Agent Tesla Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (1000)

Curso de tempo

Idioma

en926
zh32
de16
it6
fr4

País

us838
cn62
ru14
es12
ir6

Actores

Cobalt Strike7
RedLine Stealer5
Mirai5
AsyncRAT3
PhotoLoader3

Actividades

Interesse

Curso de tempo

Tipo

Not Defined368
Operating System120
Content Management System42
Programming Language Software40
Web Browser32

Fabricante

Not Defined192
Apple96
Oracle56
Microsoft52
Adobe38

Produto

Apple Mac OS X88
Adobe Shockwave Player24
Microsoft Windows20
Oracle Java SE20
Adobe Acrobat Reader14

Vulnerabilidades

#VulnerabilidadeBaseTemp0dayHojeExpMasEPSSCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash Divulgação de Informação5.35.2$5k-$25k$0-$5kHighWorkaround0.020160.02CVE-2007-1192
2Vmware Workspace ONE Access/Identity Manager Template direitos alargados9.88.8$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.974360.04CVE-2022-22954
3Microsoft IIS Roteiro Cruzado de Sítios5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.005480.26CVE-2017-0055
4DZCP deV!L`z Clanportal config.php direitos alargados7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.009430.92CVE-2010-0966
5vsftpd deny_file vulnerabilidade desconhecida3.73.6$0-$5k$0-$5kNot DefinedOfficial Fix0.003120.04CVE-2015-1419
6Microsoft IIS IP/Domain Restriction direitos alargados6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.008170.39CVE-2014-4078
7HP Storage Data Protector Excesso de tampão10.010.0$25k-$100k$0-$5kHighNot Defined0.521780.06CVE-2014-2623
8Guangzhou 1GE ONU/V2804RGW formPing direitos alargados5.95.9$0-$5k$0-$5kNot DefinedNot Defined0.770790.00CVE-2020-8958
9Basti2web Book Panel books.php Injecção SQL7.37.0$0-$5k$0-$5kHighOfficial Fix0.000640.03CVE-2009-4889
10LogicBoard CMS away.php Redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000002.36
11RARLabs WinRAR ZIP Archive Remote Code Execution6.35.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.443730.04CVE-2023-38831
12OpenSSH Supplemental Group direitos alargados4.64.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.000560.00CVE-2021-41617
13SourceCodester Simple Cold Storage Management System Contact Us Falsificação de Pedido Cross Site4.34.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.000660.04CVE-2022-3585
14FLDS redir.php Injecção SQL7.37.3$0-$5k$0-$5kHighUnavailable0.002030.22CVE-2008-5928
15nginx direitos alargados6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002414.07CVE-2020-12440
16Esoftpro Online Guestbook Pro ogp_show.php Injecção SQL7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.001080.57CVE-2009-4935
17OpenSSH Readonly Mode sftp-server.c process_open direitos alargados5.35.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.006600.00CVE-2017-15906
18Zoho ManageEngine Firewall Analyzer DNS Name Stored Roteiro Cruzado de Sítios5.25.1$0-$5k$0-$5kNot DefinedOfficial Fix0.001380.03CVE-2019-11676
19Microsoft IIS FTP Server Excesso de tampão7.57.2$25k-$100k$0-$5kHighOfficial Fix0.968430.05CVE-2010-3972
20Tor Guard Relay De-anonymization Divulgação de Informação5.65.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.003890.03CVE-2017-0377

Campanhas (2)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (143)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDEndereço IPHostnameActorCampanhasIdentifiedTipoAceitação
12.9.12.0anantes-154-1-77-net.w2-9.abo.wanadoo.frAgent Tesla15/10/2018verifiedAlto
23.93.18.244ec2-3-93-18-244.compute-1.amazonaws.comAgent Tesla07/09/2022verifiedMédio
33.217.248.28ec2-3-217-248-28.compute-1.amazonaws.comAgent Tesla07/09/2022verifiedMédio
45.253.38.46Agent Tesla02/10/2023verifiedAlto
523.95.85.18123-95-85-181-host.colocrossing.comAgent Tesla12/06/2022verifiedAlto
623.95.128.19523-95-128-195-host.colocrossing.comAgent Tesla06/09/2023verifiedAlto
731.3.251.197h31-3-251-197.host.redstation.co.ukAgent Tesla31/03/2022verifiedAlto
831.155.119.217Agent Tesla02/04/2024verifiedAlto
931.209.137.12smtp.vivaldi.netAgent Tesla11/06/2022verifiedAlto
1031.220.2.200shared.swiftslots.comAgent Tesla02/11/2023verifiedAlto
1134.154.74.8585.74.154.34.bc.googleusercontent.comAgent Tesla08/01/2024verifiedMédio
1234.200.207.31ec2-34-200-207-31.compute-1.amazonaws.comAgent Tesla07/09/2022verifiedMédio
1337.19.196.108unn-37-19-196-108.datapacket.comAgent Tesla11/06/2022verifiedAlto
1437.49.228.234Agent Tesla04/03/2024verifiedAlto
1541.90.176.165Agent Tesla02/04/2024verifiedAlto
1641.90.177.10Agent Tesla02/04/2024verifiedAlto
1741.90.179.140Agent Tesla02/04/2024verifiedAlto
1841.90.180.123Agent Tesla02/04/2024verifiedAlto
1941.90.180.219Agent Tesla02/04/2024verifiedAlto
2041.90.181.104Agent Tesla02/04/2024verifiedAlto
2141.90.185.44Agent Tesla02/04/2024verifiedAlto
2241.90.186.173Agent Tesla02/04/2024verifiedAlto
2341.90.186.247Agent Tesla02/04/2024verifiedAlto
2441.90.186.248Agent Tesla02/04/2024verifiedAlto
2541.90.188.113Agent Tesla02/04/2024verifiedAlto
2641.90.189.214Agent Tesla02/04/2024verifiedAlto
2743.230.131.138srv1.nusadatacenter.comAgent Tesla12/11/2023verifiedAlto
2845.33.8.3045-33-8-30.ip.linodeusercontent.comAgent Tesla22/01/2024verifiedAlto
2945.38.135.112Agent Tesla02/04/2024verifiedAlto
30XX.XXX.XXX.XXXxxxxxxxxxx.xxxxXxxxx Xxxxx18/05/2022verifiedAlto
31XX.XXX.XX.XXXxxxx Xxxxx18/05/2022verifiedAlto
32XX.X.XX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
33XX.X.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
34XX.X.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
35XX.X.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
36XX.XXX.XXX.XXXxxxxxxxxxxxxxx.xxxXxxxx Xxxxx15/10/2018verifiedAlto
37XX.XX.XXX.XXXXxxxx Xxxxx23/09/2023verifiedAlto
38XX.XX.X.XXXxxx-xx-xx-x-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxx Xxxxx11/06/2022verifiedMédio
39XX.XX.XXX.XXXxxxxx.xx-xx-xx-xxx.xxXxxxx Xxxxx05/05/2022verifiedAlto
40XX.XX.XXX.XXxx.xxxx.xxx.xxxx.xxxxxxxXxxxx Xxxxx05/05/2022verifiedAlto
41XX.XXX.XXX.XXxxxxxx.xxxxxxxxxxxxxxxxxxxx.xxxXxxxx Xxxxx24/11/2023verifiedAlto
42XX.XXX.XXX.XXXXxxxx Xxxxx18/05/2022verifiedAlto
43XX.XX.XX.XXxxxxxx.xx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxx Xxxxx18/05/2022verifiedAlto
44XX.XXX.XXX.XXxxxx.xxxxxxxxx.xxxXxxxx Xxxxx27/09/2023verifiedAlto
45XX.XXX.XX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxxxx Xxxxx03/03/2022verifiedAlto
46XX.XXX.XXX.XXXXxxxx Xxxxx21/06/2022verifiedAlto
47XX.XXX.XX.XXxxxx Xxxxx02/04/2024verifiedAlto
48XX.XXX.XX.XXXxxxx XxxxxXxx-xxxx-xxxxx20/12/2023verifiedAlto
49XX.XXX.XX.XXXxx.xxxxxxxx.xxxXxxxx Xxxxx06/07/2022verifiedAlto
50XX.XXX.XXX.XXXxxxx Xxxxx05/05/2022verifiedAlto
51XX.XX.XXX.XXxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
52XX.XX.XXX.XXxxxxxxxx.xxxxxxx.xxxxxXxxxx Xxxxx12/07/2023verifiedAlto
53XX.XX.XXX.XXXxx-xxx-xxx.xxxxxxxx.xxxxXxxxx Xxxxx02/04/2024verifiedAlto
54XX.XXX.XX.XXXxxxxx-xx-xxx-xx-xxx.xxxxxx.xxxXxxxx Xxxxx17/01/2024verifiedAlto
55XX.XXX.XXX.XXXXxxxx Xxxxx05/07/2023verifiedAlto
56XX.XX.X.XXXxxxx Xxxxx15/10/2023verifiedAlto
57XX.XX.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
58XX.XX.XXX.XXXXxxxx Xxxxx19/01/2024verifiedAlto
59XX.XX.XXX.XXXxxxx Xxxxx06/11/2023verifiedAlto
60XX.XXX.XXX.XXxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
61XX.XXX.XXX.Xxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
62XX.XXX.XX.XXXxxxx Xxxxx19/03/2024verifiedAlto
63XX.XXX.XXX.XXxxxx-xxx-xx.xxxxxxxxxxxx.xxxXxxxx Xxxxx30/05/2022verifiedAlto
64XX.XXX.XX.XXXxxxx Xxxxx24/03/2023verifiedAlto
65XXX.XXX.XXX.XXXXxxxx Xxxxx09/11/2021verifiedAlto
66XXX.XXX.XX.XXxxxx Xxxxx29/07/2022verifiedAlto
67XXX.XXX.XXX.XXXxxxx Xxxxx06/04/2022verifiedAlto
68XXX.XX.XXX.XXXxxxx Xxxxx05/05/2022verifiedAlto
69XXX.XXX.XX.XXxxx-xxx-xx-xx-xxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx19/03/2024verifiedAlto
70XXX.XXX.XX.XXxxx-xxx-xx-xx-xxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx06/07/2022verifiedAlto
71XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
72XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
73XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
74XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
75XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
76XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
77XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
78XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
79XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
80XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
81XXX.XXX.XXX.XXXxxxx Xxxxx31/03/2022verifiedAlto
82XXX.XXX.XXX.XXXXxxxx Xxxxx31/03/2022verifiedAlto
83XXX.XXX.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
84XXX.XXX.XX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
85XXX.XXX.XX.XXXxxxx Xxxxx02/04/2024verifiedAlto
86XXX.XXX.XXX.XXXxxxx-xxxxx.xxxxxxxxxxxxxxxxx.xxxXxxxx Xxxxx24/08/2021verifiedAlto
87XXX.XXX.XX.XXXxxx.xxx.xx.xxx.xxxxxxx.xxxxxxXxxxx Xxxxx04/10/2023verifiedAlto
88XXX.XXX.XXX.XXXxxxx.xx-xx.xxxXxxxx Xxxxx08/12/2023verifiedAlto
89XXX.XXX.X.XXxxxx.xxxxxxxxx.xxxxXxxxx Xxxxx22/07/2023verifiedAlto
90XXX.XX.XXX.XXxxxxxx-xxxx-xx.xxxxxxxxxxxxxxxxxxxxx.xxxXxxxx Xxxxx13/07/2023verifiedAlto
91XXX.XX.X.XXXXxxxx Xxxxx10/10/2023verifiedAlto
92XXX.XXX.XXX.XXXxxxxxxxxxx.xxx-xxx-xxx-xxx.xxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
93XXX.XXX.XXX.XXXxxxxxxxxxx.xxx-xxx-xxx-xxx.xxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
94XXX.XXX.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
95XXX.X.XX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
96XXX.X.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
97XXX.XX.XXX.XXXxxxxx.xx-xxx-xx-xxx.xxxXxxxx XxxxxXxxxxxxx Xxxxx03/03/2022verifiedAlto
98XXX.XXX.XXX.XXXXxxxx Xxxxx06/07/2022verifiedAlto
99XXX.XXX.X.XXXXxxxx Xxxxx02/04/2024verifiedAlto
100XXX.XXX.XX.XXxxx-xxx-xx-xx.xxxxxxxxxxxx.xxxXxxxx Xxxxx22/11/2023verifiedAlto
101XXX.XXX.XXX.XXxxxxxxxx.xxxxxxxxxxx.xxxXxxxx Xxxxx06/07/2022verifiedAlto
102XXX.XXX.XX.XXxxxx-xxx.xx-xxx.xxxXxxxx Xxxxx12/06/2022verifiedAlto
103XXX.XX.XX.XXXXxxxx Xxxxx19/05/2023verifiedAlto
104XXX.XX.XX.XXXXxxxx Xxxxx19/05/2023verifiedAlto
105XXX.XX.XXX.XXXXxxxx Xxxxx31/03/2024verifiedAlto
106XXX.XX.XX.XXXxxxxxxxxxx.xxx-xx-xx-xxx.xxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
107XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxx Xxxxx07/03/2024verifiedAlto
108XXX.XXX.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
109XXX.XX.XXX.XXXxxxxxxxx.xxxxxxxxxxx.xxxXxxxx Xxxxx06/04/2023verifiedAlto
110XXX.XX.XX.XXxxxxxxxx.xxxxxxxxxx.xxXxxxx Xxxxx18/05/2022verifiedAlto
111XXX.XX.X.XXXxxxx-xxx-xx-x-xxx.xxxxxxxxxxxx.xxXxxxx Xxxxx22/11/2023verifiedAlto
112XXX.XXX.XX.XXxxxxxxxxxx-xxxx.xxxx.xxxxxxxXxxxx Xxxxx18/05/2022verifiedAlto
113XXX.XXX.XX.XXXxxxx Xxxxx17/01/2023verifiedAlto
114XXX.XXX.XXX.XXXxxxx Xxxxx19/05/2023verifiedAlto
115XXX.XXX.XXX.XXXXxxxx Xxxxx27/12/2022verifiedAlto
116XXX.XXX.XXX.XXXxxxx Xxxxx25/05/2023verifiedAlto
117XXX.XXX.XXX.XXxxxxx.xxxxxxx.xxXxxxx Xxxxx22/11/2023verifiedAlto
118XXX.XXX.XXX.XXXxxxx.xxxxxxxxxx.xxXxxxx Xxxxx19/05/2023verifiedAlto
119XXX.X.XX.XXXxxx-x-xx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx12/03/2024verifiedAlto
120XXX.XX.XX.XXXXxxxx Xxxxx10/08/2022verifiedAlto
121XXX.XXX.XX.XXxxxxxxxx.xxxx.xxxXxxxx Xxxxx05/05/2022verifiedAlto
122XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xxxxxxxxxxxx.xxxXxxxx Xxxxx29/07/2022verifiedAlto
123XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx22/11/2023verifiedAlto
124XXX.XXX.XX.XXx-xxx-xxx-xx-xx.xxxxx-xxx.xxxxxxx-xxxxxxx.xxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
125XXX.XXX.XX.XXx-xxx-xxx-xx-xx.xxxxx-xxx.xxxxxxx-xxxxxxx.xxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
126XXX.XXX.XXX.XXxxxxx-xxxxxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
127XXX.XXX.XXX.XXXxxxxx-xxxxxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
128XXX.XXX.XXX.XXxxxxxx-xxx-xxx-xxx-xx.xxxxxxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
129XXX.XX.XX.XXXxxxx XxxxxXxx-xxxx-xxxxx20/12/2023verifiedAlto
130XXX.XXX.XXX.XXXxxxx Xxxxx06/12/2022verifiedAlto
131XXX.XXX.XX.XXXxxx.xxx.xx.xxx.xxxxxxxx.xxxXxxxx Xxxxx02/04/2024verifiedAlto
132XXX.XX.XXX.Xxxx-xx-xxx-x-xxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx06/07/2022verifiedAlto
133XXX.XX.XXX.XXXXxxxx Xxxxx05/05/2022verifiedAlto
134XXX.XX.XX.XXXxxxxx.xxxxxxxxxx.xxxXxxxx Xxxxx16/01/2023verifiedAlto
135XXX.XXX.X.XXXXxxxx Xxxxx08/04/2024verifiedAlto
136XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxx Xxxxx05/05/2022verifiedAlto
137XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx05/05/2022verifiedAlto
138XXX.XX.XXX.XXxxx.xxxxxxxx.xxxXxxxx Xxxxx12/06/2022verifiedAlto
139XXX.XX.XXX.XXXxxx.xxxxxxxx.xxxxxxxxxxx.xxxXxxxx Xxxxx04/03/2022verifiedAlto
140XXX.XX.XXX.XXXxxx.xxxxxxxx.xxxxxxxxxxx.xxxXxxxx Xxxxx12/06/2022verifiedAlto
141XXX.XXX.XX.XXXxxxxxx.xxxxxxxxxxxx.xxxXxxxx Xxxxx22/03/2023verifiedAlto
142XXX.XXX.XXX.XXXXxxxx Xxxxx02/04/2024verifiedAlto
143XXX.XXX.XXX.XXXxxxx Xxxxx22/12/2023verifiedAlto

TTP - Tactics, Techniques, Procedures (22)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassificaçãoVulnerabilidadesTipo de acessoTipoAceitação
1T1006CAPEC-126CWE-21, CWE-22Path TraversalpredictiveAlto
2T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveAlto
3T1059CAPEC-137CWE-88, CWE-94Argument InjectionpredictiveAlto
4T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveAlto
5T1068CAPEC-122CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveAlto
6TXXXX.XXXCAPEC-0CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveAlto
7TXXXX.XXXCAPEC-16CWE-XXX, CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveAlto
8TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveAlto
9TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveAlto
10TXXXXCAPEC-0CWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveAlto
11TXXXXCAPEC-1CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
12TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveAlto
13TXXXXCAPEC-50CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveAlto
14TXXXX.XXXCAPEC-120CWE-XXXXxxxxxx Xxxxxxxxxx Xxx Xxxxxxxx Xxxxxxx Xx Xx-xxxx Xxxxxx XxxxxxxxpredictiveAlto
15TXXXXCAPEC-38CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveAlto
16TXXXX.XXXCAPEC-133CWE-XXXXxxxxxxxpredictiveAlto
17TXXXXCAPEC-464CWE-XXXXxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxxxxxxxxx Xx Xx Xxxxxxxxxxxx XxxxxpredictiveAlto
18TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto
19TXXXX.XXXCAPEC-0CWE-XXXxxxxxxxxxxxxpredictiveAlto
20TXXXXCAPEC-157CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveAlto
21TXXXX.XXXCAPEC-59CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveAlto
22TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveAlto

IOA - Indicator of Attack (333)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorTipoAceitação
1File/+CSCOE+/logon.htmlpredictiveAlto
2File/api/admin/system/store/order/listpredictiveAlto
3File/cgi-bin/wapopenpredictiveAlto
4File/csms/?page=contact_uspredictiveAlto
5File/etc/ajenti/config.ymlpredictiveAlto
6File/etc/gsissh/sshd_configpredictiveAlto
7File/forum/away.phppredictiveAlto
8File/goform/telnetpredictiveAlto
9File/modules/profile/index.phppredictiveAlto
10File/out.phppredictiveMédio
11File/rom-0predictiveBaixo
12File/tmp/phpglibccheckpredictiveAlto
13File/uncpath/predictiveMédio
14File/uploadpredictiveBaixo
15File/var/tmp/sess_*predictiveAlto
16Fileaction.phppredictiveMédio
17Fileactionphp/download.File.phppredictiveAlto
18Fileadd_comment.phppredictiveAlto
19Fileadmin.php3predictiveMédio
20Fileadmin.php?m=backup&c=backup&a=dobackpredictiveAlto
21Fileadmin/admin.phppredictiveAlto
22Fileadmin/content.phppredictiveAlto
23Fileadmin/index.php?id=users/action=edit/user_id=1predictiveAlto
24Fileadmin/memberviewdetails.phppredictiveAlto
25Fileadmin_gallery.php3predictiveAlto
26Fileaffich.phppredictiveMédio
27Fileagent/Core/Controller/SendRequest.cpppredictiveAlto
28Fileajax/telemetry.phppredictiveAlto
29FileakeyActivationLogin.dopredictiveAlto
30Filealbum_portal.phppredictiveAlto
31Fileapache-auth.confpredictiveAlto
32Fileaskapache-firefox-adsense.phppredictiveAlto
33Fileattachment.cgipredictiveAlto
34Fileblueprints/sections/edit/1predictiveAlto
35Fileboaform/admin/formPingpredictiveAlto
36Filebooks.phppredictiveMédio
37Filecart_add.phppredictiveMédio
38FileCFS.cpredictiveBaixo
39Filechecktransferstatus.phppredictiveAlto
40Filecheckuser.phppredictiveAlto
41Fileclass.SystemAction.phppredictiveAlto
42Fileclientarea.phppredictiveAlto
43Filecollectivite.class.phppredictiveAlto
44Filecom_android_bluetooth_btservice_AdapterService.cpppredictiveAlto
45FilecontactpredictiveBaixo
46Filexxxxxxx.xpredictiveMédio
47Filexxxx/xxxxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
48Filexxx-xxx/xxxxxxxxxxxxx.xxxpredictiveAlto
49Filexx_xxxx.xpredictiveMédio
50Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveAlto
51Filexxxxx_xxxxxxx_xxxx.xxxpredictiveAlto
52Filexxxxxxxxxxxxx/xxxxxx/xxxx.xxxpredictiveAlto
53Filexxxxxxx_xxxx.xxxpredictiveAlto
54Filexxxxxxxx.xxxpredictiveMédio
55Filexxxxxxxxxxxxxxxx.xpredictiveAlto
56Filexxxxxxxx-xxxx.xxxpredictiveAlto
57Filexxxxxxxx.xxxpredictiveMédio
58Filex/xxxxxx/xxxxxxxx.xxxpredictiveAlto
59Filexxxxxxxx.xxxpredictiveMédio
60Filexxxxx.xxxpredictiveMédio
61Filexxxxxxx-xxxxxxx/xxxx/xxxxxx/xxxxxxxx/xxx/xxxxxxxxx/xxxxxx.xxpredictiveAlto
62Filexxxxx.xxxpredictiveMédio
63Filexxx/xxxx/xxxx_xxxxxx.xpredictiveAlto
64Filexxx/xxxxxxxx/xxx.xpredictiveAlto
65Filexxxx.xxxpredictiveMédio
66Filexxxxxxxxxx/xxx.xxpredictiveAlto
67Filexxxxxxxxx/xx/xxxxxxxxxxxx.xxxpredictiveAlto
68Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
69Filexxxxxxxx.xxxpredictiveMédio
70Filexxxxxxxx/xxxx_xxxxxxxx.xxxpredictiveAlto
71Filexxxxxxxxxxxxxx.xxxpredictiveAlto
72Filexxxxxxxxxx.xxxpredictiveAlto
73Filexxxxxxx.xxxpredictiveMédio
74Filexxxxxxxxx.xxxpredictiveAlto
75Filexxxxxxxxx.xxpredictiveMédio
76Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveAlto
77Filexxxx-xxxxxxx.xpredictiveAlto
78Filexxxxxx/xxxxxxpredictiveAlto
79Filexxxxxx_xx.xpredictiveMédio
80Filexx/xxx/xxxxx.xpredictiveAlto
81Filexxxxx.xxxpredictiveMédio
82Filexxxxxxxxxxxxxx.xxxpredictiveAlto
83Filexxxxxxx.xxxpredictiveMédio
84Filexxx/xxxxxx.xxxpredictiveAlto
85Filexxxxx.xxxpredictiveMédio
86Filexxxxx.xxx?xxx=xxxx&xxx=xxxxxxxxpredictiveAlto
87Filexxxxx_xx.xxxpredictiveMédio
88Filexxxxxxxx.xxxpredictiveMédio
89Filexxxx_xxxx.xxxpredictiveAlto
90Filexxxxxxxxxx/xxx/xxxxxx_xxxx.xxxpredictiveAlto
91Filexxx/xxxxxxxxxx/xxxxxxxxx.xxpredictiveAlto
92Filexxxxxx.xpredictiveMédio
93Filexxxxxxxxx/xxxxxx.xxx.xxxpredictiveAlto
94Filexxxxxxxxx/xxxxxxxx.xxxpredictiveAlto
95Filexxxxxxxxx.xxxpredictiveAlto
96Filexxxxx.xxxxpredictiveMédio
97Filexxxxx.xxxpredictiveMédio
98Filexxx.xpredictiveBaixo
99Filexxxxx_xxxxxxxxxx_xxxx.xpredictiveAlto
100Filexxxx.xxxpredictiveMédio
101Filexxxxxxxx.xxx.xpredictiveAlto
102Filexxxxxxxxxx.xxxpredictiveAlto
103Filexxxxx/__xxxx_xxxx.xxxpredictiveAlto
104Filexxxxxxxx.xxxxxxxxxxxxxxxxxxx.xxxxxxxxxxxxxxxxxxpredictiveAlto
105Filexxxxxx_xxxxxx.xxxpredictiveAlto
106Filexxx/xxxx/xxxx_xxxxxx.xpredictiveAlto
107Filexxxx_xxxx.xxxpredictiveAlto
108Filexxx_xxxxxxxx.xpredictiveAlto
109Filexxxx/xxxxx/xxxxxxx/xxxxxxxx.xxpredictiveAlto
110Filexxxxxxx.xxxpredictiveMédio
111Filexxxxx.xxxpredictiveMédio
112Filexxx_xxxx.xxxpredictiveMédio
113Filexxxxxxx_xxxxxxxxx.xpredictiveAlto
114Filexxx/xxxxxx/xxxxxxxx/xxxxx/xxxxxxxxx.xxxxpredictiveAlto
115Filexxxxxxxxxxxx.xxxpredictiveAlto
116Filexxxxxx.xxxpredictiveMédio
117Filexxxxxx/xxxxxxx-xxx-xxxpredictiveAlto
118Filexxxxxx.xxxpredictiveMédio
119Filexxxxxxxxxx.xxx.xxxpredictiveAlto
120FilexxxpredictiveBaixo
121Filexxxxx_xxxxxx.xxxpredictiveAlto
122Filexxxxxx.xxxpredictiveMédio
123Filexxxx_xxx.xxxpredictiveMédio
124Filexxxxxxx.xxxpredictiveMédio
125Filexxxxxxxxxx.xxxpredictiveAlto
126Filexxxxxx/xxxxx.xxxpredictiveAlto
127Filexxx_xxxxxx.xxxpredictiveAlto
128Filexxxx.xxxpredictiveMédio
129Filexxxxx.xxxpredictiveMédio
130Filexxxxx.xxxpredictiveMédio
131Filexxxxxxxx.xxxpredictiveMédio
132Filexxxxxxxxxxxx.xxxpredictiveAlto
133Filexxxxxxxx_xxxx.xxxpredictiveAlto
134Filexxxxxx.xxxpredictiveMédio
135Filexxxxx.xxxpredictiveMédio
136Filexx_xxxx.xpredictiveMédio
137Filexxxx/xxxxxxxxxxxxxx/xxxx_xxxxxxx.xpredictiveAlto
138Filexxxxx.xxxpredictiveMédio
139Filexxxxxx.xxxpredictiveMédio
140Filexxxxxxxxx.xxxpredictiveAlto
141Filexxxx-xxxxxx.xpredictiveAlto
142Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveAlto
143Filexxxxxxxxxxxxx.xxxpredictiveAlto
144Filexxxxx.xxxpredictiveMédio
145Filexxxxx_xxxxx.xxxpredictiveAlto
146Filexxxxxxxxxxxx.xxxpredictiveAlto
147Filexxxxxxxxx.xxxpredictiveAlto
148Filexxxxx.xpredictiveBaixo
149Filex/xxxxx.xxxpredictiveMédio
150Filexxx_xxx.xpredictiveMédio
151Filexxxx-xxxxxxxx.xxxpredictiveAlto
152Filexxx.xxxpredictiveBaixo
153Filexxxxx/xxxxxxxx.xxxpredictiveAlto
154Filexxxxx_xxxxx.xxxxpredictiveAlto
155Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveAlto
156Filexxxxxxxxx.xxpredictiveMédio
157Filexxxxx_xx.xxxpredictiveMédio
158Filexxxx_xx_xxxx.xxxpredictiveAlto
159Filexxx.xxxpredictiveBaixo
160Filexxx.xxxpredictiveBaixo
161Filexxxxxxxx/xxxxx/xxxxx.xxxpredictiveAlto
162Filexxxxxxx/xxxxxx/xxxxx/xxxxxxx/xxx/xxx.xxxpredictiveAlto
163Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveAlto
164Filexx-xxxxx.xxxpredictiveMédio
165Filexxx/xx_xxx.xxxpredictiveAlto
166Filexxxx.xxpredictiveBaixo
167File\xxxxxxx\xxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
168File~/xxx-xxx-xxxxxx.xxxpredictiveAlto
169Libraryxxxxxxxx/xxxxxxx/xxxxxxxx/xxx/xxxx/xxxx/xxxxxx/xxx/xxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxx/xxxxxx/xxxxxxxx_xxxxxxxxxxxxxxxx.xxxxpredictiveAlto
170Libraryxxxxxx[xxxxxx_xxxxpredictiveAlto
171Libraryxxxxxx.xxxpredictiveMédio
172Libraryxxxxxxx.xxxpredictiveMédio
173Libraryxxxxxx.xxxpredictiveMédio
174Libraryxxxxxx.xxxpredictiveMédio
175Libraryxxxxxxx-xxxxxxx/xxx/xxxx/xxxx/xxx/xxxxxxxxxx/xxxxxxx/xxxxxxx/xxxxxxx.xxxxpredictiveAlto
176Libraryxxxxxx.xxxpredictiveMédio
177Libraryxxxxx.xxxpredictiveMédio
178Libraryxxxxxx.xxxpredictiveMédio
179Libraryxxx.xxxpredictiveBaixo
180Libraryxxx/xxx/xxx.xxxx.xxxpredictiveAlto
181Libraryxxxxxxxx/xxx/xx.xxxpredictiveAlto
182Libraryxxx/xxxxxx/xxxxxxxx.xxpredictiveAlto
183Libraryxxx/xxxxxx/xxxxxxx/xxxxxxxxx.xxpredictiveAlto
184Libraryxxx/xxxxxx/xxxxxxx/xxxxx.xxpredictiveAlto
185Libraryxxx/xxxxxx/xxx/xxxxxxxxxxx_xxxxxxxxx.xxpredictiveAlto
186Libraryxxx/x.xpredictiveBaixo
187Libraryxxx/xxxxxxx/xxxxx.xxpredictiveAlto
188Libraryxxx/xxxxxxx.xxpredictiveAlto
189Libraryxxxxxxxx.xxxpredictiveMédio
190Libraryxxx.xxxpredictiveBaixo
191Libraryxxxxxxxxx.x.x.xxx.xxxpredictiveAlto
192Libraryxxxxxxxx.xxxpredictiveMédio
193Libraryxxxxxx.xxxpredictiveMédio
194Libraryxxxxxx.xxxpredictiveMédio
195Libraryxxxxxxxxxx.xxxpredictiveAlto
196Libraryxxxxxxxxxx.xxxpredictiveAlto
197Libraryxxxx.xxxpredictiveMédio
198Libraryxxxxxx.xxxpredictiveMédio
199Libraryxxxxxxxx.xxxpredictiveMédio
200Libraryxxxxxxxx.xxxpredictiveMédio
201Libraryxxxxxxxx.xxxpredictiveMédio
202Libraryxxxxxxxx.xxxpredictiveMédio
203Libraryxxxxxx.xxxpredictiveMédio
204Argument$xxxxxxxpredictiveMédio
205Argument$x_xxxxxx[xxxxxxxx]predictiveAlto
206ArgumentxxxxxxxxxxxxpredictiveMédio
207ArgumentxxxxxxpredictiveBaixo
208Argumentxxxxx_xxxpredictiveMédio
209ArgumentxxxxxpredictiveBaixo
210ArgumentxxxxxxxxpredictiveMédio
211ArgumentxxxxxpredictiveBaixo
212Argumentxxxxxx_xxxxpredictiveMédio
213ArgumentxxxxxxxxxpredictiveMédio
214ArgumentxxxxpredictiveBaixo
215ArgumentxxxxxxxxpredictiveMédio
216ArgumentxxxxpredictiveBaixo
217ArgumentxxxxxpredictiveBaixo
218ArgumentxxxxxxpredictiveBaixo
219ArgumentxxxpredictiveBaixo
220ArgumentxxxxxpredictiveBaixo
221Argumentxxx_xxpredictiveBaixo
222Argumentxxxx_xxpredictiveBaixo
223ArgumentxxxxxxxpredictiveBaixo
224ArgumentxxxxxxpredictiveBaixo
225Argumentxxxxxx/xxxxxxxpredictiveAlto
226Argumentxxxxxx[xxxxxx_xxxx]predictiveAlto
227ArgumentxxxxxxxpredictiveBaixo
228ArgumentxxxxxxxxxxpredictiveMédio
229Argumentxxxxxx_xxpredictiveMédio
230ArgumentxxxxxxxxxxxxxxxxpredictiveAlto
231Argumentxxxx_xxxpredictiveMédio
232ArgumentxxxxxxxxxxxpredictiveMédio
233Argumentxxxx xx xxxxxxxpredictiveAlto
234ArgumentxxxxxxxxpredictiveMédio
235Argumentxxx_xxxxpredictiveMédio
236Argumentxxx_xxxxpredictiveMédio
237ArgumentxxxxxxxpredictiveBaixo
238ArgumentxxxxxpredictiveBaixo
239Argumentxxx[xxxxxxx]predictiveMédio
240ArgumentxxxxxxxpredictiveBaixo
241ArgumentxxxxxpredictiveBaixo
242Argumentxxxxx_xxpredictiveMédio
243ArgumentxxxxpredictiveBaixo
244ArgumentxxxxxxxxxxpredictiveMédio
245Argumentxxx_xxxxx_xxpredictiveMédio
246ArgumentxxxxxpredictiveBaixo
247Argumentxxxxxxxxx/xx/xxxxxxxxpredictiveAlto
248Argumentxxxx=xxxxxxpredictiveMédio
249ArgumentxxxxxxpredictiveBaixo
250Argumentx_xxxxxxxxpredictiveMédio
251Argumentxxx-xxx-xxxxpredictiveMédio
252ArgumentxxxxpredictiveBaixo
253Argumentxxx_xxxxxxxxxpredictiveAlto
254Argumentxxx_xxxxxxpredictiveMédio
255ArgumentxxpredictiveBaixo
256Argumentxxxxx_xxxx/xxxxxx/xxxxxpredictiveAlto
257ArgumentxxxxxpredictiveBaixo
258ArgumentxxxxxxpredictiveBaixo
259Argumentxxxx_xxpredictiveBaixo
260Argumentxx_xxxxxpredictiveMédio
261ArgumentxxxpredictiveBaixo
262ArgumentxxxxxxxpredictiveBaixo
263ArgumentxxxxxxxxpredictiveMédio
264ArgumentxxxxxxxxxxxxxxpredictiveAlto
265ArgumentxxxxxxxxxxpredictiveMédio
266Argumentxxxxxxxxxxxx_xxxxxxpredictiveAlto
267ArgumentxxxxxxxxxpredictiveMédio
268ArgumentxxxpredictiveBaixo
269ArgumentxxxxxpredictiveBaixo
270ArgumentxxxxxxpredictiveBaixo
271ArgumentxxxxxxxxpredictiveMédio
272ArgumentxxxxxxxxxxxpredictiveMédio
273ArgumentxxxpredictiveBaixo
274ArgumentxxxxxxxxxxxxxxxxxxxxxxxpredictiveAlto
275Argumentx-xxxpredictiveBaixo
276ArgumentxxxxpredictiveBaixo
277Argumentxxxx/xxxxxxxxxx xxxxx/xxxxxpredictiveAlto
278ArgumentxxxpredictiveBaixo
279Argumentxxxxx xxxxxxpredictiveMédio
280ArgumentxxxxxxxxxpredictiveMédio
281ArgumentxxxxxxxxxxxxxxxxpredictiveAlto
282ArgumentxxpredictiveBaixo
283ArgumentxxxxpredictiveBaixo
284ArgumentxxxxpredictiveBaixo
285Argumentxxxx_xxxx_xxxxxxxpredictiveAlto
286ArgumentxxxxxpredictiveBaixo
287ArgumentxxxxxxxxpredictiveMédio
288ArgumentxxxxpredictiveBaixo
289Argumentxxxx_xxpredictiveBaixo
290ArgumentxxxxxxxxxpredictiveMédio
291Argumentxxxxx_xxxx_xxxxpredictiveAlto
292Argumentxxxx_xxpredictiveBaixo
293ArgumentxxxxxxxxpredictiveMédio
294ArgumentxxxxxpredictiveBaixo
295ArgumentxxxxxxxxpredictiveMédio
296ArgumentxxxxxxxpredictiveBaixo
297ArgumentxxxxxxpredictiveBaixo
298ArgumentxxxxxpredictiveBaixo
299Argumentxxxxxx/xxxxxpredictiveMédio
300ArgumentxxxxxxpredictiveBaixo
301Argumentxxxxxxx_xxxxxpredictiveAlto
302ArgumentxxxxxxxpredictiveBaixo
303Argumentxxxxxxx_xxxxpredictiveMédio
304ArgumentxxxxxxxpredictiveBaixo
305ArgumentxxxxxxxxxpredictiveMédio
306Argumentxxxx/xxxxxx/xxxxxxx/xxxxxxxxxxpredictiveAlto
307ArgumentxxxpredictiveBaixo
308Argumentxxxxxxx[]predictiveMédio
309ArgumentxxxxxxxxxxxxpredictiveMédio
310ArgumentxxxpredictiveBaixo
311Argumentxx_xxxxpredictiveBaixo
312ArgumentxxxxxxxxpredictiveMédio
313ArgumentxxxxxxxxxxxpredictiveMédio
314ArgumentxxxpredictiveBaixo
315ArgumentxxxxpredictiveBaixo
316ArgumentxxxxxxxxpredictiveMédio
317Argumentxxxxxxxx/xxxxpredictiveAlto
318ArgumentxxxxpredictiveBaixo
319ArgumentxxxxpredictiveBaixo
320ArgumentxxxxpredictiveBaixo
321ArgumentxxxxxpredictiveBaixo
322ArgumentxxxpredictiveBaixo
323ArgumentxxpredictiveBaixo
324Input Value.%xx.../.%xx.../predictiveAlto
325Input Value../predictiveBaixo
326Input Value../..predictiveBaixo
327Input Value/xx *predictiveBaixo
328Input Valuex\"><xxxxxx>xxxxx(x)</xxxxxx>predictiveAlto
329Input Value<xxxxxx>xxxxx(xxxxxxxx.xxxxxx);</xxxxxx>predictiveAlto
330Input Valuex' xxxxx xxxxx(x) xxx 'xxxx'='xxxxpredictiveAlto
331Input Valuexxxxxxxx.+xxxpredictiveAlto
332Input Value…/.predictiveBaixo
333Network Portxxx xxxxxx xxxxpredictiveAlto

Referências (46)

The following list contains external sources which discuss the actor and the associated activities:

Samples (1)

The following list contains associated samples:

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!