Manipulaters Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (17)

Idioma

en	16
de	2

País

us	18

Actores

Manipulaters	1

Interesse

Tipo

Not Defined	4
Forum Software	2
Server Management Software	2

Fabricante

DZCP	2
Not Defined	2
VMware	2
AXScripts	2

Produto

DZCP deV!L`z Clanportal	2
mvnForum	2
VMware vCenter Server	2
VMware Cloud Foundation	2
AXScripts AxsLinks	2

Vulnerabilidades

#	Vulnerabilidade	Base	Temp	0day	Hoje	Exp	Mas	EPSS	CTI	CVE
1	TikiWiki tiki-register.php direitos alargados	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.01075	1.99	CVE-2006-6168
2	DZCP deV!L`z Clanportal config.php direitos alargados	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00943	1.17	CVE-2010-0966
3	PHP phpinfo Roteiro Cruzado de Sítios	4.3	3.9	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.02101	0.04	CVE-2007-1287
4	mvnForum Falsificação de Pedido Cross Site	6.3	6.0	$0-$5k	$0-$5k	High	Official Fix	0.00328	0.00	CVE-2008-5400
5	AXScripts AxsLinks addlink.php Roteiro Cruzado de Sítios	4.3	4.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00415	0.04	CVE-2010-4848
6	Lars Ellingsen Guestserver guestbook.cgi Roteiro Cruzado de Sítios	4.3	4.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00169	0.29	CVE-2005-4222
7	VMware vCenter Server/Cloud Foundation vSphere Client Privilege Escalation	8.0	7.9	$5k-$25k	$0-$5k	High	Official Fix	0.97299	0.09	CVE-2021-21972
8	Microsoft Windows TTF direitos alargados	9.6	9.2	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.63678	0.00	CVE-2013-3129

IOC - Indicator of Compromise (4)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	Endereço IP	Hostname	Actor	Identified	Tipo	Aceitação
1	34.98.99.30	30.99.98.34.bc.googleusercontent.com	Manipulaters	07/09/2021	verified	Médio
2	XXX.XXX.XX.X		Xxxxxxxxxxxx	07/09/2021	verified	Alto
3	XXX.XX.XXX.XXX		Xxxxxxxxxxxx	09/04/2024	verified	Alto
4	XXX.XXX.XXX.XXX		Xxxxxxxxxxxx	09/04/2024	verified	Alto

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Classificação	Vulnerabilidades	Tipo de acesso	Tipo	Aceitação
1		CAPEC-10	CWE-20, CWE-352, CWE-862, CWE-863	Unknown Vulnerability	predictive	Alto
2	TXXXX	CAPEC-10	CWE-XX, CWE-XX, CWE-XXX	Xxxxxxxx Xxxxxxxxx	predictive	Alto
3	TXXXX.XXX	CAPEC-10	CWE-XX, CWE-XX, CWE-XX, CWE-XXX	Xxxxx Xxxx Xxxxxxxxx	predictive	Alto

IOA - Indicator of Attack (6)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Classe	Indicator	Tipo	Aceitação
1	File	addlink.php	predictive	Médio
2	File	guestbook.cgi	predictive	Alto
3	File	xxx/xxxxxx.xxx	predictive	Alto
4	File	xxxx-xxxxxxxx.xxx	predictive	Alto
5	Argument	xxxxxxxx	predictive	Médio
6	Argument	xxxxx	predictive	Baixo

Referências (4)

The following list contains external sources which discuss the actor and the associated activities:

◂ VoltarVisão GeralPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!