Meduza Stealer Analiza

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (88)

Oś czasu

Język

en54
es14
ru6
pt4
sv4

Kraj

us86
ru2

Aktorzy

RedLine Stealer1
DCRat1
Amadey1
RedLine1
Venom RAT1

Zajęcia

Wysiłek

Oś czasu

Rodzaj

Not Defined46
Content Management System14
Photo Gallery Software4
Library Management System Software4
E-Commerce Management Software2

Sprzedawca

Not Defined24
SourceCodester8
Glen Campbell2
Moosikay2
Stoverud2

Produkt

Zentrack4
SourceCodester Library Management System4
Glen Campbell Siteframe2
SPiD2
Moosikay E-Commerce System2

Luki w zabezpieczeniach

#Słaby punktBaseTemp0dayDzisiajWykPrzEPSSCTICVE
1OkayCMS ProductsView.php privilege escalation8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.221550.04CVE-2019-16885
2MacCMS index.php privilege escalation8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.859250.02CVE-2017-17733
3myPHPNuke print.php cross site scripting4.33.9$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.002200.01CVE-2008-4089
4phpBB XS bb_usage_stats.php privilege escalation7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.079550.02CVE-2006-4893
5PHPOutsourcing IdeaBox include.php privilege escalation7.36.4$0-$5k$0-$5kUnprovenUnavailable0.174100.04CVE-2008-5199
6CCBill whereami.cgi privilege escalation6.35.8$0-$5k$0-$5kProof-of-ConceptWorkaround0.000000.04
7Zentrack index.php directory traversal7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.08
8Zentrack index.php privilege escalation7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.03
9Citrix NetScaler ADC/NetScaler Gateway OpenID openid-configuration ns_aaa_oauthrp_send_openid_config CitrixBleed memory corruption8.38.2$25k-$100k$0-$5kHighOfficial Fix0.966100.00CVE-2023-4966
10MK-AUTH arp.php sql injection7.17.1$0-$5k$0-$5kNot DefinedNot Defined0.000680.00CVE-2020-14069
11VideoLAN VLC Media Player FLV File picture_pool.c picture_pool_Delete privilege escalation7.36.9$0-$5k$0-$5kProof-of-ConceptUnavailable0.121520.00CVE-2014-9597
12noobaa-operator RPC AuthTokens information disclosure3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000870.00CVE-2021-3528
13jQuery html cross site scripting5.85.1$0-$5k$0-$5kNot DefinedOfficial Fix0.019000.05CVE-2020-11023
14e107 CMS tinymce_imglib_include Remote Code Execution7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.008770.00CVE-2006-4548
15Duware Duclassmate Account account.asp cross site scripting5.45.0$0-$5k$0-$5kProof-of-ConceptWorkaround0.016680.04CVE-2004-2198
16DUware DUclassmate default.asp sql injection7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.002210.05CVE-2005-2049
17SPiD lang.php memory corruption7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.016650.04CVE-2005-2198
18SPiD scan_lang_insert.php directory traversal5.34.7$0-$5kObliczenieProof-of-ConceptUnavailable0.017370.05CVE-2006-0976
19mxBB Kb Mods directory traversal9.88.6$0-$5k$0-$5kUnprovenUnavailable0.007260.00CVE-2006-6568
20DUware DUpaypal detail.asp sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.004210.02CVE-2006-6365

IOC - Indicator of Compromise (156)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDadres IPHostnameAktorKampanieIdentifiedRodzajPewność siebie
12.56.109.134Meduza Stealer2024-02-01verifiedWysoki
25.42.72.7disillusioned-letter.aeza.networkMeduza Stealer2024-02-04verifiedWysoki
35.42.72.48affable-team.aeza.oneMeduza Stealer2024-02-04verifiedWysoki
45.42.73.150Serverfortest.aeza.networkMeduza Stealer2024-02-24verifiedWysoki
55.42.73.251RGF2aWQgQm9yaXNv.aeza.oneMeduza Stealer2024-02-03verifiedWysoki
65.42.77.121repulsive-blow.aeza.networkMeduza Stealer2023-11-04verifiedWysoki
75.42.78.61waggish-aftermath.aeza.networkMeduza Stealer2024-02-04verifiedWysoki
85.42.94.65shrewd-sleet.aeza.networkMeduza Stealer2023-12-07verifiedWysoki
95.42.106.1645-42-106-164.colomna.netMeduza Stealer2024-03-22verifiedWysoki
105.182.86.32general-scarecrow.aeza.networkMeduza Stealer2023-12-07verifiedWysoki
115.182.86.194colorful-lake.aeza.networkMeduza Stealer2024-01-30verifiedWysoki
125.182.86.229early-writer.aeza.networkMeduza Stealer2024-04-03verifiedWysoki
135.182.87.270M.aeza.networkMeduza Stealer2024-02-04verifiedWysoki
145.182.87.130TestCrypt.aeza.networkMeduza Stealer2023-12-05verifiedWysoki
155.182.87.145careless-scarecrow.aeza.networkMeduza Stealer2024-02-11verifiedWysoki
165.182.87.160DVD.aeza.networkMeduza Stealer2023-11-08verifiedWysoki
178.217.23.144Meduza Stealer2024-02-04verifiedWysoki
1820.0.25.177Meduza Stealer2024-02-04verifiedWysoki
1937.110.19.55broadband-37-110-19-55.ip.moscow.rt.ruMeduza Stealer2024-01-09verifiedWysoki
2037.221.93.99.93.221.37.in-addr.arpaMeduza Stealer2024-04-08verifiedWysoki
2145.15.158.144disillusioned-eyes.aeza.networkMeduza Stealer2024-04-12verifiedWysoki
2245.15.159.130mundane-spade.aeza.networkMeduza Stealer2024-02-05verifiedWysoki
2345.74.19.107Meduza Stealer2024-02-04verifiedWysoki
2445.93.20.207Meduza Stealer2024-01-04verifiedWysoki
2545.120.177.167vpsmike123.example.comMeduza Stealer2024-03-20verifiedWysoki
2645.138.16.132Meduza Stealer2024-02-21verifiedWysoki
2745.138.74.228shy-laborer.aeza.oneMeduza Stealer2024-02-24verifiedWysoki
2845.141.215.173Meduza Stealer2024-01-04verifiedWysoki
2945.150.64.135vm2407211.stark-industries.solutionsMeduza Stealer2024-04-24verifiedWysoki
3045.150.65.121vm1757649.stark-industries.solutionsMeduza Stealer2024-02-04verifiedWysoki
3146.226.164.150Meduza Stealer2024-03-16verifiedWysoki
3246.226.166.200Meduza Stealer2024-03-05verifiedWysoki
33XX.XX.XXX.XXXxxxxxxxxx.xx-xx-xx-xxx.xxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
34XX.XXX.XX.XXXxxxxx.xx-xx-xxx-xx.xxXxxxxx Xxxxxxx2024-01-17verifiedWysoki
35XX.XX.XX.XXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
36XX.XX.XX.XXXxxxxxxxxxx.xxxxxxx-xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
37XX.XX.XXX.XXxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-19verifiedWysoki
38XX.XX.XX.XXXxxxxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-26verifiedWysoki
39XX.XXX.XXX.XXXxxxxxx-xxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-03verifiedWysoki
40XX.XXX.XXX.XXxxxxxx-xxxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-08verifiedWysoki
41XX.XXX.XXX.XXXxxxxxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
42XX.XXX.XXX.XXXxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-25verifiedWysoki
43XX.XXX.XXX.XXXxxxxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
44XX.XXX.XXX.XXXxxxxx Xxxxxxx2024-03-24verifiedWysoki
45XX.XXX.XXX.XXXxxxxx Xxxxxxx2024-04-22verifiedWysoki
46XX.XXX.XXX.Xxxxxxxxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-17verifiedWysoki
47XX.XXX.XXX.XXXxxxxx Xxxxxxx2023-12-07verifiedWysoki
48XX.XXX.XXX.XXxx.xxx.xxx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
49XX.XXX.XXX.XXXxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-24verifiedWysoki
50XX.XXX.XXX.XXXxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-24verifiedWysoki
51XX.XXX.XXX.Xxxxxx-xxxxxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-02verifiedWysoki
52XX.XXX.XXX.XXXxxxxxxxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-11verifiedWysoki
53XX.XXX.XXX.XXXxxxxx.xxxxxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
54XX.XXX.XXX.XXxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
55XX.XXX.XXX.XXxxxxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-03verifiedWysoki
56XX.XXX.XXX.XXxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-25verifiedWysoki
57XX.XXX.XXX.XXXxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-18verifiedWysoki
58XX.XXX.XXX.XXXxxxxxxx-xxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-06verifiedWysoki
59XX.XXX.XXX.XXxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-29verifiedWysoki
60XX.XXX.XXX.XXxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
61XX.XXX.XXX.XXXxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-11verifiedWysoki
62XX.XXX.XXX.XXXxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-20verifiedWysoki
63XX.XXX.XXX.XXXxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-18verifiedWysoki
64XX.XXX.XXX.XXxxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-13verifiedWysoki
65XX.XXX.XXX.XXxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
66XX.XXX.XXX.XXXxxxxx-xxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-03-04verifiedWysoki
67XX.XXX.XXX.XXXxxxx-xxxx_xx.xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
68XX.XXX.XXX.XXXxxxxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-14verifiedWysoki
69XX.XX.XXX.XXXxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-04verifiedWysoki
70XX.XXX.XX.XXXxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-03-05verifiedWysoki
71XX.XXX.XX.XXxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-23verifiedWysoki
72XX.XXX.XX.XXxxxxxxx-xxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-19verifiedWysoki
73XX.XXX.XX.XXxxxxxxxx-xxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-04verifiedWysoki
74XX.XXX.XX.XXxxxxx-xxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-07verifiedWysoki
75XX.XXX.XX.XXXxxxxxxxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-04verifiedWysoki
76XX.XXX.XX.XXxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-07verifiedWysoki
77XX.XXX.XX.XXXxxxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
78XX.XXX.XX.XXXxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-28verifiedWysoki
79XX.XXX.XXX.XXxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
80XX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-01-26verifiedWysoki
81XX.XXX.XXX.XXXxxxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-24verifiedWysoki
82XX.XXX.XXX.XXXxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-14verifiedWysoki
83XX.XXX.XXX.XXXxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-29verifiedWysoki
84XX.XX.XXX.XXXXxxxxx Xxxxxxx2023-12-31verifiedWysoki
85XX.XXX.XXX.XXXxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-03verifiedWysoki
86XX.XXX.XXX.XXXxxxxxx-xxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-12-19verifiedWysoki
87XX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-02-13verifiedWysoki
88XX.XXX.XXX.XXXxxxxxxxx.xxxXxxxxx Xxxxxxx2024-04-03verifiedWysoki
89XX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-03-09verifiedWysoki
90XX.XXX.XXX.XXXxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-10verifiedWysoki
91XX.XXX.XXX.XXXxxxxxxxx-xxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-14verifiedWysoki
92XX.XXX.XX.XXXXxxxxx Xxxxxxx2024-03-24verifiedWysoki
93XX.XXX.XX.XXXXxxxxx Xxxxxxx2024-02-12verifiedWysoki
94XX.XXX.XXX.Xxxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-18verifiedWysoki
95XX.XXX.XXX.XXxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2023-11-30verifiedWysoki
96XX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-01-17verifiedWysoki
97XX.XXX.XXX.XXXxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-01-06verifiedWysoki
98XX.XXX.XXX.XXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
99XX.XXX.XXX.Xxxxxxxxxx-xxxxxxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
100XX.XXX.XXX.XXXxxxxx Xxxxxxx2023-11-03verifiedWysoki
101XX.XXX.XXX.XXXxxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-03-08verifiedWysoki
102XX.XXX.XXX.XXXxxxxxx-xxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
103XX.XXX.XXX.XXXxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
104XX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
105XX.XXX.XXX.XXxxxxxx.xx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx Xxxxxxx2023-11-19verifiedWysoki
106XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-03-22verifiedWysoki
107XXX.XXX.XX.XXXxxxxx Xxxxxxx2023-12-20verifiedWysoki
108XXX.XX.XX.XXXXxxxxx Xxxxxxx2024-02-26verifiedWysoki
109XXX.XX.XX.XXXxxxxx Xxxxxxx2024-02-26verifiedWysoki
110XXX.XXX.XXX.XXxxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
111XXX.XXX.XXX.XXxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-09verifiedWysoki
112XXX.XXX.XXX.XXxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-19verifiedWysoki
113XXX.XXX.XXX.XXXxxxxxxx-xxxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
114XXX.XXX.XXX.XXXxxxxx Xxxxxxx2024-04-11verifiedWysoki
115XXX.XXX.XXX.XXXxxxxx Xxxxxxx2024-04-20verifiedWysoki
116XXX.XXX.XXX.XXXxxxxx Xxxxxxx2024-04-25verifiedWysoki
117XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-04-06verifiedWysoki
118XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-04-09verifiedWysoki
119XXX.XXX.XXX.XXXxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-08verifiedWysoki
120XXX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx Xxxxxxx2023-11-11verifiedWysoki
121XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxx Xxxxxxx2023-12-19verifiedWysoki
122XXX.XX.XX.XXXXxxxxx Xxxxxxx2024-01-05verifiedWysoki
123XXX.XXX.XX.XXXXxxxxx Xxxxxxx2024-03-05verifiedWysoki
124XXX.XX.XXX.XXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
125XXX.XX.XX.XXxxxxxx-xxxx.xxxx.xxxXxxxxx Xxxxxxx2024-01-31verifiedWysoki
126XXX.XX.XX.XXXxxxxxxxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-02verifiedWysoki
127XXX.XX.XX.XXxxxxx-xxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-16verifiedWysoki
128XXX.XX.XX.XXXxxxxxxxxxx-xxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-08verifiedWysoki
129XXX.XX.XX.XXXxxxxx-xxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-13verifiedWysoki
130XXX.XX.XXX.XXXxxxxx Xxxxxxx2024-02-26verifiedWysoki
131XXX.XX.XXX.XXXXxxxxx Xxxxxxx2024-02-26verifiedWysoki
132XXX.XXX.XXX.XXXxxxxx Xxxxxxx2024-02-14verifiedWysoki
133XXX.XX.XX.XXXxxxx-xxx-xx-xx-xxx.xxxxxx-xx-xxxxxx.xxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
134XXX.XX.XX.XXXxxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
135XXX.XXX.XXX.XXxxxxx-xxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
136XXX.XXX.XXX.XXXxxxxx-xxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
137XXX.XXX.XXX.Xxxxx.xxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
138XXX.XX.X.XXXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
139XXX.XX.XXX.XXXxxx.xxx.xx.xxx.xx-xxxx.xxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
140XXX.XXX.XX.XXxxxxx-xxxxxx.xxxx.xxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
141XXX.XXX.XX.XXxxxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
142XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2023-11-10verifiedWysoki
143XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-02-28verifiedWysoki
144XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-01-05verifiedWysoki
145XXX.XXX.XXX.XXxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
146XXX.XXX.XXX.XXxxxxxx-xxxxxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
147XXX.XXX.XXX.Xxxxxx-xxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-04-13verifiedWysoki
148XXX.XXX.XXX.XXxxxxxx-xx.xxxxxxxxx.xxxXxxxxx Xxxxxxx2024-01-19verifiedWysoki
149XXX.XX.XX.XXXxxxxx Xxxxxxx2023-11-26verifiedWysoki
150XXX.XX.XX.XXXXxxxxx Xxxxxxx2024-02-04verifiedWysoki
151XXX.XX.XXX.XXxxxxx Xxxxxxx2024-02-26verifiedWysoki
152XXX.XXX.XXX.XXxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
153XXX.XXX.XXX.XXXXxxxxx Xxxxxxx2024-01-23verifiedWysoki
154XXX.XXX.XX.XXxxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxxxx Xxxxxxx2024-02-04verifiedWysoki
155XXX.XXX.XX.XXXxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-03-25verifiedWysoki
156XXX.XXX.XXX.XXXxxxxx-xxxxxx.xxxx.xxxxxxxXxxxxx Xxxxxxx2024-03-01verifiedWysoki

TTP - Tactics, Techniques, Procedures (10)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueKlasaLuki w zabezpieczeniachWektor dostępuRodzajPewność siebie
1T1006CAPEC-126CWE-22Path TraversalpredictiveWysoki
2T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveWysoki
3TXXXXCAPEC-242CWE-XXXxxxxxxx XxxxxxxxxpredictiveWysoki
4TXXXX.XXXCAPEC-209CWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveWysoki
5TXXXXCAPEC-122CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveWysoki
6TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveWysoki
7TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveWysoki
8TXXXXCAPEC-CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveWysoki
9TXXXXCAPEC-116CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveWysoki
10TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveWysoki

IOA - Indicator of Attack (110)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlasaIndicatorRodzajPewność siebie
1File/admin/delete_user.phppredictiveWysoki
2File/film-rating.phppredictiveWysoki
3File/index.phppredictiveMedium
4File/librarian/bookdetails.phppredictiveWysoki
5File/oauth/idp/.well-known/openid-configurationpredictiveWysoki
6File/student/bookdetails.phppredictiveWysoki
7Fileaccount.asppredictiveMedium
8Fileadmin.phppredictiveMedium
9Fileadmin/establishment/manage.phppredictiveWysoki
10Fileadmin/inquiries/view_details.phppredictiveWysoki
11Filealbum_portal.phppredictiveWysoki
12Fileannounce.phppredictiveMedium
13Filebb_usage_stats.phppredictiveWysoki
14Filecategory.cfmpredictiveMedium
15Filexxxxxxxx_xxxx.xxxpredictiveWysoki
16Filexxxxx.xxxxx.xxxpredictiveWysoki
17Filexxxxxx.xxx.xxxpredictiveWysoki
18Filexxxxxxx.xxxpredictiveMedium
19Filexxxxxx.xxxpredictiveMedium
20Filexxxxxxxxxxxxxxx.xxxpredictiveWysoki
21Filexxxxxxxx.xxxpredictiveMedium
22Filexxxxxxxxx/xxxxxxxxx.xxxpredictiveWysoki
23Filexxxxxxx.xxxpredictiveMedium
24Filexxxxxxxxxxxx_xxxx.xxxpredictiveWysoki
25Filexxxx_xxxxxxx.xxx.xxxpredictiveWysoki
26Filexxxxxx.xxxpredictiveMedium
27Filexxxx.xxxpredictiveMedium
28Filexxxxx_xxxxxx.xxxpredictiveWysoki
29Filexxx/xxxxxxxxx.xxx.xxxpredictiveWysoki
30Filexxxxxxx.xxxpredictiveMedium
31Filexxxxx.xxxpredictiveMedium
32Filexxxxxxx/xxxxxx.xxxpredictiveWysoki
33Filexxxx_xxxx.xxxpredictiveWysoki
34Filexxxx.xxxpredictiveMedium
35Filexxxxx.xxxpredictiveMedium
36Filexxxx/xxxxxxx_xxxx.xpredictiveWysoki
37Filexxx/xxx.xxxpredictiveMedium
38Filexxxxxxx/xxx_xxxxxxxx.xxxpredictiveWysoki
39Filexxx_xxxxxxxx.xxxpredictiveWysoki
40Filexxxx-xxxxxx.xxxpredictiveWysoki
41Filexxxxxxxx.xxxpredictiveMedium
42Filexxxxx.xxxpredictiveMedium
43Filexxxxxxxx.xxxpredictiveMedium
44Filexxxxx/xxxxxxx.xxxpredictiveWysoki
45Filexxxxx.xxxpredictiveMedium
46Filexxxx.xxxpredictiveMedium
47Filexxxx_xxxx_xxxxxx.xxxpredictiveWysoki
48Filexxxxxx_xxx_xxxxxx.xxxpredictiveWysoki
49Filexxxxx.xxxpredictiveMedium
50Filexxxxx_xxxxx.xxxpredictiveWysoki
51Filexxxxxxxxx/xxxxx/xxxx/xxx_xxxxxxx/xxxxxxx/xxxxxxx.xxxpredictiveWysoki
52Filexxxxx-xxxx.xxxpredictiveWysoki
53Filexxxxxx.xxxpredictiveMedium
54Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveWysoki
55Filexxxx/xxxxxxxxxxxx.xxxpredictiveWysoki
56Filexxxx_xxxx.xxxpredictiveWysoki
57Filexxxx_xxxxxxx.xxxpredictiveWysoki
58Filexxx/xxxxxxx.xxxpredictiveWysoki
59Filexxxxxx.xxxpredictiveMedium
60Libraryxxxxxx[xxxxxx_xxxxpredictiveWysoki
61Libraryxxxxxxx_xxxxxx_xxxxxxxpredictiveWysoki
62ArgumentxxxxxxxxpredictiveMedium
63Argumentxxxx_xxxpredictiveMedium
64Argumentxxx_xxxpredictiveNiski
65ArgumentxxxpredictiveNiski
66Argumentxxx_xxpredictiveNiski
67ArgumentxxxpredictiveNiski
68Argumentxxxx_xxpredictiveNiski
69ArgumentxxxxxxxpredictiveNiski
70ArgumentxxxxxxpredictiveNiski
71ArgumentxxxxxxxxxxpredictiveMedium
72Argumentxxxxxx[xxxxxx_xxxx]predictiveWysoki
73Argumentxxxxxx[xxx_xxxx_xxxx]predictiveWysoki
74Argumentxxxx_xxxxxxxxpredictiveWysoki
75ArgumentxxxxxpredictiveNiski
76ArgumentxxxxxpredictiveNiski
77Argumentxx_xxxxpredictiveNiski
78ArgumentxxxxxxxpredictiveNiski
79ArgumentxxpredictiveNiski
80ArgumentxxxxxxxxpredictiveMedium
81ArgumentxxpredictiveNiski
82ArgumentxxpredictiveNiski
83Argumentxxxxx/xxxxpredictiveMedium
84Argumentxxxxx.xxx?xxxxxx=xxx_xxxxxxx/xxxx=xxxxxxx/xx=x/xxxxxxxx=xxxxxpredictiveWysoki
85ArgumentxxxxpredictiveNiski
86ArgumentxxxxpredictiveNiski
87ArgumentxxxxpredictiveNiski
88Argumentxxxx_xxxxpredictiveMedium
89Argumentxxxxx_xxxxpredictiveMedium
90Argumentxxx_xxxxxxx_xxxpredictiveWysoki
91Argumentxx_xxxxxxxxpredictiveMedium
92Argumentxxxxxxxxx_xxxxxxxx_xxxxpredictiveWysoki
93ArgumentxxxxxpredictiveNiski
94ArgumentxxxxpredictiveNiski
95Argumentxxxx_xx_xx_xxxpredictiveWysoki
96Argumentxxxxx_xxxx_xxxxpredictiveWysoki
97ArgumentxxxxxpredictiveNiski
98ArgumentxxxxxxxxpredictiveMedium
99Argumentxxxxxxx_xxpredictiveMedium
100ArgumentxxxxxxxxpredictiveMedium
101ArgumentxxxpredictiveNiski
102ArgumentxxxpredictiveNiski
103ArgumentxxxxxxxxxxpredictiveMedium
104ArgumentxxxxpredictiveNiski
105Argumentxxxxxxxx/xxxxxxxxpredictiveWysoki
106ArgumentxxpredictiveNiski
107Input Value' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxxpredictiveWysoki
108Input Value'xx''='predictiveNiski
109Input Value\xxx../../../../xxx/xxxxxxpredictiveWysoki
110Network Portxxx/xxxxpredictiveMedium

Referencje (103)

The following list contains external sources which discuss the actor and the associated activities:

PoprzedniPrzeglądKolejny

Want to stay up to date on a daily basis?

Enable the mail alert feature now!