Kinsing Analiza

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (641)

Język

en	484
ru	86
zh	52
fr	10
es	4

Kraj

la	224
us	188
ru	124
cn	34
gb	24

Aktorzy

Cobalt Strike	18
RedLine Stealer	16
TrickBot	11
Ave Maria	7
Kinsing	7

Wysiłek

Rodzaj

Not Defined	224
Content Management System	32
WordPress Plugin	24
Programming Language Software	20
Operating System	18

Sprzedawca

Not Defined	240
Microsoft	22
Apache	20
Google	12
Adobe	8

Produkt

Microsoft Windows	10
Apache Tomcat	10
WordPress	8
Google Chrome	8
jQuery	8

Luki w zabezpieczeniach

#	Słaby punkt	Base	Temp	0day	Dzisiaj	Wyk	Prz	EPSS	CTI	CVE
1	Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure	5.3	5.2	$5k-$25k	$0-$5k	High	Workaround	0.02016	0.02	CVE-2007-1192
2	DZCP deV!L`z Clanportal config.php privilege escalation	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00943	0.44	CVE-2010-0966
3	nginx privilege escalation	6.9	6.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00241	3.21	CVE-2020-12440
4	Bitrix Site Manager Vote Module Remote Code Execution	7.3	7.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00668	0.11	CVE-2022-27228
5	jQuery html cross site scripting	5.8	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.01900	0.00	CVE-2020-11023
6	TikiWiki tiki-register.php privilege escalation	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.01009	0.98	CVE-2006-6168
7	Zyxel NAS326/NAS542 Web Server privilege escalation	9.8	9.8	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00068	0.04	CVE-2023-4473
8	Tiki Admin Password tiki-login.php weak authentication	8.0	7.7	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00936	3.10	CVE-2020-15906
9	Cacti XML Template File templates_import.php cross site scripting	4.8	4.7	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00069	0.00	CVE-2023-50569
10	LogicBoard CMS away.php Redirect	6.3	6.1	$0-$5k	$0-$5k	Not Defined	Unavailable	0.00000	1.90
11	Microsoft IIS IP/Domain Restriction privilege escalation	6.5	5.7	$25k-$100k	$0-$5k	Unproven	Official Fix	0.00817	0.33	CVE-2014-4078
12	request-baskets API Request {name} privilege escalation	6.4	6.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.08109	0.00	CVE-2023-27163
13	Moment.js directory traversal	6.9	6.7	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00330	0.26	CVE-2022-24785
14	Esri ArcGIS Server sql injection	8.1	8.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00123	0.04	CVE-2021-29114
15	Linux Kernel fbcon vt.c KD_FONT_OP_COPY information disclosure	5.0	4.8	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00042	0.00	CVE-2020-28974
16	Joomla CMS LDAP Authentication Password privilege escalation	7.5	7.2	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.01039	0.04	CVE-2017-14596
17	JetBrains IntelliJ IDEA License Server weak authentication	7.7	7.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00222	0.03	CVE-2020-11690
18	ILIAS Cloze Test Text gap Persistent cross site scripting	5.2	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00193	0.03	CVE-2019-1010237
19	CKFinder File Name privilege escalation	7.4	7.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00155	0.04	CVE-2019-15862
20	MikroTik RouterOS Winbox/HTTP Interface privilege escalation	7.8	7.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00055	0.04	CVE-2023-30799

Kampanie (4)

These are the campaigns that can be associated with the actor:

CVE-2022-36804
CVE-2023-32315
Xxx-xxxx-xxxxx
Xxxxxxxxx

IOC - Indicator of Compromise (125)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	adres IP	Hostname	Aktor	Kampanie	Identified	Rodzaj	Pewność siebie
1	3.22.186.242	ec2-3-22-186-242.us-east-2.compute.amazonaws.com	Kinsing		2022-07-29	verified	Medium
2	3.215.110.66	ec2-3-215-110-66.compute-1.amazonaws.com	Kinsing	Log4Shell	2022-01-24	verified	Medium
3	5.34.183.14	vds-904894.hosted-by-itldc.com	Kinsing		2022-02-09	verified	Wysoki
4	5.34.183.145	a.sadeghi	Kinsing		2022-02-09	verified	Wysoki
5	5.35.101.62	hosted-by.ruweb.net	Kinsing	CVE-2023-32315	2023-09-01	verified	Wysoki
6	31.184.240.34	106863.web.hosting-russia.ru	Kinsing	CVE-2023-32315	2023-09-01	verified	Wysoki
7	31.210.20.181		Kinsing	Log4Shell	2022-01-24	verified	Wysoki
8	34.81.218.76	76.218.81.34.bc.googleusercontent.com	Kinsing	Log4Shell	2022-01-24	verified	Medium
9	42.112.28.216	midp.highlatrol.com	Kinsing	Log4Shell	2022-01-24	verified	Wysoki
10	45.10.88.102	45.10.88.102.cl.darnytsia.net	Kinsing		2020-04-04	verified	Wysoki
11	45.10.88.124		Kinsing		2022-02-09	verified	Wysoki
12	45.15.158.124		Kinsing		2023-08-18	verified	Wysoki
13	45.67.230.68	vm330138.pq.hosting	Kinsing		2022-02-09	verified	Wysoki
14	45.95.169.118	zb64.antoniagavve.live	Kinsing		2022-07-29	verified	Wysoki
15	45.129.2.107		Kinsing	Log4Shell	2022-01-24	verified	Wysoki
16	45.137.151.106		Kinsing	Log4Shell	2022-01-24	verified	Wysoki
17	45.137.155.55	vm360194.pq.hosting	Kinsing	Log4Shell	2022-02-22	verified	Wysoki
18	45.142.214.48	server.com	Kinsing	Log4Shell	2022-01-24	verified	Wysoki
19	45.147.201.186		Kinsing		2022-02-09	verified	Wysoki
20	45.153.231.22	electacasper.example.com	Kinsing		2022-02-09	verified	Wysoki
21	45.156.23.210		Kinsing	Log4Shell	2022-01-24	verified	Wysoki
22	46.17.43.156		Kinsing	CVE-2023-46604	2023-12-14	verified	Wysoki
23	51.222.154.100	ns577710.ip-51-222-154.net	Kinsing	CVE-2023-32315	2023-09-01	verified	Wysoki
24	62.76.41.46	392.mighost.ru	Kinsing	Log4Shell	2022-01-24	verified	Wysoki
25	62.113.113.60	v2065801.hosted-by-vdsina.ru	Kinsing	CVE-2022-36804	2024-02-27	verified	Wysoki
26	XX.XXX.XXX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
27	XX.XX.XXX.X	xxxxxx.x.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
28	XX.XXX.XXX.XX	xxxxxxxxxx.xxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
29	XX.XX.XXX.XX	xxxx.xxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
30	XX.XX.XXX.XX	xxxx.xxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
31	XX.XXX.XXX.XXX	xxx.xxx.xxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
32	XX.XXX.XX.XXX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
33	XX.XX.XX.XX		Xxxxxxx		2023-08-18	verified	Wysoki
34	XX.XXX.XXX.XXX	xxxx-xxx.xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
35	XX.XXX.XXX.XXX	xxxxxxx.xxxxxx.xxx	Xxxxxxx		2020-04-04	verified	Wysoki
36	XX.XXX.XX.XXX	xxxxxx.xxxxxx.xxxx.xxxxxxx.xxx	Xxxxxxx		2022-07-29	verified	Wysoki
37	XX.XXX.XX.XX	xxxxx.xxxxxx.xx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
38	XX.XXX.XX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
39	XX.XXX.XX.XX		Xxxxxxx		2022-02-09	verified	Wysoki
40	XX.XXX.XX.XXX	xxxx.xx	Xxxxxxx		2022-02-09	verified	Wysoki
41	XX.XXX.XXX.X	xxxxxxx-xxxxxxx.xxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
42	XX.XXX.XXX.XX	xxxxxxxxx.xxxxx-xxxxxxxxxx.xxxxxxxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
43	XX.XXX.XX.X	xxxxxxxxxxxxxxxxxxxxxxx.xx	Xxxxxxx		2022-02-09	verified	Wysoki
44	XX.XXX.XX.XXX	xxxxxxxxxxxxx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
45	XX.XXX.XX.XXX	xxxxxxxx.xxxxxxx.xx	Xxxxxxx		2022-02-09	verified	Wysoki
46	XX.XXX.XX.XX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
47	XX.XX.XXX.XXX	xxxx.xxxxxx-xxxxxxx.xx	Xxxxxxx		2022-07-29	verified	Wysoki
48	XX.XXX.XX.XXX	xxxxxxxx.xxx-xxxxxxxx.xx	Xxxxxxx		2022-07-29	verified	Wysoki
49	XX.XXX.XXX.XX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
50	XX.XXX.XXX.XX	xxxx-xxxxx.xxxxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
51	XX.XXX.XXX.XXX	xxxxxx.xxx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxxx		2022-07-29	verified	Wysoki
52	XXX.XXX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
53	XXX.XXX.XX.XXX	xxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
54	XXX.XXX.XX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
55	XXX.XXX.XX.XXX	xxxxx.xxx.xxxxxxx-xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
56	XXX.XX.XXX.XXX	xxxxxxx.xxxxx.xx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
57	XXX.XX.XXX.XX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
58	XXX.XXX.XX.XX		Xxxxxxx		2022-07-29	verified	Wysoki
59	XXX.XXX.XX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
60	XXX.XXX.XX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
61	XXX.XX.XX.XX	xxxxxxxxx.xxxxxxx.xxx	Xxxxxxx		2022-07-29	verified	Wysoki
62	XXX.XX.XXX.XXX	xxxxx.xx-xxx-xx-xxx.xxx	Xxxxxxx		2020-04-04	verified	Wysoki
63	XXX.XX.XXX.XXX	xxxx.xxxxxxxx.xx	Xxxxxxx		2022-07-29	verified	Wysoki
64	XXX.XX.XX.XXX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
65	XXX.XX.XXX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
66	XXX.XX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
67	XXX.XXX.XXX.XXX	xxxxxxx-xx.xxx.xxxxxx-xxxxxxx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
68	XXX.XXX.XX.XX		Xxxxxxx		2022-07-29	verified	Wysoki
69	XXX.XXX.XXX.XX	xxxxxxx-xx.xxx.xxxxxx-xxxxxxx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
70	XXX.XX.XXX.XXX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
71	XXX.XXX.XX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
72	XXX.XX.XX.XXX	xx-xxx.xxxxx.xx	Xxxxxxx		2022-03-26	verified	Wysoki
73	XXX.XXX.XX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
74	XXX.XX.X.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
75	XXX.XX.XX.XXX	xxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
76	XXX.XX.XX.XX	xxx-xx.xxxxx.xxx	Xxxxxxx		2020-04-04	verified	Wysoki
77	XXX.XXX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
78	XXX.XXX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
79	XXX.XXX.XX.XXX	xxxxxxxx.xxxxxxx.xx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
80	XXX.XXX.XXX.XXX	xxxxxxxx.xxxxxxxx.xx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
81	XXX.XXX.XXX.XX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
82	XXX.XXX.XX.XXX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
83	XXX.XXX.XX.XXX		Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
84	XXX.XXX.XX.XX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
85	XXX.XXX.XXX.XXX	xxxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
86	XXX.XXX.XXX.XXX	xxxxxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
87	XXX.XXX.XXX.XXX	xxxxx.xxxxxx.xxxxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
88	XXX.XXX.XXX.X	xxxxxxxx.xx.xxxxxxx	Xxxxxxx		2022-07-29	verified	Wysoki
89	XXX.XXX.XXX.XXX	xxxxxxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
90	XXX.XXX.XX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
91	XXX.XXX.XX.XXX		Xxxxxxx		2023-01-11	verified	Wysoki
92	XXX.XXX.XX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
93	XXX.XXX.XXX.XXX	xxxx.xx.xxxxxxx	Xxxxxxx		2022-02-09	verified	Wysoki
94	XXX.XXX.XXX.XXX	xxxxxx.xxxxxxxxxxxxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
95	XXX.XX.XX.XXX	xxxxxx.xxxxxxxxxx.xxx	Xxxxxxx		2020-04-04	verified	Wysoki
96	XXX.XXX.XX.XX	xx.xxxxxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
97	XXX.XXX.XXX.XX	xxxxxx-xxxxxxx.xxxxx.xx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
98	XXX.XXX.XXX.XX		Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
99	XXX.XX.XX.XX	xxxxxxxxxxxx.xxxx.xxxxxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
100	XXX.XX.XX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
101	XXX.XX.XX.XXX	xxxxx.xxxxxxxxxxxx.xxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
102	XXX.XX.XX.XXX	xxxxxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
103	XXX.XX.XX.XXX	xxxxxxxxx.xxxx.xxxxxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
104	XXX.XX.XX.XX	xxxxxxxxx.xxxx.xxxxxxx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
105	XXX.XX.XX.X	xxxxx.xxxx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
106	XXX.XX.XXX.XX	xxxx.xxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
107	XXX.XX.XXX.XXX	xxxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
108	XXX.XX.XXX.XXX	xxxxxxxxxx.xxxx.xxxxxxx	Xxxxxxx		2022-02-09	verified	Wysoki
109	XXX.XX.XXX.XXX	xxxx.xxxx.xxx	Xxxxxxx	Xxx-xxxx-xxxxx	2024-02-27	verified	Wysoki
110	XXX.XX.XXX.XXX	xxxxx.xxxx.xxxxxxx	Xxxxxxx		2023-02-07	verified	Wysoki
111	XXX.XX.XXX.XX	xxx.xxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
112	XXX.XX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-09-01	verified	Wysoki
113	XXX.XX.XXX.XXX		Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
114	XXX.XXX.XXX.XXX	xxxxxxxx.xxx.xx	Xxxxxxx	Xxx-xxxx-xxxxx	2023-12-14	verified	Wysoki
115	XXX.X.XX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx		2023-02-07	verified	Wysoki
116	XXX.X.XX.XX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxxx		2022-07-29	verified	Wysoki
117	XXX.XX.XXX.XX	xxxx.xxxxxx.xx	Xxxxxxx		2022-02-09	verified	Wysoki
118	XXX.XXX.XXX.XX	xxx-xxxxxx.xxxxxx-xx-xxxxx.xxx	Xxxxxxx		2022-02-09	verified	Wysoki
119	XXX.XXX.X.XXX	xxx.xxx.x.xxx.xxxxxxxxxxxxxxxx.xxx	Xxxxxxx		2022-07-29	verified	Wysoki
120	XXX.XX.XXX.XXX		Xxxxxxx		2022-07-29	verified	Wysoki
121	XXX.XX.XX.X	xxxxxxxxxx.xxxxxxxxxxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
122	XXX.XX.XX.XX	xxxxxx.xxx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
123	XXX.XXX.XX.XXX	xxxxxx.xxxxxxxxxxx.xx	Xxxxxxx	Xxxxxxxxx	2022-01-24	verified	Wysoki
124	XXX.XX.XXX.XX		Xxxxxxx		2020-04-04	verified	Wysoki
125	XXX.XX.XXX.XXX	xxxxxxxxxxx.xxxxxx.xxx	Xxxxxxx		2020-04-04	verified	Wysoki

TTP - Tactics, Techniques, Procedures (23)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Klasa	Luki w zabezpieczeniach	Wektor dostępu	Rodzaj	Pewność siebie
1	T1006	CAPEC-126	CWE-21, CWE-22, CWE-23, CWE-24	Path Traversal	predictive	Wysoki
2	T1040	CAPEC-102	CWE-319	Authentication Bypass by Capture-replay	predictive	Wysoki
3	T1055	CAPEC-10	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	Wysoki
4	T1059	CAPEC-137	CWE-88, CWE-94, CWE-1321	Argument Injection	predictive	Wysoki
5	T1059.007	CAPEC-209	CWE-79, CWE-80	Cross Site Scripting	predictive	Wysoki
6	TXXXX	CAPEC-122	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	Wysoki
7	TXXXX	CAPEC-150	CWE-XXX	Xxxx Xxx Xxxxxxxxx Xxxxxxxxxxx Xxxxxxxx	predictive	Wysoki
8	TXXXX.XXX	CAPEC-16	CWE-XXX, CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	Wysoki
9	TXXXX	CAPEC-136	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	Wysoki
10	TXXXX.XXX	CAPEC-178	CWE-XXX	Xxxx Xxxxxxxx	predictive	Wysoki
11	TXXXX	CAPEC-0	CWE-XXX	7xx Xxxxxxxx Xxxxxxxx	predictive	Wysoki
12	TXXXX	CAPEC-1	CWE-XXX, CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Wysoki
13	TXXXX	CAPEC-108	CWE-XX, CWE-XX	Xxx Xxxxxxxxx	predictive	Wysoki
14	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	Wysoki
15	TXXXX	CAPEC-112	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	Wysoki
16	TXXXX	CAPEC-37	CWE-XXX	Xxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxx	predictive	Wysoki
17	TXXXX.XXX	CAPEC-0	CWE-XXX	Xxxxxxxx Xxxxxx Xxxx	predictive	Wysoki
18	TXXXX.XXX	CAPEC-459	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	Wysoki
19	TXXXX	CAPEC-116	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	Wysoki
20	TXXXX.XXX	CAPEC-0	CWE-XX	Xxxxxxxxxxxxx	predictive	Wysoki
21	TXXXX	CAPEC-112	CWE-XXX, CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	Wysoki
22	TXXXX.XXX	CAPEC-0	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	predictive	Wysoki
23	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	Wysoki

IOA - Indicator of Attack (292)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Klasa	Indicator	Rodzaj	Pewność siebie
1	File	//proc/kcore	predictive	Medium
2	File	/admin/dl_sendmail.php	predictive	Wysoki
3	File	/admin/index2.html	predictive	Wysoki
4	File	/admin/login.php	predictive	Wysoki
5	File	/adminPage/conf/reload	predictive	Wysoki
6	File	/api/baskets/{name}	predictive	Wysoki
7	File	/api/v2/cli/commands	predictive	Wysoki
8	File	/app/Http/Controllers/Admin/NEditorController.php	predictive	Wysoki
9	File	/application/index/controller/Databasesource.php	predictive	Wysoki
10	File	/Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=	predictive	Wysoki
11	File	/DXR.axd	predictive	Medium
12	File	/forum/away.php	predictive	Wysoki
13	File	/inc/parser/xhtml.php	predictive	Wysoki
14	File	/include/makecvs.php	predictive	Wysoki
15	File	/livesite/edit_designer_region.php	predictive	Wysoki
16	File	/mfsNotice/page	predictive	Wysoki
17	File	/mgmt/tm/util/bash	predictive	Wysoki
18	File	/mifs/c/i/reg/reg.html	predictive	Wysoki
19	File	/novel/bookSetting/list	predictive	Wysoki
20	File	/novel/userFeedback/list	predictive	Wysoki
21	File	/owa/auth/logon.aspx	predictive	Wysoki
22	File	/requests.php	predictive	Wysoki
23	File	/secure/ViewCollectors	predictive	Wysoki
24	File	/Session	predictive	Medium
25	File	/spip.php	predictive	Medium
26	File	/usr/bin/pkexec	predictive	Wysoki
27	File	/wp-admin/admin.php?page=wp_file_manager_properties	predictive	Wysoki
28	File	/xAdmin/html/cm_doclist_view_uc.jsp	predictive	Wysoki
29	File	/x_portal_assemble_surface/jaxrs/portal/list?v=8.2.3-4-43f4fe3	predictive	Wysoki
30	File	/zm/index.php	predictive	Wysoki
31	File	adclick.php	predictive	Medium
32	File	add.php	predictive	Niski
33	File	add_comment.php	predictive	Wysoki
34	File	xxxxx.xxxxxxxxx.xxx	predictive	Wysoki
35	File	xxxxx/xxxxxxx.xxx	predictive	Wysoki
36	File	xxxxx\xxxxx\xxxxxxx\xxxxxxxx.xxx	predictive	Wysoki
37	File	xxxxxxxxxxx/xxxxxxx/xxxxx/xxxxx/xxxxxxxxx/xxxxxxxx.xxx	predictive	Wysoki
38	File	xxxx/xxxxxxxxxxxx.xxx	predictive	Wysoki
39	File	xxxxxx/xxxxxxx/xxxx/xxxxx.xxx	predictive	Wysoki
40	File	xxxx.xxx	predictive	Medium
41	File	xx_xxxx_xx_xxxx_xxxx.xxx	predictive	Wysoki
42	File	xxxx_xxxxxxx.xxx	predictive	Wysoki
43	File	xxx.xxx	predictive	Niski
44	File	xxx-xxx/xxxxxxx.xx	predictive	Wysoki
45	File	xxxxxxxx.xxx	predictive	Medium
46	File	xxxxx.xxxxxxxxx.xxx	predictive	Wysoki
47	File	xxxxxxxxxx.xxx	predictive	Wysoki
48	File	xxxxx.xxx	predictive	Medium
49	File	xxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx/xxxx_xxxxx.xxxx	predictive	Wysoki
50	File	xxxxx-xxxxxxx.xxx	predictive	Wysoki
51	File	xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx	predictive	Wysoki
52	File	xxxxxxxxxx/xxxxxx/xxxxxxxxx.xxxx/xxxx.xxx/	predictive	Wysoki
53	File	xxxxxxxxxx/xxx_xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxx	predictive	Wysoki
54	File	xxxxxx.xxx	predictive	Medium
55	File	xxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxx	predictive	Wysoki
56	File	xxxxxxxxxx\xxxx.xxx	predictive	Wysoki
57	File	xxxxxxxxxxx.xxx	predictive	Wysoki
58	File	xxxxxx/xx/xx_xxxxx.x	predictive	Wysoki
59	File	xxxx:x.x/xx:x/xx:x/xx:x/xx:x/x:x/x:x/x:x/x:x	predictive	Wysoki
60	File	x_xxxxxx	predictive	Medium
61	File	xxxx/xxxxxxxxxxxxxxx.xxx	predictive	Wysoki
62	File	xxxxxxx_xxxxx.xxx	predictive	Wysoki
63	File	xxxxxxx.xxx	predictive	Medium
64	File	xxxxxx.xxx	predictive	Medium
65	File	xxxxxxx/xxx/xx/xx.x	predictive	Wysoki
66	File	xxxx-xxxxxx.xxx	predictive	Wysoki
67	File	xxxx.xxx	predictive	Medium
68	File	xxxxx.xxx	predictive	Medium
69	File	xxxxxx.xxx	predictive	Medium
70	File	xxxxxxxxxxx.xxxxx.xxx	predictive	Wysoki
71	File	xxxxxxxxxxxxxxxxxxxx.xxx	predictive	Wysoki
72	File	xxxxxxxxxxxx.xxx	predictive	Wysoki
73	File	xxxx_xxxxxxxx.xxx	predictive	Wysoki
74	File	xxxxxxxxxxxxxxxxx.xxx	predictive	Wysoki
75	File	xxxxxxxxx/xxxxx/xxxxxxxxxxxx/xxxxxxxxx.xxx	predictive	Wysoki
76	File	xxxxxxxxxxx.x	predictive	Wysoki
77	File	xxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxx	predictive	Wysoki
78	File	xxxx.xxx	predictive	Medium
79	File	xxxxx_xxxx.xxx	predictive	Wysoki
80	File	xxxxxxxxx.xxx	predictive	Wysoki
81	File	xxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxx	predictive	Wysoki
82	File	xxx/xxxxxx.xxx	predictive	Wysoki
83	File	xxxxxxxx/xxxxxxx/xxxxxxx.xxxx.xxx	predictive	Wysoki
84	File	xxxxx.xxxx	predictive	Medium
85	File	xxxxx.xxx	predictive	Medium
86	File	xxxxx.xxx/xxxxxx.xxx/xxxxxxxxxxxxx.xxx/xxxxxxxx.xxx	predictive	Wysoki
87	File	xxxxx.xxx/xxxxxxx/xxxxx	predictive	Wysoki
88	File	xxxxx.xxx?x=xxxx&x=xxxx&x=xx_xxx_xxxxxx	predictive	Wysoki
89	File	xxxxx.xxx?x=xxxx&x=xxxxxxx&x=xxx	predictive	Wysoki
90	File	xxxxx.xx	predictive	Medium
91	File	xxxxxxx.xxx	predictive	Medium
92	File	xxxx.xxx	predictive	Medium
93	File	xxxxxxxx.xxx	predictive	Medium
94	File	xxxx_xxxxxxx.xxx	predictive	Wysoki
95	File	xxxx.xxx	predictive	Medium
96	File	xx.xxx	predictive	Niski
97	File	xxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxx	predictive	Wysoki
98	File	xxxxxxxxx/xxxxxx.xxx.xxx	predictive	Wysoki
99	File	xxx.xxx	predictive	Niski
100	File	xxxxx-xxxx-xxxx.xxx	predictive	Wysoki
101	File	xxxxx.xxxx	predictive	Medium
102	File	xxxxx.xxx	predictive	Medium
103	File	xxxxx/	predictive	Niski
104	File	xxxxx_xx.xxxx	predictive	Wysoki
105	File	xxxx.xxxx	predictive	Medium
106	File	xxxxxxxx_xxxxxxx.xxx	predictive	Wysoki
107	File	xx_xxxx.x	predictive	Medium
108	File	xxxx.xxx	predictive	Medium
109	File	xxx_xxxxx_xxxx.x	predictive	Wysoki
110	File	xxx/xxxx/xxxx_xxxxxxxxx.x	predictive	Wysoki
111	File	xxxxxxx_xxxx.xxx	predictive	Wysoki
112	File	xxxxxxx.xxx	predictive	Medium
113	File	xxxxxx.xxx/xxxx_xxxx_xxxx.xxx	predictive	Wysoki
114	File	xxxxxxxx/xxxxxx-xxxxx/xxxxxxxxxxx/xxxx.xx	predictive	Wysoki
115	File	xxxxxxxxxxxxxxxxx.xxx	predictive	Wysoki
116	File	xxxxxxx.xxx	predictive	Medium
117	File	xxxxxxx.xxx	predictive	Medium
118	File	xxxxxxx/xxxxxxx/xxx/xxxxxxxxxx.xxx?xxxxxxxx=xxxx&xxxxxx=xxxxxxxxxx	predictive	Wysoki
119	File	xxxxxxx.xxx	predictive	Medium
120	File	xxxxxxx_xxxxxxx_xxxx.xxx	predictive	Wysoki
121	File	xxx_xxxxxx.xxxx	predictive	Wysoki
122	File	xxxxx.xxx	predictive	Medium
123	File	xxxxxxxx.xxx	predictive	Medium
124	File	xxxxxxxx.xxx	predictive	Medium
125	File	xxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxx	predictive	Wysoki
126	File	xxxxxxx.xxx	predictive	Medium
127	File	xxxxxxx/xxxxxxxxxxxxx.xxxx	predictive	Wysoki
128	File	xxxxxxxxxxxxxxx.xxx	predictive	Wysoki
129	File	xxxx_xxxx_xxxxxx.xxx	predictive	Wysoki
130	File	xxx.x	predictive	Niski
131	File	xxxxxx.xx	predictive	Medium
132	File	xxxxxxxx.xx?xxxxxxxxxxxx=xxxxxxxx&xxxx=x-xxxx&xxxxxxxx=xxxxxxxxxx&xx	predictive	Wysoki
133	File	xxxxxx_xxxxxxx.xxx	predictive	Wysoki
134	File	xxxxxxxx/xxxx/xxxx.xxx?xxxxxx=xxxxxxxxxxxxxxxx	predictive	Wysoki
135	File	xxxx.xxx	predictive	Medium
136	File	xxxx.xx	predictive	Niski
137	File	xxxxxxxx_xxxx.xxx	predictive	Wysoki
138	File	xxxx_xxxxxxx_xxxxxxxx.xxx	predictive	Wysoki
139	File	xxxx_xxxxx.xxxx	predictive	Wysoki
140	File	xxxxx.xxx	predictive	Medium
141	File	xxxxxxxxxx_xxxx.xxx	predictive	Wysoki
142	File	xxxxxxxxx/xxxxxxxxxx	predictive	Wysoki
143	File	xxx/xxxx/xxxx	predictive	Wysoki
144	File	xxxxxx\xxxxxxxx\xx_xxxxx_xxxxxxx.xxx	predictive	Wysoki
145	File	xxxxxxx.xxx.xx.xxxxxxxxxxx.xxx	predictive	Wysoki
146	File	xxxxxxxx.xxxxx.xxx	predictive	Wysoki
147	File	xxxxxxxxx/xxxxxxxx.xxx	predictive	Wysoki
148	File	xxxxxxxxx_xxxxxx.xxx	predictive	Wysoki
149	File	xxxx_xxxxxx.xx	predictive	Wysoki
150	File	xxxx-xxxxx.xxx	predictive	Wysoki
151	File	xxxx-xxxxxxxx.xxx	predictive	Wysoki
152	File	xxxxxx_xxxxx.xxx	predictive	Wysoki
153	File	xxxxxx.xxx	predictive	Medium
154	File	xxxxxxx-xxxxx.xxx	predictive	Wysoki
155	File	xxxx_xxxxx.xxx	predictive	Wysoki
156	File	xxxx/xxx/xxxx-xxxxx.xxx	predictive	Wysoki
157	File	xxxxx.x	predictive	Niski
158	File	xxxx.xxx	predictive	Medium
159	File	xxxxxxxx.xxx	predictive	Medium
160	File	xxx-xxx/	predictive	Medium
161	File	xxxxxxx/xxx/xxxxxxx	predictive	Wysoki
162	File	xx-xxxxx/xxxxxxx.xxx	predictive	Wysoki
163	File	xx-xxxxx-xxxxxx.xxx	predictive	Wysoki
164	File	xx-xxxxxx.xxx	predictive	Wysoki
165	File	xx-xxxx.xxx	predictive	Medium
166	File	xx-xxxxxxxx.xxx	predictive	Wysoki
167	File	xx-xxxxxxxxx.xxx	predictive	Wysoki
168	File	xxx/xxxxxxxx/xxxxxxxx.xxx	predictive	Wysoki
169	File	xxxx.xxx	predictive	Medium
170	File	~/xxxxxxxxx/	predictive	Medium
171	File	~/xxx/xxxx-xxxxxxxxx.xxx	predictive	Wysoki
172	File	~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxxxxxxx.xxx	predictive	Wysoki
173	Library	xxxxxxx/xxx.xxx.xxx.xxx	predictive	Wysoki
174	Argument	*xxxx	predictive	Niski
175	Argument	xxxxxx	predictive	Niski
176	Argument	xx	predictive	Niski
177	Argument	xxx_xxx	predictive	Niski
178	Argument	xxxx	predictive	Niski
179	Argument	xxxxxxxxx	predictive	Medium
180	Argument	xxxxxxxxxxxx	predictive	Medium
181	Argument	xxxxxx	predictive	Niski
182	Argument	xxxxxxxx	predictive	Medium
183	Argument	xxxxxxxx	predictive	Medium
184	Argument	xxx_xxx_xx_xxx_xxxxxxxxxx_x	predictive	Wysoki
185	Argument	xxxxx_xxxx	predictive	Medium
186	Argument	xxxxxxxx	predictive	Medium
187	Argument	xxxx_xxx_xxxx	predictive	Wysoki
188	Argument	xxx	predictive	Niski
189	Argument	xxxxxxxxxx	predictive	Medium
190	Argument	xxx_xx	predictive	Niski
191	Argument	xxx	predictive	Niski
192	Argument	xxxxxxxxxxxxxxx	predictive	Wysoki
193	Argument	xxxxxx_xx	predictive	Medium
194	Argument	xxxxxx	predictive	Niski
195	Argument	xxxxxxxx_xxxxxx/xxxxxxxx_xxxx/xxxxxxxx_xxxxxxxx/xxxxxxxx_xxxx	predictive	Wysoki
196	Argument	xxxxxxxxxxx(xxxxxx)	predictive	Wysoki
197	Argument	xxxx	predictive	Niski
198	Argument	xxxx/xxxxxx/xxx	predictive	Wysoki
199	Argument	xxxxxxxxxxx	predictive	Medium
200	Argument	xxx	predictive	Niski
201	Argument	xxxxxxxxxx	predictive	Medium
202	Argument	xxxxxxx	predictive	Niski
203	Argument	xx_xxxx/xxxxx/xxx	predictive	Wysoki
204	Argument	xxxxx	predictive	Niski
205	Argument	xxxxxxxxx->xxxxxxxxx	predictive	Wysoki
206	Argument	xxxxxxxxx_xxxxxx	predictive	Wysoki
207	Argument	xxxxxxxxx	predictive	Medium
208	Argument	xx_xxxxxxx	predictive	Medium
209	Argument	xxxx	predictive	Niski
210	Argument	xxxxxxxx	predictive	Medium
211	Argument	xxxxxxxx	predictive	Medium
212	Argument	xxxxx	predictive	Niski
213	Argument	xxxxxx_xxxxx	predictive	Medium
214	Argument	xxxxxx_xxxxx_xxx	predictive	Wysoki
215	Argument	xxxxxxxxxxxx	predictive	Medium
216	Argument	xx_xx	predictive	Niski
217	Argument	xxxxxxx[xxxxxxx]	predictive	Wysoki
218	Argument	xxxx	predictive	Niski
219	Argument	xxxxxxx	predictive	Niski
220	Argument	xxxxx_xx	predictive	Medium
221	Argument	xxxxxx	predictive	Niski
222	Argument	xxxxx	predictive	Niski
223	Argument	xxxx_xxxxx	predictive	Medium
224	Argument	xxxx	predictive	Niski
225	Argument	xx	predictive	Niski
226	Argument	xxx	predictive	Niski
227	Argument	xxxx	predictive	Niski
228	Argument	xxxxxx	predictive	Niski
229	Argument	xxxxxx	predictive	Niski
230	Argument	xxxxxx	predictive	Niski
231	Argument	xxxxxx	predictive	Niski
232	Argument	xxxxx[xxxxx][xx]	predictive	Wysoki
233	Argument	xxxxx	predictive	Niski
234	Argument	xxxxxxx	predictive	Niski
235	Argument	xxxx	predictive	Niski
236	Argument	xxxx_xxxx	predictive	Medium
237	Argument	xxxx	predictive	Niski
238	Argument	xxxxxxxx	predictive	Medium
239	Argument	xxxxx_xxxxxx_xxx/xxxxx_xxxx_xxxxxxxx	predictive	Wysoki
240	Argument	xxxx	predictive	Niski
241	Argument	xxx xxxxxxxx/xxxxxxx xxxxxxxx	predictive	Wysoki
242	Argument	xxxxxxxx	predictive	Medium
243	Argument	xxxxxx/xxxxx/xxxx	predictive	Wysoki
244	Argument	xxxxxxx	predictive	Niski
245	Argument	xxxxxxx/xxxxxxxxx	predictive	Wysoki
246	Argument	xxxx	predictive	Niski
247	Argument	xxxxxx_xxxxxx	predictive	Wysoki
248	Argument	xxxxxxxxxxxxxxxxxxx	predictive	Wysoki
249	Argument	xxxxxxxxx	predictive	Medium
250	Argument	xxxxxxxx_xx	predictive	Medium
251	Argument	xxxxxxx xxxxx	predictive	Wysoki
252	Argument	xxxxxxxx_xx	predictive	Medium
253	Argument	xxxxxxxxxxxxxxxx	predictive	Wysoki
254	Argument	xxxxxxxx	predictive	Medium
255	Argument	xxxxxx	predictive	Niski
256	Argument	xxxxxx	predictive	Niski
257	Argument	xxxxxxxxxx	predictive	Medium
258	Argument	xxxxxx_xxxxx	predictive	Medium
259	Argument	xxxxxx_xxx	predictive	Medium
260	Argument	xxxxxx	predictive	Niski
261	Argument	xxxx_xxxx	predictive	Medium
262	Argument	xxxx	predictive	Niski
263	Argument	xxxxxx	predictive	Niski
264	Argument	xxxxxxxxxx_xxxx	predictive	Wysoki
265	Argument	xxxxxxx	predictive	Niski
266	Argument	xxx	predictive	Niski
267	Argument	xx_xx	predictive	Niski
268	Argument	xxxxx	predictive	Niski
269	Argument	xxxxxxxxxxx/xxxxxxxxxxx	predictive	Wysoki
270	Argument	xxx	predictive	Niski
271	Argument	xxxxx	predictive	Niski
272	Argument	xxx	predictive	Niski
273	Argument	xxxx-xxxxx	predictive	Medium
274	Argument	xxxxxxxx	predictive	Medium
275	Argument	xxxx_xxxxx	predictive	Medium
276	Argument	xxxxxxx	predictive	Niski
277	Argument	xxxx	predictive	Niski
278	Argument	xx	predictive	Niski
279	Argument	xxxxxx	predictive	Niski
280	Argument	_xxxxxx[xxxxxxxx_xxxx]	predictive	Wysoki
281	Argument	_xxx_xxxxxxxxxxx_	predictive	Wysoki
282	Input Value	../	predictive	Niski
283	Input Value	/xxxxxx/..%xx	predictive	Wysoki
284	Input Value	xxxxx"][xxxxxx]xxxxx('xxx')[/xxxxxx]	predictive	Wysoki
285	Input Value	</xxxxxx >	predictive	Medium
286	Input Value	xxxxxxxxx' xxx 'x'='x	predictive	Wysoki
287	Input Value	xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx	predictive	Wysoki
288	Pattern	__xxxxxxxxx=	predictive	Medium
289	Pattern	\|xx xx xx xx\|	predictive	Wysoki
290	Network Port	xxxxx	predictive	Niski
291	Network Port	xxxx	predictive	Niski
292	Network Port	xxx xxxxxx xxxx	predictive	Wysoki

Referencje (14)

The following list contains external sources which discuss the actor and the associated activities:

◂ PoprzedniPrzeglądKolejny ▸

Interested in the pricing of exploits?

See the underground prices here!