Upatre Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (34)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en32
de2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us32
cn2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Upatre1
Cobalt Strike1
Scattered Spider1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined8
Domain Name Software4
Content Management System4
Web Server4
Operating System2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined10
Microsoft6
Apache4
Zoho ManageEngine2
PowerDNS2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Zoho ManageEngine ServiceDesk Plus2
Microsoft Windows2
PowerDNS Recursor2
NVIDIA GPU Display Driver2
WordPress2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apache Struts CookieInterceptor access control9.88.8$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.955130.00CVE-2012-0392
2LogicBoard CMS away.php redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000002.27
3CS-Cart install.php code injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.010570.00CVE-2007-0230
4Microsoft Windows Kernel Memory information disclosure4.74.2$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000770.01CVE-2017-0259
5Indexu suggest_category.php cross site scripting3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.000000.81
6Google Chrome Mojo out-of-bounds6.56.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.001270.07CVE-2023-3732
7Microsoft Visual Studio Code Remote Code Execution6.45.6$5k-$25k$0-$5kUnprovenOfficial Fix0.027400.00CVE-2021-43891
8Microsoft Windows User Profile Service Privilege Escalation7.26.9$25k-$100k$5k-$25kHighOfficial Fix0.001020.00CVE-2022-26904
9Ping Identity PingFederate XML File xml external entity reference5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.001580.04CVE-2021-41770
10Cisco ASA Identity Firewall memory corruption8.17.9$25k-$100k$5k-$25kNot DefinedOfficial Fix0.032460.00CVE-2016-6432
11Cisco Jabber XMPP Message Privilege Escalation7.47.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.002270.03CVE-2020-26085
12PowerDNS Recursor DNS Cache numeric error7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.006210.00CVE-2008-1637
13WordPress wp-trackback.php sql injection7.36.9$5k-$25k$0-$5kProof-of-ConceptNot Defined0.046510.04CVE-2007-0233
14ISC BIND Inter-Process Communication input validation5.95.5$5k-$25k$0-$5kUnprovenOfficial Fix0.921740.02CVE-2016-2774
15VGo Robot access control7.67.6$0-$5k$0-$5kNot DefinedNot Defined0.000840.00CVE-2018-17931
16IBM Cognos Business Intelligence Web UI cross site scripting5.25.2$5k-$25k$0-$5kNot DefinedNot Defined0.000700.00CVE-2017-1486
17count.pl path traversal6.56.3$0-$5k$0-$5kNot DefinedUnavailable0.000000.02
18Apache HTTP Server Request apr_brigade_flatten input validation6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.071780.09CVE-2015-3183
19BigTree CMS File Upload unrestricted upload8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001510.03CVE-2017-7695
20Caucho Technology Resin view_source.jsp path traversal5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.002470.02CVE-2002-1987

IOC - Indicator of Compromise (276)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
13.33.152.147a4ec4c6ea1c92e2e6.awsglobalaccelerator.comUpatre12/10/2022verifiedHigh
23.64.163.50ec2-3-64-163-50.eu-central-1.compute.amazonaws.comUpatre12/17/2022verifiedMedium
33.114.58.184ec2-3-114-58-184.ap-northeast-1.compute.amazonaws.comUpatre04/29/2022verifiedMedium
45.39.73.158dns1.rbx-3.cdn.ovh.netUpatre04/29/2022verifiedHigh
55.149.250.99Upatre07/15/2021verifiedHigh
68.248.153.254Upatre08/20/2021verifiedHigh
78.248.155.254Upatre05/06/2022verifiedHigh
88.253.45.239Upatre08/20/2021verifiedHigh
98.253.45.248Upatre08/20/2021verifiedHigh
108.253.132.120Upatre08/20/2021verifiedHigh
1115.197.142.173a4ec4c6ea1c92e2e6.awsglobalaccelerator.comUpatre12/10/2022verifiedHigh
1218.207.122.59ec2-18-207-122-59.compute-1.amazonaws.comUpatre04/12/2022verifiedMedium
1318.233.6.11ec2-18-233-6-11.compute-1.amazonaws.comUpatre04/14/2022verifiedMedium
1423.3.13.88a23-3-13-88.deploy.static.akamaitechnologies.comUpatre05/06/2022verifiedHigh
1523.3.13.152a23-3-13-152.deploy.static.akamaitechnologies.comUpatre02/20/2023verifiedHigh
1623.3.13.154a23-3-13-154.deploy.static.akamaitechnologies.comUpatre05/06/2022verifiedHigh
1723.10.206.162a23-10-206-162.deploy.static.akamaitechnologies.comUpatre06/04/2022verifiedHigh
1823.46.150.40a23-46-150-40.deploy.static.akamaitechnologies.comUpatre06/19/2022verifiedHigh
1923.46.150.48a23-46-150-48.deploy.static.akamaitechnologies.comUpatre06/19/2022verifiedHigh
2023.46.150.72a23-46-150-72.deploy.static.akamaitechnologies.comUpatre06/19/2022verifiedHigh
2123.46.238.193a23-46-238-193.deploy.static.akamaitechnologies.comUpatre05/06/2022verifiedHigh
2223.46.238.194a23-46-238-194.deploy.static.akamaitechnologies.comUpatre08/20/2021verifiedHigh
2323.46.238.232a23-46-238-232.deploy.static.akamaitechnologies.comUpatre08/20/2021verifiedHigh
2423.62.6.161a23-62-6-161.deploy.static.akamaitechnologies.comUpatre06/04/2022verifiedHigh
2523.193.194.138a23-193-194-138.deploy.static.akamaitechnologies.comUpatre06/28/2023verifiedHigh
2623.196.74.222a23-196-74-222.deploy.static.akamaitechnologies.comUpatre06/04/2022verifiedHigh
2723.199.63.11a23-199-63-11.deploy.static.akamaitechnologies.comUpatre02/19/2022verifiedHigh
2823.199.63.83a23-199-63-83.deploy.static.akamaitechnologies.comUpatre02/19/2022verifiedHigh
2923.205.105.146a23-205-105-146.deploy.static.akamaitechnologies.comUpatre10/23/2023verifiedHigh
3023.205.105.153a23-205-105-153.deploy.static.akamaitechnologies.comUpatre10/23/2023verifiedHigh
3123.205.105.157a23-205-105-157.deploy.static.akamaitechnologies.comUpatre10/23/2023verifiedHigh
3223.205.105.169a23-205-105-169.deploy.static.akamaitechnologies.comUpatre10/23/2023verifiedHigh
3323.218.129.107a23-218-129-107.deploy.static.akamaitechnologies.comUpatre02/19/2022verifiedHigh
3423.219.154.136a23-219-154-136.deploy.static.akamaitechnologies.comUpatre10/23/2023verifiedHigh
3523.221.72.10a23-221-72-10.deploy.static.akamaitechnologies.comUpatre06/04/2022verifiedHigh
3623.221.72.27a23-221-72-27.deploy.static.akamaitechnologies.comUpatre06/04/2022verifiedHigh
3723.221.227.165a23-221-227-165.deploy.static.akamaitechnologies.comUpatre02/20/2023verifiedHigh
3823.221.227.169a23-221-227-169.deploy.static.akamaitechnologies.comUpatre02/20/2023verifiedHigh
3923.221.227.172a23-221-227-172.deploy.static.akamaitechnologies.comUpatre02/20/2023verifiedHigh
4023.221.227.174a23-221-227-174.deploy.static.akamaitechnologies.comUpatre06/28/2023verifiedHigh
4123.221.227.176a23-221-227-176.deploy.static.akamaitechnologies.comUpatre06/28/2023verifiedHigh
4223.253.126.58Upatre04/14/2022verifiedHigh
4324.19.25.40c-24-19-25-40.hsd1.wa.comcast.netUpatre11/26/2021verifiedHigh
4424.33.131.116cpe-24-33-131-116.cinci.res.rr.comUpatre05/04/2022verifiedHigh
4524.148.217.188Upatre11/26/2021verifiedHigh
4624.220.92.19324-220-92-193-dynamic.midco.netUpatre11/26/2021verifiedHigh
4724.240.107.12024-240-107-012.res.spectrum.comUpatre07/17/2021verifiedHigh
4831.31.196.102server139.hosting.reg.ruUpatre09/11/2021verifiedHigh
4934.97.69.225225.69.97.34.bc.googleusercontent.comUpatre09/11/2021verifiedMedium
5034.102.136.180180.136.102.34.bc.googleusercontent.comUpatre01/23/2022verifiedMedium
5134.117.59.8181.59.117.34.bc.googleusercontent.comUpatre09/11/2021verifiedMedium
5235.208.217.200200.217.208.35.bc.googleusercontent.comUpatre02/19/2022verifiedMedium
5335.214.107.9494.107.214.35.bc.googleusercontent.comUpatre06/19/2022verifiedMedium
5437.0.8.235Upatre09/11/2021verifiedHigh
5537.0.10.214Upatre09/11/2021verifiedHigh
5637.0.10.236Upatre09/11/2021verifiedHigh
57XX.X.XX.XXxxxxx09/11/2021verifiedHigh
58XX.XX.XXX.XXXxxx.xxx.xx.xx.xxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
59XX.XX.XX.XXXXxxxxx04/29/2022verifiedHigh
60XX.XX.XXX.XXXxxxxx04/02/2022verifiedHigh
61XX.XXX.XXX.XXxxxxx04/29/2022verifiedHigh
62XX.XXX.XXX.XXXXxxxxx04/29/2022verifiedHigh
63XX.XXX.XXX.XXXXxxxxx04/29/2022verifiedHigh
64XX.XX.XXX.XXxxxxxxxxxxx.xxxxxxx-xxxx.xxx.xxxXxxxxx04/29/2022verifiedHigh
65XX.XXX.XX.XXXxxxxxxxxxx.xxxxxxx.xxx.xxxXxxxxx04/29/2022verifiedHigh
66XX.XXX.XXX.XXXxxxxx04/29/2022verifiedHigh
67XX.XXX.XX.XXxx-xxx-xx-xx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxx08/20/2021verifiedHigh
68XX.XXX.XX.XXXxxx-xxxxxxxx.xxx.xxx.xxXxxxxx03/05/2022verifiedHigh
69XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xx-xxxx-x.xxxxxxx.xxxxxxxxx.xxxXxxxxx06/19/2022verifiedMedium
70XX.XXX.XX.XXXXxxxxx04/12/2022verifiedHigh
71XX.XX.XX.XXxxxxxx.xxxxxxxxx.xx.xx.xx.xx.xxxx.xxXxxxxx04/12/2022verifiedHigh
72XX.XXX.XXX.XXxxxxx.xxx.xxxx.xxxxx.xxXxxxxx04/29/2022verifiedHigh
73XX.XXX.XX.XXXxxxxx04/12/2022verifiedHigh
74XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxxxx.xxxxxxxx.xxxxx.xxxXxxxxx07/10/2023verifiedHigh
75XX.XXX.XX.XXXxxxxx02/04/2022verifiedHigh
76XX.XXX.XX.XXxx.xxx.xx.xx.xxx.xxxxxxxxx.xxxXxxxxx06/12/2023verifiedHigh
77XX.XXX.XXX.XXXXxxxxx07/17/2021verifiedHigh
78XX.XXX.XXX.XXXxxxxx07/10/2023verifiedHigh
79XX.XX.XXX.XXXxx-xx-xxx-xxx.xxx.xxx.xxxXxxxxx02/04/2022verifiedHigh
80XX.XXX.XX.XXXxx.xxx.xx.xxx.xxxxxxx.xxxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
81XX.XXX.XX.XXxx.xxx.xx.xx.xxxxxxx.xxxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
82XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxxxxx.xxxx.xxxXxxxxx07/15/2021verifiedHigh
83XX.XXX.XX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxx05/04/2022verifiedHigh
84XX.XXX.XX.XXXxxxxx02/04/2022verifiedHigh
85XX.XXX.XXX.XXXxxxxxxxxxxxx-x.xxxx.xxxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
86XX.XXX.XXX.XXxxxxx02/04/2022verifiedHigh
87XX.XXX.XXX.XXxx-xxxx-xx-xxx-xxx-xx.xxx.xxx.xxxxxxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
88XX.XXX.XXX.XXXXxxxxx06/12/2023verifiedHigh
89XX.XX.XX.XXXx-xx-xx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx04/29/2022verifiedHigh
90XX.XX.XXX.XXXxxx-xxx-xxx.xxxxxxxxxxxxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
91XX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
92XX.XXX.XX.XXxxxxxx.xxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
93XX.X.XX.XXXxxxxx06/12/2023verifiedHigh
94XX.X.XXX.XXXxx-x-xxx-xxx-xxxxxx.xxxxx.xxxXxxxxx07/17/2021verifiedHigh
95XX.XX.XXX.Xxx-xx-xxx-x.xxxxxx.xxxxxxx.xxxXxxxxx04/29/2022verifiedHigh
96XX.XXX.XXX.XXxxxx-xx-xxx-xxx-xx.xxxxxx.xxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
97XX.XXX.XX.XXXXxxxxx04/02/2022verifiedHigh
98XX.XX.XX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
99XX.XX.XXX.XXXxxxxx11/26/2021verifiedHigh
100XX.XX.XX.XXXXxxxxx07/17/2021verifiedHigh
101XX.XX.XXX.XXXXxxxxx01/08/2022verifiedHigh
102XX.XX.XXX.XXXXxxxxx01/08/2022verifiedHigh
103XX.XXX.X.XXXXxxxxx06/12/2023verifiedHigh
104XX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxx07/10/2023verifiedHigh
105XX.XXX.XX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxx07/10/2023verifiedHigh
106XX.XXX.XX.XXxxx-xx-xxx-xx-xx.xxxxx.xxx.xx.xxxXxxxxx11/26/2021verifiedHigh
107XX.XXX.XXX.XXXXxxxxx03/19/2022verifiedHigh
108XX.XXX.XXX.XXXx-xx-xxx-xxx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
109XX.X.XXX.XXxxxxx-xxxxxx-xxxx.xxxx.xxxxx.xxx.xxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
110XX.XXX.XXX.XXXxxxxx09/11/2021verifiedHigh
111XX.XXX.XXX.XXXxxxxx09/11/2021verifiedHigh
112XX.XXX.XXX.XXXXxxxxx07/10/2023verifiedHigh
113XX.XXX.XXX.XXXXxxxxx05/06/2022verifiedHigh
114XX.X.XX.XXXxxxxxxxxxxxxxxxxx.xxxxxxxxxxxxxxxxxxxx.xxxXxxxxx05/14/2022verifiedHigh
115XX.XX.XX.XXXxxx-xx-xx-xx-xxx.xx.xxx.xx.xxxXxxxxx04/12/2022verifiedHigh
116XX.XX.XX.XXXxxx-xx-xx-xx-xxx.xxx.xxx.xx.xxxXxxxxx02/04/2022verifiedHigh
117XX.XXX.XXX.XXXXxxxxx04/02/2022verifiedHigh
118XX.XX.XX.XXXXxxxxx04/02/2022verifiedHigh
119XX.XX.XX.XXXXxxxxx06/28/2023verifiedHigh
120XX.XX.XXX.XXxx.xxx.xx.xx.xxxxxx.xxxxxx.xxxXxxxxx04/02/2022verifiedHigh
121XX.XXX.XXX.XXXxxxxxx.xxxxxxxxxxx.xxxxx.xxXxxxxx04/12/2022verifiedHigh
122XX.XX.XXX.XXxxxxxxxx.xxxxxxxxx.xxxXxxxxx04/29/2022verifiedHigh
123XX.XX.XXX.Xxx-xx-xxx-x.xxx.xx.xxXxxxxx04/29/2022verifiedHigh
124XX.XX.XXX.XXXxx-xx-xxx-xxx.xxxx.xxxxxxxxx.xxXxxxxx04/29/2022verifiedHigh
125XX.XX.XXX.XXXxx-xx-xxx-xxx.xxxx.xxxxxxxxx.xxXxxxxx04/02/2022verifiedHigh
126XX.XXX.XXX.XXxxx.xxxxx.xxXxxxxx04/29/2022verifiedHigh
127XX.XXX.XXX.XXxx-xxx-xxx-xx.xx-xxxx.xxxxxxx.xxxxXxxxxx04/08/2022verifiedHigh
128XX.XX.XXX.XXxxx.xxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
129XX.XXX.XXX.XXxx.xx-xxx-xxx.xxxxxxxx.xxxx.xxxXxxxxx04/12/2022verifiedHigh
130XX.XXX.XXX.XXxxxxxxxxxx-xx-xxx-xxx-xx.xxxxxxxx.xxXxxxxx02/04/2022verifiedHigh
131XX.XX.XXX.XXXxxxxxxx.xxxxxxxxx.xxxXxxxxx06/03/2023verifiedHigh
132XX.XXX.XXX.XXXxxxxxx-xxxxxxxxxx.xxxx.xxXxxxxx04/02/2022verifiedHigh
133XX.XXX.XXX.Xxxxxxx-xxx-xxx-x.xxxxxxx-xxx.xxxxxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
134XX.XXX.XX.XXxxxxxx-xxx-xx-xx.xxxxxxx-xxx.xxxxxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
135XX.XXX.XXX.XXxxxxxx-xxx-xxx-xx.xxxxxxx-xxx.xxxxxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
136XX.XXX.XXX.XXXXxxxxx04/02/2022verifiedHigh
137XX.XXX.XXX.XXXxxxxx.xxx.xxxx.xxxxx.xxXxxxxx04/02/2022verifiedHigh
138XX.XX.XX.XXxxxxxx.xx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx09/11/2021verifiedHigh
139XX.XXX.XX.XXXx-x-x-xxx.xxxxxxxxx.xxxxxxxxxxxXxxxxx04/29/2022verifiedHigh
140XX.XXX.XX.XXXxxxxxxxxx.xxXxxxxx04/29/2022verifiedHigh
141XX.XXX.X.XXXxxxxx07/17/2021verifiedHigh
142XX.XX.XXX.XXXxxxxxxxx.xx-xx-xx-xxx.xxXxxxxx06/03/2023verifiedHigh
143XX.XX.XX.XXXxxx-xx-xx-xx-xxx.xxxx.xxxxxx.xxXxxxxx04/12/2022verifiedHigh
144XX.XXX.XXX.XXxxxxx-xx-xxx-xxx-xx.xxxxxxx.xxx.xxXxxxxx04/12/2022verifiedHigh
145XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxxx.xxxxx.xxXxxxxx04/29/2022verifiedHigh
146XX.XX.XX.XXXxx.xx.xx.xxx.xxxxxxx.xxxxxxxxxxxx.xxxXxxxxx05/04/2022verifiedHigh
147XX.XX.XXX.XXxx.xx.xxx.xx.xxxxxxx.xxxxxxxxxxxx.xxxXxxxxx05/04/2022verifiedHigh
148XX.XX.XXX.XXXxx.xx.xxx.xxx.xxxxxxx.xxxxxxxxxxxx.xxxXxxxxx04/02/2022verifiedHigh
149XX.XXX.XX.XXxxxx-xxx-xx-xx.xx.xx.xxx.xxxXxxxxx02/04/2022verifiedHigh
150XX.XXX.XX.XXXx-xx-xxx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx04/02/2022verifiedHigh
151XX.XXX.XX.XXXx-xx-xxx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
152XX.XXX.XX.XXXx-xx-xxx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx04/02/2022verifiedHigh
153XX.XXX.XXX.XXXxxxxx11/26/2021verifiedHigh
154XXX.XX.XXX.XXxxxx.xxxxxxxxxxxx.xxxXxxxxx02/20/2023verifiedHigh
155XXX.XX.XXX.XXXxxxxx04/12/2022verifiedHigh
156XXX.XX.X.XXXXxxxxx07/17/2021verifiedHigh
157XXX.XX.X.XXXXxxxxx07/17/2021verifiedHigh
158XXX.XX.XX.XXXXxxxxx04/28/2022verifiedHigh
159XXX.XX.XX.XXXXxxxxx04/28/2022verifiedHigh
160XXX.XX.XXX.XXXxxxxx11/26/2021verifiedHigh
161XXX.XX.XXX.XXXxxxxx11/26/2021verifiedHigh
162XXX.XX.XX.XXXXxxxxx04/29/2022verifiedHigh
163XXX.XX.XX.XXXXxxxxx04/29/2022verifiedHigh
164XXX.XX.X.XXXXxxxxx09/11/2021verifiedHigh
165XXX.XX.XX.XXXXxxxxx09/11/2021verifiedHigh
166XXX.XX.XX.XXXxxxxx09/11/2021verifiedHigh
167XXX.XX.XX.XXXXxxxxx09/11/2021verifiedHigh
168XXX.XXX.XX.Xxxxx-xxx-xx-x.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxx06/03/2023verifiedHigh
169XXX.XXX.XXX.XXxxx-xxx-xxx-xxx-xx.xxxxx.xxx.xx.xxxXxxxxx05/04/2022verifiedHigh
170XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxx.xxxXxxxxx07/17/2021verifiedMedium
171XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxx.xxxXxxxxx07/17/2021verifiedMedium
172XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxx.xxxXxxxxx07/17/2021verifiedMedium
173XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxx.xxxXxxxxx07/17/2021verifiedMedium
174XXX.XXX.XXX.XXXXxxxxx04/14/2022verifiedHigh
175XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxxx.xxxxxx.xxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
176XXX.XX.XXX.XXxx.xxx.xx.xxx.xxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
177XXX.XXX.XXX.XXXxxxxxxxxxxxx.xxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
178XXX.XXX.X.XXXXxxxxx02/04/2022verifiedHigh
179XXX.XXX.XXX.XXXxxxxx02/04/2022verifiedHigh
180XXX.X.XX.XXXxxxxx-xx.xxx.xxxXxxxxx04/29/2022verifiedHigh
181XXX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx04/29/2022verifiedHigh
182XXX.XX.XX.XXXXxxxxx04/12/2022verifiedHigh
183XXX.XXX.XXX.XXXXxxxxx08/20/2021verifiedHigh
184XXX.XX.XXX.XXXxxxxx05/14/2022verifiedHigh
185XXX.XXX.XX.XXXXxxxxx06/19/2022verifiedHigh
186XXX.X.XXX.XXXxxx-x-xxx-xxx.xxxx.xxxxxxx.xxXxxxxx04/29/2022verifiedHigh
187XXX.XXX.XX.XXXXxxxxx02/04/2022verifiedHigh
188XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx-xxx.xxx.xx.xxxXxxxxx06/12/2023verifiedHigh
189XXX.XXX.XXX.XXXXxxxxx09/11/2021verifiedHigh
190XXX.XXX.XXX.XXXXxxxxx09/11/2021verifiedHigh
191XXX.XXX.XXX.XXXXxxxxx09/11/2021verifiedHigh
192XXX.XXX.XX.XXXXxxxxx03/05/2022verifiedHigh
193XXX.XX.XXX.XXXxx-xxx-xx-xxx-xxx.xx.xxxxxxxxxxxx.xxxXxxxxx04/29/2022verifiedHigh
194XXX.XX.XXX.XXXXxxxxx09/11/2021verifiedHigh
195XXX.XX.XXX.XXXXxxxxx09/11/2021verifiedHigh
196XXX.XX.XXX.XXXXxxxxx09/11/2021verifiedHigh
197XXX.XX.XXX.XXXXxxxxx09/11/2021verifiedHigh
198XXX.XXX.X.XXXxxxxxxxx-xx-xx.xxxxx.xxxXxxxxx04/12/2022verifiedHigh
199XXX.XXX.XX.XXxxxxxxxx-xx-xx.xxxxx.xxxXxxxxx04/14/2022verifiedHigh
200XXX.XXX.XX.XXxxxxxxxx-xx-xx.xxxxx.xxxXxxxxx04/14/2022verifiedHigh
201XXX.XXX.XXX.XXxxxxxxxx-xx-xx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
202XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
203XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
204XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
205XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
206XXX.XXX.XXX.XXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
207XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
208XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xxx.xxx.xxxxxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
209XXX.XXX.XXX.XXxxx-xxx-xxx-xx-xxxx.xxx.xxx.xxxxxxxxxx.xxxXxxxxx04/02/2022verifiedHigh
210XXX.XXX.XXX.XXXxxxxxxx.xxx.xxxx.xxxXxxxxx07/22/2021verifiedHigh
211XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxxxxxxxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
212XXX.XXX.XX.XXxxxxxx-xxxxx-xxxx.xxXxxxxx07/17/2021verifiedHigh
213XXX.XXX.XX.XXXxxxxxx-xxxx-xxxx.xxxXxxxxx07/17/2021verifiedHigh
214XXX.XXX.XX.XXXxxxxxx-xxxx-xxxx.xxxXxxxxx07/17/2021verifiedHigh
215XXX.XXX.XX.XXxxxxxx-xxxxx-xxxx.xxXxxxxx11/26/2021verifiedHigh
216XXX.XXX.XX.Xxxxxxx-xxxxx-xxxx.xXxxxxx07/17/2021verifiedHigh
217XXX.XXX.XX.Xxxxxxx-xxxxx-xxxx.xXxxxxx07/17/2021verifiedHigh
218XXX.XX.XXX.XXxxx-xxx-xx-xxx-xx.xxxxxxxx.xxx.xx.xxxXxxxxx04/29/2022verifiedHigh
219XXX.XX.XXX.XXXxxxx-xxx-xx-xxx-xxx.xxxx.xx.xxx.xxXxxxxx11/26/2021verifiedHigh
220XXX.XXX.XXX.XXXxxxxx04/29/2022verifiedHigh
221XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxxxxx.xxxxxxx.xxXxxxxx04/12/2022verifiedHigh
222XXX.XXX.XXX.XXXxxxxx07/17/2021verifiedHigh
223XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xxxxxx.xxx.xxxxxxx.xxXxxxxx07/10/2023verifiedHigh
224XXX.XXX.XX.XXXxxxxxxxx.xxXxxxxx04/29/2022verifiedHigh
225XXX.XXX.XXX.XXXxxxxxx-xxx-xxx-xxx-xxx.xxx.xxx.xxXxxxxx05/04/2022verifiedHigh
226XXX.XXX.XXX.XXXxx-xxx-xxx-xxx-xxx.xx.xxxxxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
227XXX.XX.XX.XXXxxxx-xx.xxxxx.xxxXxxxxx09/11/2021verifiedHigh
228XXX.XXX.XX.XXXxxxxxx.xxxxxxxxxxxx.xx.xxXxxxxx10/23/2023verifiedHigh
229XXX.XXX.XXX.XXXxxxxx09/11/2021verifiedHigh
230XXX.XXX.XX.XXxxxxx.xxxxxxxxxxxxxxx.xxXxxxxx04/29/2022verifiedHigh
231XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxx.xxXxxxxx11/26/2021verifiedHigh
232XXX.XXX.XX.XXXXxxxxx04/29/2022verifiedHigh
233XXX.XXX.XXX.XXXxxxx.xxxxxxxx.xxxXxxxxx05/06/2022verifiedHigh
234XXX.XXX.XXX.XXXxxxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx11/26/2021verifiedHigh
235XXX.XXX.XXX.Xxxxx-xxx-x.xxxxxxxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
236XXX.XXX.XXX.XXXxxxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
237XXX.XXX.XXX.Xxxxx-xxx-x.xxxxxxxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
238XXX.XXX.XXX.XXXxxxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
239XXX.XXX.XXX.XXxxxx-xxx-xx.xxxxxxxxxxxx.xxxXxxxxx07/17/2021verifiedHigh
240XXX.XXX.XXX.XXXxxxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx02/04/2022verifiedHigh
241XXX.XX.XXX.XXXxxx-xx-xxx-xxx.xxx.xxx.xxxxx.xxxXxxxxx04/12/2022verifiedHigh
242XXX.XX.XXX.XXxxxx.xxxxxxxxxxx.xxxXxxxxx08/20/2021verifiedHigh
243XXX.XXX.XXX.XXxxxxxxxxxxxxxxx.xxxxxx.xxxXxxxxx05/06/2022verifiedHigh
244XXX.XXX.X.XXXXxxxxx02/04/2022verifiedHigh
245XXX.XXX.XXX.XXxxxxx02/04/2022verifiedHigh
246XXX.XXX.XXX.XXXxxxx.xxxx.xxxXxxxxx09/11/2021verifiedHigh
247XXX.XXX.XXX.XXXxxxxx04/29/2022verifiedHigh
248XXX.XX.XX.XXXXxxxxx08/20/2021verifiedHigh
249XXX.XX.XXX.XXXXxxxxx04/12/2022verifiedHigh
250XXX.XXX.XX.XXXxxxx-xxx-xxx-xx-xxx.xxxxxxxx.xx.xxxxx.xxxXxxxxx08/29/2021verifiedHigh
251XXX.XXX.XXX.XXXxxx.xxxxx.xx.xxXxxxxx04/29/2022verifiedHigh
252XXX.XXX.XX.XXxxxx.xxxx-xxxx.xxxXxxxxx04/29/2022verifiedHigh
253XXX.XXX.XX.XXxxx.xxxxxxxxxx.xxXxxxxx04/29/2022verifiedHigh
254XXX.XXX.XXX.XXXXxxxxx04/29/2022verifiedHigh
255XXX.XX.XX.XXXxxxxx12/10/2022verifiedHigh
256XXX.XX.XXX.XXxxxx.xxxxxxxxxxxxxxxxx.xxxXxxxxx01/08/2022verifiedHigh
257XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxx07/15/2021verifiedHigh
258XXX.XX.XXX.XXXxxxxxxx.xxxxx.xxxXxxxxx02/19/2022verifiedHigh
259XXX.XXX.XXX.XXxxxx.xxxxx.xxxXxxxxx08/20/2021verifiedHigh
260XXX.XXX.XXX.XXxxxx.xxxxx.xxxXxxxxx08/20/2021verifiedHigh
261XXX.XXX.XXX.Xxxxxx.xxx.xxx.x.xxxxxxxxx.xxxXxxxxx04/12/2022verifiedHigh
262XXX.XXX.XXX.XXXXxxxxx04/23/2022verifiedHigh
263XXX.XX.XXX.Xxx-xxx.xxxXxxxxx09/11/2021verifiedHigh
264XXX.XXX.XX.XXXxxx.xxxxxxxxxxxxxxx.xxxXxxxxx04/29/2022verifiedHigh
265XXX.XX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxx05/06/2022verifiedHigh
266XXX.XX.XX.XXXxxx-xx-xx-xxx.xxx.xxxxxxxxxxx.xxxXxxxxx04/16/2022verifiedHigh
267XXX.X.XXX.XXxx.xxxxxx.xxxXxxxxx04/29/2022verifiedHigh
268XXX.XX.XX.XXxxxxxx.xxx-xx.xxxXxxxxx04/29/2022verifiedHigh
269XXX.XXX.XX.Xxxxxxxxxxx.xxx.xxxXxxxxx04/29/2022verifiedHigh
270XXX.XXX.XX.XXxxxxxxxxxx.xxx.xxxXxxxxx04/29/2022verifiedHigh
271XXX.XX.XX.XXXxxxxxxxxxxxxx-xxx.xxx-xx-xx.xxxxxx.xxxXxxxxx11/26/2021verifiedHigh
272XXX.XXX.XX.XXxxxxxxx-xxx.xxxxxx.xxxXxxxxx02/04/2022verifiedHigh
273XXX.XXX.XXX.XXxxxx-xx.xxxxxxxxxxxx.xxxXxxxxx05/06/2022verifiedHigh
274XXX.XXX.XXX.XXxxxxxxxxxxxxx-xx.xxx-xxx-xxx.xxxxxx.xxxXxxxxx05/04/2022verifiedHigh
275XXX.XXX.XXX.XXXxx-xx-xxx.xxxxxxx.xxXxxxxx02/04/2022verifiedHigh
276XXX.XX.XX.XXXxxxxx04/12/2022verifiedHigh

TTP - Tactics, Techniques, Procedures (8)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1059CAPEC-242CWE-94Argument InjectionpredictiveHigh
3TXXXX.XXXCAPEC-209CWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
4TXXXXCAPEC-19CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
5TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
6TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
7TXXXXCAPEC-116CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
8TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (17)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/forum/away.phppredictiveHigh
2Filedrivers/media/video/videobuf-vmalloc.cpredictiveHigh
3FileFileDownload.jsppredictiveHigh
4Filexxxxxxxxxxx/xxxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
5Filexxxxxx-xxx.xpredictiveMedium
6Filexxxxxxx.xxxpredictiveMedium
7Filexxxxxxxxxxx-xxxx.xxpredictiveHigh
8Filexxxxxxx_xxxxxxxx.xxxpredictiveHigh
9Filexxxx_xxxxxx.xxxpredictiveHigh
10Filexx-xxxxxxxxx.xxxpredictiveHigh
11Libraryxxxxxxxx.xxxpredictiveMedium
12Argumentxxxxx_xxxpredictiveMedium
13ArgumentxxxxxxxxpredictiveMedium
14Argumentxxxxxxx_xxxpredictiveMedium
15ArgumentxxxxxxxpredictiveLow
16Argumentxx_xxpredictiveLow
17Input Valuexxx.xxx[xxxxx]predictiveHigh

References (42)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!