNiski
166ArgumentxxxxxxpredictiveNiski
167ArgumentxxxxxpredictiveNiski
168Argumentxxxx_xxxxxpredictiveMedium
169ArgumentxxpredictiveNiski
170ArgumentxxxpredictiveNiski
171ArgumentxxxxxxpredictiveNiski
172ArgumentxxxxxxxpredictiveNiski
173ArgumentxxxxpredictiveNiski
174ArgumentxxxxpredictiveNiski
175Argumentxxx xxxxxxxx/xxxxxxx xxxxxxxxpredictiveWysoki
176ArgumentxxxxxxxxpredictiveMedium
177Argumentxxxxxx/xxxxx/xxxxpredictiveWysoki
178ArgumentxxxxxxxpredictiveNiski
179Argumentxxxxxxx/xxxxxxxxxpredictiveWysoki
180ArgumentxxxxpredictiveNiski
181Argumentxxxxxx_xxxxxxpredictiveWysoki
182ArgumentxxxxxxxxxxxxxxxxxxxpredictiveWysoki
183ArgumentxxxxxxxxxpredictiveMedium
184Argumentxxxxxxxx_xxpredictiveMedium
185Argumentxxxxxxx xxxxxpredictiveWysoki
186Argumentxxxxxxxx_xxpredictiveMedium
187ArgumentxxxxxxxxxxxxxxxxpredictiveWysoki
188ArgumentxxxxxxpredictiveNiski
189ArgumentxxxxxxpredictiveNiski
190Argumentxxxxxx_xxxxxpredictiveMedium
191Argumentxxxxxx_xxxpredictiveMedium
192ArgumentxxxxxxpredictiveNiski
193Argumentxxxx_xxxxpredictiveMedium
194ArgumentxxxxpredictiveNiski
195ArgumentxxxxxxpredictiveNiski
196ArgumentxxxxxxxpredictiveNiski
197ArgumentxxxpredictiveNiski
198Argumentxx_xxpredictiveNiski
199ArgumentxxxxxpredictiveNiski
200Argumentxxxxxxxxxxx/xxxxxxxxxxxpredictiveWysoki
201ArgumentxxxxxpredictiveNiski
202ArgumentxxxpredictiveNiski
203ArgumentxxxxxxxxpredictiveMedium
204ArgumentxxpredictiveNiski
205ArgumentxxxxxxpredictiveNiski
206Argument_xxxxxx[xxxxxxxx_xxxx]predictiveWysoki
207Argument_xxx_xxxxxxxxxxx_predictiveWysoki
208Input Value/xxxxxx/..%xxpredictiveWysoki
209Input Valuexxxxx"][xxxxxx]xxxxx('xxx')[/xxxxxx]predictiveWysoki
210Input Valuexxxxxxxxx' xxx 'x'='xpredictiveWysoki
211Input ValuexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxpredictiveWysoki
212Pattern__xxxxxxxxx=predictiveMedium
213Pattern|xx xx xx xx|predictiveWysoki
214Network PortxxxxxpredictiveNiski
215Network PortxxxxpredictiveNiski
216Network Portxxx xxxxxx xxxxpredictiveWysoki

Referencje (23)

The following list contains external sources which discuss the actor and the associated activities:

PoprzedniPrzeglądKolejny

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!