Shellbot Análiseinformação

IOB - Indicator of Behavior (399)

Curso de tempo

Idioma

en220
es150
zh8
it6
de6

País

Actores

Actividades

Interesse

Curso de tempo

Tipo

Fabricante

Produto

Microsoft Windows14
Linux Kernel6
MyBB4
Mozilla Firefox4
Microsoft IIS4

Vulnerabilidades

#VulnerabilidadeBaseTemp0dayHojeExpMasEPSSCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash Divulgação de Informação5.35.2$5k-$25k$0-$5kHighWorkaround0.021470.00CVE-2007-1192
2DZCP deV!L`z Clanportal config.php direitos alargados7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.014700.45CVE-2010-0966
3Fortinet FortiOS Endpoint Monitor Persistent Roteiro Cruzado de Sítios3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000000.00
4IBM TRIRIGA Application Platform Error Message Divulgação de Informação5.35.3$5k-$25k$0-$5kNot DefinedNot Defined0.001070.00CVE-2020-4277
5IBM Security Secret Server URL Parameter Divulgação de Informação3.73.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.000640.00CVE-2021-20582
6Ultimate PHP Board UPB users.dat Password direitos alargados5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.004490.00CVE-2002-2322
7Microsoft Windows Netlogon direitos alargados7.57.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.013170.00CVE-2016-3228
8RoundCube Webmail iRedMail Key direitos alargados6.46.3$0-$5k$0-$5kNot DefinedOfficial Fix0.005630.04CVE-2018-1000072
9Freeimage tiff_read_iptc_profile Excesso de tampão5.55.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.07CVE-2024-9029
10Kastle Systems Access Control System Fraca autenticação5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000430.04CVE-2024-45861
11TOTOLINK A720R exportOvpn direitos alargados6.06.0$0-$5k$0-$5kNot DefinedNot Defined0.000850.04CVE-2024-8869
12lunary-ai lunary Setting saml.ts direitos alargados5.05.0$0-$5k$0-$5kNot DefinedOfficial Fix0.000450.03CVE-2024-6582
13WP Booking System Plugin Roteiro Cruzado de Sítios4.84.7$0-$5k$0-$5kNot DefinedNot Defined0.000520.06CVE-2024-8797
14Linux Kernel DMA Table pata_macio.c Negação de Serviço4.84.6$0-$5k$0-$5kNot DefinedOfficial Fix0.000430.04CVE-2024-44976
15Cisco ClamAV ClamD Service direitos alargados5.55.5$5k-$25k$5k-$25kNot DefinedNot Defined0.000430.03CVE-2024-20506
16SourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php Injecção SQL7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.001090.19CVE-2024-8380
17techjewel Contact Form Plugin Plugin MailChimp API Key verifyRequest direitos alargados4.64.5$0-$5k$0-$5kNot DefinedNot Defined0.000680.04CVE-2024-5053
18OpenRapid RapidCMS user-move-run.php Injecção SQL7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.000910.00CVE-2024-8331
19Alt-N MDaemon Worldclient direitos alargados4.94.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.000900.04CVE-2021-27182
20Adobe Experience Manager direitos alargados3.83.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000470.04CVE-2024-41849

Campanhas (1)

These are the campaigns that can be associated with the actor:

  • CVE-2020-17496

IOC - Indicator of Compromise (18)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (20)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (148)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorTipoAceitação
1File.phppredictiveBaixo
2File/admin/emp-profile-avatar.phppredictiveAlto
3File/admin/save.phppredictiveAlto
4File/admin/team_save.phppredictiveAlto
5File/admin/user/user-move-run.phppredictiveAlto
6File/ajax.php?action=loginpredictiveAlto
7File/cgi-bin/web_index.cgi?lang=en&src=AwSystem.html&ertqVvnKV4TjU9VtpredictiveAlto
8File/chetc/shutdownpredictiveAlto
9File/classes/Users.php?f=save_userpredictiveAlto
10File/cms/classes/Users.php?f=delete_clientpredictiveAlto
11File/endpoint/delete-account.phppredictiveAlto
12File/endpoint/delete-task.phppredictiveAlto
13File/etc/networkd-dispatcherpredictiveAlto
14File/goform/setMacFilterListpredictiveAlto
15File/integrations.jsonpredictiveAlto
16File/js/player/dmplayer/player/index.phppredictiveAlto
17File/nav_bar_action.phppredictiveAlto
18File/xxxx/xxx/xxxxxxxxxxpredictiveAlto
19File/xxxxx/xxxxxxx/xxxx/xxxxxxx.xxxpredictiveAlto
20File/xxxxxxxx/xxxx_xxxxxxx.xxxpredictiveAlto
21File/xxxxxxxx_xxxxx/xxxxxxx/xxxxxx.xxx?x=xxxxxx_xxxxpredictiveAlto
22File/xxxx/xxxx_xxxpredictiveAlto
23File/xxx/xxx/xxxxpredictiveAlto
24Filexxxxxxx/xxxxxxxxxxxx.xxxpredictiveAlto
25Filexxxxx.xxxpredictiveMédio
26Filexxxxx/xxxxxxxxx.xxxpredictiveAlto
27Filexxxxx/xxxxx.xxx/xxxxxxxx/xxxxxxpredictiveAlto
28Filexxxxx_xxxx.xxxpredictiveAlto
29Filexxx_xxxxxx_xxxxxx.xxxpredictiveAlto
30Filexxx.xxx?x=xxxxxxxx&x=xxxxxpredictiveAlto
31Filexxxxxxx.xxxpredictiveMédio
32Filexxxxxxxxxxx.xxxpredictiveAlto
33Filexxxxxxxxxxx_xxxxxx.xxxpredictiveAlto
34Filexxxx_xxxx.xxpredictiveMédio
35Filexxxxxx_xxxx.xxxpredictiveAlto
36Filexxxxxxxxx.xxpredictiveMédio
37Filexxxxxxxx.xpredictiveMédio
38FilexxxxxxxpredictiveBaixo
39Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
40Filexxxxxxxxxx_xxxxx.xxxpredictiveAlto
41Filexxx.xxxxxxxxxx.xxxxxxxxxxx.xxxxxxxxxxxxpredictiveAlto
42Filexxxxxx.xxxpredictiveMédio
43Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveAlto
44Filexxxxxxx/xxx/xxxx_xxxxx.xpredictiveAlto
45Filexxxxxxxx.xxxxpredictiveAlto
46Filexxx.xpredictiveBaixo
47Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
48Filexxxxxxx/xx/xxxxxx/xxxxx_xxxxx_xxxxxxxxxx/xxxxxx.xxxpredictiveAlto
49Filexxxxxxx/xx/xxxxxxx/xxxxxxxxxxx/xxxxxx.xxxpredictiveAlto
50Filexxxxxxxxxxxxx.xxxxxpredictiveAlto
51Filexxx.xxxpredictiveBaixo
52Filexxx/xxxxxx.xxxpredictiveAlto
53Filexxx/xxxxxxx.xxxpredictiveAlto
54Filexxxxxxxxx/xxxxxxx_xxxx/xxxxxx.xxxpredictiveAlto
55Filexxxxxxxxxxxx.xxxpredictiveAlto
56Filexxxxx.xpredictiveBaixo
57Filexxxxxxxxx.xxpredictiveMédio
58Filexxxxxxxxxx/xxxxxxxpredictiveAlto
59Filexxxxx.xxxpredictiveMédio
60Filexxxxxxx.xxxpredictiveMédio
61Filexxxxxx.xxxpredictiveMédio
62FilexxxxxxxxxpredictiveMédio
63Filexxxxxxxxx.xxxpredictiveAlto
64Filexxxxxxx.xxxpredictiveMédio
65Filexxxxxxx/xxxxxxxx/xxxx/xxxx-xx.xpredictiveAlto
66Filexxx_xxxxx.xxxx/xxx_xxxxxxxx.xxxxpredictiveAlto
67Filexxx/xxxx/xxx.xpredictiveAlto
68Filexxx.xxxpredictiveBaixo
69Filexxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxxpredictiveAlto
70Filexxxxx_xxxxxxx.xxxpredictiveAlto
71Filexxxxxxx.xxxpredictiveMédio
72Filexxxxxx_xxxxx_xxxxxxx.xxxpredictiveAlto
73Filexxxxxxx.xxpredictiveMédio
74Filexxxxx\xxxx.xxxpredictiveAlto
75Filexxxx.xxpredictiveBaixo
76Filexxxx-xxx/xxxxxxxx.xxxpredictiveAlto
77Filexxxxxx_xxxx.xxxpredictiveAlto
78Filexxxxxx-xxxx.xpredictiveAlto
79Filexxxxxxxxxxxxxxxxxxx?xxxxxx=xxxxxxxxxxxxxxxxxxxpredictiveAlto
80Filexxxxxxxxxxxx.xxpredictiveAlto
81Filexxxxx.xxxpredictiveMédio
82Filexxxxx.xxxpredictiveMédio
83Filexxxxxxxxxx.xxxxpredictiveAlto
84Filexxxxxxx.xxxpredictiveMédio
85Filexxxxxxx.xxxpredictiveMédio
86Filexxxxxxxxxx.xxxpredictiveAlto
87Filexx-xxxxxxxx/xxxxxxxxx.xxxpredictiveAlto
88Filexxxxxxxxxxx.xxxxpredictiveAlto
89Library/xxx/xxx/xxx_xx-xxxxx-xxx/xxxxxxx.xx.xpredictiveAlto
90Library/_xxx_xxx/xxxxx.xxxpredictiveAlto
91Libraryxxxxxxxxx.xxxpredictiveAlto
92Libraryxxx/xxxx/xxxxxx.xpredictiveAlto
93Libraryxxxxxx_xxx.xxxpredictiveAlto
94Libraryxxxxxx.xxxpredictiveMédio
95Libraryxxxxxxxx.xxxpredictiveMédio
96Argument-xpredictiveBaixo
97Argumentxxxxx/xxxxxpredictiveMédio
98ArgumentxxxxxxpredictiveBaixo
99Argumentxxx::xxxxxxx::xxxxxx/xxx::xxxxxxx::xxxxxxxxxxpredictiveAlto
100ArgumentxxxxpredictiveBaixo
101ArgumentxxxxxxxxpredictiveMédio
102ArgumentxxxpredictiveBaixo
103Argumentxxxxxx/xxxxxxxxxx/xxxxpredictiveAlto
104ArgumentxxxxxxxxxxxxpredictiveMédio
105Argumentxxxxxxxx/xxxxxxpredictiveAlto
106ArgumentxxxxxxxxxxxxxxxpredictiveAlto
107Argumentxxxxx/xxx/xxxpredictiveAlto
108ArgumentxxxxxxxxxpredictiveMédio
109Argumentxxxxxx_xxxxxxpredictiveAlto
110ArgumentxxxxxxxpredictiveBaixo
111ArgumentxxxxxxxxxxxxpredictiveMédio
112Argumentxx_xxx_xxxxxpredictiveMédio
113ArgumentxxxxxpredictiveBaixo
114Argumentxxxxxxxxxx_xxpredictiveAlto
115ArgumentxxxxpredictiveBaixo
116ArgumentxxxxxxxxpredictiveMédio
117ArgumentxxxxpredictiveBaixo
118ArgumentxxxpredictiveBaixo
119ArgumentxxxpredictiveBaixo
120ArgumentxxxxpredictiveBaixo
121ArgumentxxpredictiveBaixo
122ArgumentxxxxxpredictiveBaixo
123ArgumentxxxxpredictiveBaixo
124Argumentxxxxxxxx_xxxpredictiveMédio
125ArgumentxxxpredictiveBaixo
126Argumentxxxx/xxxxxxxxxxxpredictiveAlto
127Argumentxxx xxxxxpredictiveMédio
128Argumentxxxxxxxxxxxxxxx/xxxx_xxxxpredictiveAlto
129ArgumentxxxxpredictiveBaixo
130ArgumentxxxxxxxxpredictiveMédio
131ArgumentxxxxxxpredictiveBaixo
132ArgumentxxxxxxxpredictiveBaixo
133ArgumentxxxxxpredictiveBaixo
134Argumentxxxxxxxxxxx_xxpredictiveAlto
135Argumentxxxxxx_xxxxpredictiveMédio
136Argumentxxxxxx$xxxpredictiveMédio
137ArgumentxxxxxxxxxxxxpredictiveMédio
138ArgumentxxxxpredictiveBaixo
139ArgumentxxxxpredictiveBaixo
140ArgumentxxxxxxxxpredictiveMédio
141ArgumentxxxxpredictiveBaixo
142ArgumentxxxxxpredictiveBaixo
143ArgumentxxxxpredictiveBaixo
144ArgumentxxxxxxxxpredictiveMédio
145ArgumentxxxxxxxxpredictiveMédio
146ArgumentxxxxxpredictiveBaixo
147Input Valuex%xxxxx%xxx*x*x%xxx%xxxxx%xxxxx%xxxxxpredictiveAlto
148Network Portxxx xxxx/xxxx/xxxxpredictiveAlto

Referências (4)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!