UAC-0010 Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (12)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en	12

Country

cn	8
us	2
gb	2

Actors

UAC-0010	4
IcedID	2
Cobalt Strike	1
Socks5 Systemz	1
Meterpreter	1

Activities

Interest

Timeline

Type

Not Defined	4
Web Server	2
WordPress Plugin	2
Programming Language Software	2
Operating System	2

Vendor

Not Defined	4
Apache	2
Redis	2
Fortra	2
Apple	2

Product

Apache HTTP Server	2
Better Search Replace Plugin	2
Redis Hyperloglog Data Structure	2
PHP	2
Fortra GoAnywhere MFT	2

Vulnerabilities

#	Vulnerability	Base	Temp	0day	Today	Exp	Rem	EPSS	CTI	CVE
1	Better Search Replace Plugin code injection	8.0	7.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.01483	0.04	CVE-2023-6933
2	RRJ Nueva Ecija Engineer Online Portal NIA Office students.php cross site scripting	3.2	3.1	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00051	0.07	CVE-2024-0183
3	GetSimpleCMS theme-edit.php code injection	6.4	6.3	$0-$5k	$0-$5k	Proof-of-Concept	Unavailable	0.00176	0.08	CVE-2023-6188
4	Fortra GoAnywhere MFT License Response Servlet deserialization	6.7	6.6	$0-$5k	$0-$5k	High	Official Fix	0.96975	0.00	CVE-2023-0669
5	Redis Hyperloglog Data Structure Command memory corruption	6.4	6.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.22979	0.03	CVE-2019-10193
6	Oracle Database Server sql injection	9.8	9.3	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.26169	0.00	CVE-2006-3698
7	Synacor Zimbra Collaboration sfdc_preauth.jsp Privilege Escalation	7.6	7.6	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00134	0.03	CVE-2023-29382
8	Apple Mac OS X apache_mod_php input validation	9.8	9.3	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.49339	0.00	CVE-2016-4071
9	PHP getTraceAsStrin type confusion	8.5	8.1	$5k-$25k	$0-$5k	Unproven	Official Fix	0.09669	0.04	CVE-2015-4602
10	PHP spl_heap.c compare use after free	9.8	9.6	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.03930	0.02	CVE-2015-4116
11	Apache HTTP Server mod_ssl ap_hook_process_connection null pointer dereference	7.5	7.4	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.01166	0.05	CVE-2017-3169
12	Huawei Taurus-AN00B Module buffer overflow	6.0	5.7	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00058	0.00	CVE-2020-9238

IOC - Indicator of Compromise (171)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP address	Hostname	Actor	Identified	Type	Confidence
1	5.44.42.130	uaeser-1672132036.4server.io	UAC-0010	03/20/2024	verified	High
2	5.44.42.137	uaeser-1672132036.4server.io	UAC-0010	03/20/2024	verified	High
3	5.44.42.144		UAC-0010	03/20/2024	verified	High
4	5.44.42.145		UAC-0010	03/20/2024	verified	High
5	5.44.42.189	4vps-ae-01.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
6	5.44.42.198	uaetest.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
7	5.44.42.203		UAC-0010	03/20/2024	verified	High
8	5.44.42.204	hostera-ae.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
9	24.199.102.96		UAC-0010	03/20/2024	verified	High
10	24.199.106.158		UAC-0010	03/20/2024	verified	High
11	31.129.22.88	kfgb-kz-mail.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
12	31.129.22.89	pt01.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
13	31.129.22.94	portugaliya.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
14	31.129.22.95	portugaliya.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
15	31.129.22.98	pr-2.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
16	31.129.22.99	pt-11-sep-1.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
17	31.129.22.100	v408sktl0uv.servera.info	UAC-0010	03/20/2024	verified	High
18	31.129.22.101		UAC-0010	03/20/2024	verified	High
19	31.129.22.102	ptser-1671619506.4server.io	UAC-0010	03/20/2024	verified	High
20	31.129.22.105		UAC-0010	03/20/2024	verified	High
21	45.61.138.226		UAC-0010	10/10/2022	verified	High
22	45.61.139.22		UAC-0010	10/10/2022	verified	High
23	45.77.196.211	45.77.196.211.vultrusercontent.com	UAC-0010	10/10/2022	verified	High
24	45.77.237.252	45.77.237.252.vultrusercontent.com	UAC-0010	10/10/2022	verified	High
25	45.82.13.55	new-98.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
26	45.82.13.60	4s-4-tg-1706753462.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
27	45.82.13.86	4s-4-tg-1699346951.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
28	45.95.232.102	900dsw2.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
29	45.95.232.147	ch-27_nov__2.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
30	45.95.232.151	cisco-18-alma.msk.host	UAC-0010	03/20/2024	verified	High
31	45.95.233.145	fr-w8mchcwusxpkaym2.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
32	45.95.233.161	alihanfranc.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
33	45.95.233.163	fr-30-oct_2.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
34	46.29.234.95	lvser.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
35	46.29.234.99	litvatazestar.ip-ptr.tech	UAC-0010	03/20/2024	verified	High
36	XX.XX.XXX.XXX	xxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
37	XX.XX.XX.XXX	xx.xx.xx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
38	XX.XX.XXX.XX	xx.xx.xxx.xx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	10/10/2022	verified	High
39	XX.XXX.XXX.XXX	xx-xxx-xxx-xxx.xx.xxxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
40	XX.XXX.XXX.XXX	xxxxxxx.xxxxxxxxxxxxx.xxx	Xxx-xxxx	03/20/2024	verified	High
41	XX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
42	XX.XX.XXX.XXX	xx.xx.xxx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	10/10/2022	verified	High
43	XX.XXX.XXX.XX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
44	XX.XXX.XXX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
45	XX.XXX.XXX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
46	XX.XXX.XXX.XX	xxxx-xx-xxx-xxx-xx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
47	XX.XXX.XXX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
48	XX.XXX.XXX.XXX	xxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
49	XX.XXX.XXX.XXX	xxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
50	XX.XXX.XXX.XXX	xxx_xx_x_x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
51	XX.XX.XXX.XXX	xxxxx-xxxxxxxxxx.xxxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
52	XX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
53	XX.XXX.XXX.XX	xxxxxxx-xxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
54	XX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
55	XX.XX.XXX.XX	xxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
56	XX.XX.XXX.XX	xx-xxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
57	XX.XX.XXX.XXX	xxx-x-x_x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
58	XX.XXX.XX.XX	xx_xxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
59	XX.XXX.XX.XXX	xxxxx.xxx	Xxx-xxxx	03/20/2024	verified	High
60	XX.XXX.XX.XXX	xxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
61	XX.XXX.XX.XXX	xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
62	XX.XXX.XX.XXX	xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
63	XX.XXX.XX.XXX	xxxx_x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
64	XX.XXX.XX.XXX	xxxx_xx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
65	XX.XXX.XX.XXX	xxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
66	XX.XXX.XX.XXX	xx-x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
67	XX.XXX.XX.XXX	xx-x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
68	XX.XXX.XXX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
69	XX.XX.XXX.XXX	xxxxxxxx.xxxxxxx.xx	Xxx-xxxx	07/21/2022	verified	High
70	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
71	XXX.XXX.XX.XX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
72	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
73	XXX.XXX.XX.XXX	xxxxxxx.xxxx-xx-xxxxx	Xxx-xxxx	03/20/2024	verified	High
74	XXX.XXX.XXX.XXX		Xxx-xxxx	10/10/2022	verified	High
75	XXX.XX.XXX.XXX		Xxx-xxxx	10/10/2022	verified	High
76	XXX.XX.XXX.XX	xxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
77	XXX.XX.XXX.XXX	xxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
78	XXX.XX.XXX.XXX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
79	XXX.XX.XXX.XXX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
80	XXX.XX.XXX.XXX	xxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
81	XXX.XXX.XX.XX		Xxx-xxxx	03/20/2024	verified	High
82	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
83	XXX.XXX.XX.XXX	xxx.xxx.xx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	10/10/2022	verified	High
84	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
85	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
86	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
87	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
88	XXX.XXX.XX.XX	xxx.xxx.xx.xx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
89	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
90	XXX.XXX.XX.XXX		Xxx-xxxx	10/10/2022	verified	High
91	XXX.XXX.XX.XX		Xxx-xxxx	10/10/2022	verified	High
92	XXX.XXX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
93	XXX.XXX.XX.XX		Xxx-xxxx	03/20/2024	verified	High
94	XXX.XX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
95	XXX.XX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
96	XXX.XXX.XXX.XXX	xxxxxxx.xxxxxxxxxxxxx.xxx	Xxx-xxxx	03/20/2024	verified	High
97	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
98	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
99	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
100	XXX.XXX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
101	XXX.XXX.XX.XXX		Xxx-xxxx	10/10/2022	verified	High
102	XXX.XXX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
103	XXX.XX.XXX.XX		Xxx-xxxx	10/10/2022	verified	High
104	XXX.XXX.XX.XXX	xxxxxxx.xxxxxxxxxxxxx.xxx	Xxx-xxxx	03/20/2024	verified	High
105	XXX.XX.XXX.XXX	xxxxxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
106	XXX.XX.XXX.XXX	xxxx.xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
107	XXX.XX.XXX.XXX	xxxx.xxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
108	XXX.XX.XXX.XXX	xxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
109	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
110	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
111	XXX.XX.XXX.XXX	xxxxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
112	XXX.XX.XXX.XXX	xxxxxxxx.xx	Xxx-xxxx	03/20/2024	verified	High
113	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
114	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
115	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
116	XXX.XX.XXX.XX	xx-x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
117	XXX.XX.XXX.XX	xxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
118	XXX.XX.XXX.XX	xxx_xxx_xx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
119	XXX.XX.XXX.XX	xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
120	XXX.XX.XXX.XX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
121	XXX.XX.XXX.XX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
122	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
123	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
124	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
125	XXX.XXX.XXX.XXX	xxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
126	XXX.XXX.XXX.XXX	xxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
127	XXX.XXX.XXX.XXX	xx-xx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
128	XXX.XXX.XXX.XXX	xxxxx_xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
129	XXX.XXX.XXX.XXX	xxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
130	XXX.XXX.XXX.XXX	xxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
131	XXX.XXX.XXX.XXX	xxxxxxxxxxx.xxxxxxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
132	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
133	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
134	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
135	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
136	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
137	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
138	XXX.XX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
139	XXX.XXX.XXX.XXX		Xxx-xxxx	03/20/2024	verified	High
140	XXX.XXX.XXX.XXX		Xxx-xxxx	10/10/2022	verified	High
141	XXX.XX.XXX.XX	xxx-xxxxx-xxxxxx.xxxxxxx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
142	XXX.XX.XXX.XXX	xxx-xxxxx-xxxxxx.xxxxxxx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
143	XXX.XX.XXX.XXX	xxx-xxxxx-xxxxxx.xxxxxxx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
144	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
145	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
146	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
147	XXX.XXX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
148	XXX.XX.XXX.XX	xxxxxx.xxxxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
149	XXX.XX.XXX.XXX	xxx-xx-xxx-xxx.xxxxxxxx.xxxxxxxxxxxx.xx	Xxx-xxxx	07/21/2022	verified	High
150	XXX.XX.XX.XX	xxxx-xxx-xx-xxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
151	XXX.XX.XX.XXX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
152	XXX.XX.XX.XXX	xxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
153	XXX.XX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
154	XXX.XX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
155	XXX.XX.XX.XXX		Xxx-xxxx	03/20/2024	verified	High
156	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
157	XXX.XXX.XXX.XX	xxx-xxx-xxx-xx.xxxxxxxxx.xxx	Xxx-xxxx	10/10/2022	verified	High
158	XXX.XXX.XXX.XXX	xxxxxxxxxx.xxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
159	XXX.XXX.XXX.XX	xxx-xxx-xxx-xx.xxxxxxxxx.xxx	Xxx-xxxx	03/20/2024	verified	High
160	XXX.XXX.XX.XX	xxxx-xxxx_xxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
161	XXX.XXX.XX.XX	xxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
162	XXX.XXX.XX.XX	xx_xxxxx_x.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
163	XXX.XXX.XX.XX	xxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
164	XXX.XX.XXX.XX	xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
165	XXX.XX.XXX.XX		Xxx-xxxx	03/20/2024	verified	High
166	XXX.XX.XXX.XX	xxxxxxxx-xxxx-xx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
167	XXX.XX.XXX.XX	xxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
168	XXX.XX.XXX.XX	xxxxxxxxxxxx.xx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
169	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxx-xxxx	07/21/2022	verified	High
170	XXX.XX.XXX.XX	xxx-xxxxx-xxxxxx.xxxxxxx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High
171	XXX.XX.XXX.XXX	xxxxxx-xxxx.xxxxxxx-xxx.xxxx	Xxx-xxxx	03/20/2024	verified	High

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Class	Vulnerabilities	Access Vector	Type	Confidence
1	T1059	CAPEC-242	CWE-94	Argument Injection	predictive	High
2	TXXXX.XXX	CAPEC-18	CWE-XX	Xxxxx Xxxx Xxxxxxxxx	predictive	High
3	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	High

IOA - Indicator of Attack (5)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Class	Indicator	Type	Confidence
1	File	/admin/students.php	predictive	High
2	File	/admin/theme-edit.php	predictive	High
3	File	xxx/xxx/xxx_xxxx.x	predictive	High
4	File	xxxx_xxxxxxx.xxx	predictive	High
5	Argument	xxx.xxxx$xxxxxx	predictive	High

References (7)

The following list contains external sources which discuss the actor and the associated activities:

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!