Amadey Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en	116
sv	98
zh	98
ru	88
fr	86

Country

sv	98
fr	88
pl	84
ru	82
ar	80

Actors

Mirai	2
Zusy	1
RedLine Stealer	1
Amadey	1
RecordBreaker	1

Activities

Interest

Timeline

Type

Not Defined	66
WordPress Plugin	34
E-Commerce Management Software	8
Operating System	6
Wireless LAN Software	4

Vendor

Not Defined	44
Tenda	16
Campcodes	6
Dell	6
Kashipara	4

Product

MailCleaner	8
Campcodes Complete Web-Based School Management Sys ...	6
Tenda W15E	6
Kashipara Online Furniture Shopping Ecommerce Webs ...	4
Dell Repository Manager	4

Vulnerabilities

#	Vulnerability	Base	Temp	0day	Today	Exp	Rem	EPSS	CTI	CVE
1	Apryse WebViewer PDF Document cross site scripting	3.5	3.2	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00045	0.08	CVE-2024-4327
2	MailCleaner Email os command injection	9.8	9.3	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00046	0.04	CVE-2024-3191
3	osCommerce all-products cross site scripting	4.3	3.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00065	0.09	CVE-2024-4348
4	MailCleaner Admin Interface cross site scripting	6.5	6.3	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00045	0.04	CVE-2024-3192
5	SourceCodester Pisay Online E-Learning System controller.php unrestricted upload	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00045	0.09	CVE-2024-4349
6	MailCleaner Admin Endpoints os command injection	8.8	8.3	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00046	0.04	CVE-2024-3193
7	BloomPixel Max Addons Pro for Bricks Plugin authorization	6.5	6.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.08	CVE-2024-32951
8	Extend Themes Teluro Plugin cross-site request forgery	4.3	4.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2024-33688
9	Apache HTTP Server mod_lua Multipart Parser r:parsebody out-of-bounds write	8.5	8.4	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.08808	0.00	CVE-2021-44790
10	Elementor ImageBox Plugin cross site scripting	3.5	3.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00045	0.08	CVE-2024-3074
11	Dell Wyse Proprietary OS Telemetry Dashboard information disclosure	4.7	4.7	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.04	CVE-2024-28963
12	Apache Parquet Parquet-MR denial of service	3.5	3.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00089	0.00	CVE-2021-41561
13	Foliovision FV Flowplayer Video Player Plugin server-side request forgery	5.6	5.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2024-32955
14	Dell Repository Manager API Module improper authorization	8.3	8.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00043	0.00	CVE-2024-28976
15	Jegstudio Financio Plugin cross-site request forgery	4.3	4.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2024-33690
16	ThemeNcode Fan Page Widget by Plugin cross site scripting	4.1	4.1	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2024-33695
17	Pavex Embed Google Photos Album Plugin server-side request forgery	5.6	5.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.08	CVE-2024-32775
18	AnnounceKit Plugin cross site scripting	2.4	2.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00045	0.04	CVE-2024-3023
19	Repute Infosystems ARMember Plugin authorization	7.8	7.7	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.07	CVE-2024-32948
20	Dell Repository Manager Logger Module improper authorization	3.3	3.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2024-28977

IOC - Indicator of Compromise (261)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP address	Hostname	Actor	Identified	Type	Confidence
1	2.56.56.210	nunel.top	Amadey	04/26/2023	verified	High
2	2.56.59.26		Amadey	04/26/2023	verified	High
3	2.59.42.63	vds-cw08597.timeweb.ru	Amadey	01/10/2020	verified	High
4	5.42.64.4		Amadey	01/30/2024	verified	High
5	5.42.64.33		Amadey	08/30/2023	verified	High
6	5.42.64.44		Amadey	02/10/2024	verified	High
7	5.42.64.45		Amadey	09/19/2023	verified	High
8	5.42.65.1		Amadey	05/26/2023	verified	High
9	5.42.65.28		Amadey	10/03/2023	verified	High
10	5.42.65.44		Amadey	01/17/2024	verified	High
11	5.42.65.80		Amadey	06/07/2023	verified	High
12	5.42.65.114		Amadey	12/13/2023	verified	High
13	5.42.65.125		Amadey	12/12/2023	verified	High
14	5.42.66.0		Amadey	01/23/2024	verified	High
15	5.42.66.9		Amadey	11/20/2023	verified	High
16	5.42.66.32		Amadey	12/13/2023	verified	High
17	5.42.67.14		Amadey	02/08/2024	verified	High
18	5.42.92.67		Amadey	07/24/2023	verified	High
19	5.75.139.35	static.35.139.75.5.clients.your-server.de	Amadey	02/01/2023	verified	High
20	5.182.4.47		Amadey	04/26/2023	verified	High
21	5.188.118.7		Amadey	04/26/2023	verified	High
22	23.106.215.95		Amadey	04/26/2023	verified	High
23	31.41.244.15		Amadey	04/26/2023	verified	High
24	31.41.244.17		Amadey	04/26/2023	verified	High
25	31.41.244.60		Amadey	04/26/2023	verified	High
26	31.41.244.146		Amadey	04/25/2023	verified	High
27	31.41.244.158		Amadey	12/27/2022	verified	High
28	31.41.244.167		Amadey	12/27/2022	verified	High
29	31.41.244.200		Amadey	04/26/2023	verified	High
30	31.41.244.237		Amadey	12/27/2022	verified	High
31	37.220.87.85	ipn-37-220-87-85.artem-catv.ru	Amadey	03/15/2023	verified	High
32	45.9.74.5		Amadey	08/30/2023	verified	High
33	45.9.74.70		Amadey	08/11/2023	verified	High
34	45.9.74.80		Amadey	04/26/2023	verified	High
35	45.9.74.141		Amadey	07/22/2023	verified	High
36	45.9.74.164		Amadey	07/07/2023	verified	High
37	45.9.74.166		Amadey	07/21/2023	verified	High
38	45.9.74.182		Amadey	07/31/2023	verified	High
39	45.15.156.216		Amadey	01/18/2023	verified	High
40	45.32.200.113	45.32.200.113.vultrusercontent.com	Amadey	12/30/2022	verified	High
41	45.66.230.123		Amadey	01/05/2023	verified	High
42	45.155.7.60	7-60.static.ipcserver.net	Amadey	07/23/2023	verified	High
43	45.155.205.172		Amadey	04/26/2023	verified	High
44	45.156.23.149		Amadey	04/24/2024	verified	High
45	45.156.23.186		Amadey	04/24/2024	verified	High
46	45.227.255.49		Amadey	04/26/2023	verified	High
47	46.17.96.36		Amadey	04/26/2023	verified	High
48	49.12.117.51	static.51.117.12.49.clients.your-server.de	Amadey	03/16/2023	verified	High
49	49.13.60.242	static.242.60.13.49.clients.your-server.de	Amadey	07/31/2023	verified	High
50	51.15.226.0	0-226-15-51.instances.scw.cloud	Amadey	01/20/2024	verified	High
51	51.81.69.127	ip127.ip-51-81-69.us	Amadey	02/01/2024	verified	High
52	62.182.156.152		Amadey	06/10/2023	verified	High
53	62.204.41.4		Amadey	02/04/2023	verified	High
54	XX.XXX.XX.X		Xxxxxx	02/04/2023	verified	High
55	XX.XXX.XX.X		Xxxxxx	12/27/2022	verified	High
56	XX.XXX.XX.XX		Xxxxxx	12/27/2022	verified	High
57	XX.XXX.XX.XX		Xxxxxx	12/28/2022	verified	High
58	XX.XXX.XX.XX		Xxxxxx	04/26/2023	verified	High
59	XX.XXX.XX.XX		Xxxxxx	01/16/2023	verified	High
60	XX.XXX.XX.XX		Xxxxxx	01/09/2023	verified	High
61	XX.XXX.XX.XX		Xxxxxx	03/17/2023	verified	High
62	XX.XXX.XX.XX		Xxxxxx	12/28/2022	verified	High
63	XX.XXX.XX.XX		Xxxxxx	01/29/2023	verified	High
64	XX.XXX.XX.XX		Xxxxxx	12/27/2022	verified	High
65	XX.XXX.XX.XX		Xxxxxx	03/12/2023	verified	High
66	XX.XXX.XX.XX		Xxxxxx	01/23/2023	verified	High
67	XX.XXX.XX.XX		Xxxxxx	01/24/2023	verified	High
68	XX.XXX.XX.XX		Xxxxxx	12/30/2022	verified	High
69	XX.XXX.XX.XX		Xxxxxx	01/30/2023	verified	High
70	XX.XXX.XX.XXX		Xxxxxx	01/09/2023	verified	High
71	XX.XXX.XX.XXX		Xxxxxx	12/31/2022	verified	High
72	XX.XXX.XX.XXX		Xxxxxx	01/18/2023	verified	High
73	XX.XXX.XX.XXX		Xxxxxx	04/26/2023	verified	High
74	XX.XXX.XX.XXX		Xxxxxx	01/18/2023	verified	High
75	XX.XXX.XX.XXX		Xxxxxx	01/09/2023	verified	High
76	XX.XXX.XX.XXX		Xxxxxx	12/27/2022	verified	High
77	XX.XXX.XX.XXX		Xxxxxx	12/27/2022	verified	High
78	XX.XXX.XX.XXX		Xxxxxx	04/26/2023	verified	High
79	XX.XXX.XX.XXX		Xxxxxx	12/27/2022	verified	High
80	XX.XXX.XX.XXX		Xxxxxx	01/23/2023	verified	High
81	XX.XXX.XX.XXX		Xxxxxx	03/18/2024	verified	High
82	XX.XXX.XX.XXX		Xxxxxx	12/27/2022	verified	High
83	XX.XXX.XX.XXX		Xxxxxx	01/23/2023	verified	High
84	XX.XXX.XXX.XXX	xxxxxx.xxxxxxxx.xxx	Xxxxxx	11/20/2023	verified	High
85	XX.XX.XXX.XX		Xxxxxx	12/27/2022	verified	High
86	XX.XX.XXX.XXX		Xxxxxx	12/27/2022	verified	High
87	XX.XX.XXX.XX		Xxxxxx	04/26/2023	verified	High
88	XX.XX.XXX.XX		Xxxxxx	03/18/2024	verified	High
89	XX.XX.XXX.XX		Xxxxxx	12/27/2022	verified	High
90	XX.XX.XXX.XX		Xxxxxx	12/27/2022	verified	High
91	XX.XX.XXX.XX		Xxxxxx	03/03/2023	verified	High
92	XX.XX.XXX.XX		Xxxxxx	04/26/2023	verified	High
93	XX.XX.XXX.XX		Xxxxxx	12/27/2022	verified	High
94	XX.XX.XX.X	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	07/07/2023	verified	High
95	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	08/11/2023	verified	High
96	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	06/07/2023	verified	High
97	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	09/06/2023	verified	High
98	XX.XX.XX.XX		Xxxxxx	07/24/2023	verified	High
99	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	05/25/2023	verified	High
100	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	06/14/2023	verified	High
101	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	07/09/2023	verified	High
102	XX.XX.XX.XX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	09/06/2023	verified	High
103	XX.XX.XX.XX		Xxxxxx	12/04/2023	verified	High
104	XX.XX.XX.XX	xxxxx-xxxxxx.xxxx.xxxxxxx	Xxxxxx	04/26/2023	verified	High
105	XX.XX.XX.XXX	xxxxx-xxxxxx.xxxx.xxxxxxx	Xxxxxx	03/30/2023	verified	High
106	XX.XX.XX.XXX	xxxxxx-xxxxxx.xxxx.xxxxxxx	Xxxxxx	04/23/2023	verified	High
107	XX.XX.XX.XXX	xxx-xxxx.xxxxxx-xx.xxx-xxxxx	Xxxxxx	10/13/2023	verified	High
108	XX.XX.XXX.X	.	Xxxxxx	09/29/2023	verified	High
109	XX.XX.XXX.X	.	Xxxxxx	07/09/2023	verified	High
110	XX.XX.XXX.XX	.	Xxxxxx	05/03/2023	verified	High
111	XX.XX.XXX.XXX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	04/08/2023	verified	High
112	XX.XX.XXX.XXX	xxxxxx-xx.xxxxxxxxx.xxx	Xxxxxx	04/04/2023	verified	High
113	XX.XX.XXX.XXX		Xxxxxx	09/20/2019	verified	High
114	XX.XX.XXX.XXX	xxxxxx.xxx.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxx	03/25/2023	verified	High
115	XX.XX.X.XXX	xxxxxx.xxx.x.xx.xx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxx	05/27/2023	verified	High
116	XX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
117	XX.XXX.XX.XX	xxxx.xxxxxxxxxx.xx	Xxxxxx	09/02/2023	verified	High
118	XX.XXX.XXX.X		Xxxxxx	01/06/2023	verified	High
119	XX.XXX.XXX.XX	xxx-xxxx.xxxxxxx.xxxxxxx	Xxxxxx	08/05/2023	verified	High
120	XX.XXX.XXX.XXX	xxxxxxx-xxxx.xxxx.xxxxxxx	Xxxxxx	04/26/2023	verified	High
121	XX.XXX.XXX.XX	xxxxxxxxx-xxxxxx.xxxx.xxxxxxx	Xxxxxx	04/26/2023	verified	High
122	XX.XXX.XXX.XX	xxxxxxxxx-xxxxxx.xxxx.xxxxxxx	Xxxxxx	05/05/2023	verified	High
123	XX.XX.XX.XXX		Xxxxxx	12/04/2023	verified	High
124	XX.XX.XX.XX	xxx.xxxxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
125	XX.XX.XX.XX		Xxxxxx	04/26/2023	verified	High
126	XX.XX.XXX.XXX	xxxxxxxxx.xxxxxxxx.xxxxxxxxx	Xxxxxx	04/26/2023	verified	High
127	XX.XXX.XX.X		Xxxxxx	01/24/2023	verified	High
128	XX.XX.XX.XXX		Xxxxxx	03/12/2023	verified	High
129	XX.XX.XX.XXX		Xxxxxx	04/26/2023	verified	High
130	XX.XXX.XX.X		Xxxxxx	04/02/2024	verified	High
131	XX.XXX.XX.XXX		Xxxxxx	10/14/2023	verified	High
132	XX.XXX.XXX.XX		Xxxxxx	12/27/2022	verified	High
133	XX.XXX.XXX.XXX		Xxxxxx	12/27/2022	verified	High
134	XX.XXX.XX.XX		Xxxxxx	07/14/2023	verified	High
135	XX.XXX.XX.XXX	xxxxx-xx-xxx-xx-xxx.xxxxxx.xxx	Xxxxxx	01/17/2024	verified	High
136	XX.XXX.XX.XXX	xxxx-xx-xxx-xx-xxx.xxxxxx-xx-xxxxxx.xx	Xxxxxx	03/25/2023	verified	High
137	XX.XXX.XXX.XXX	xxxxx.xxxxxx.xxxx.xxxxxx-xxxxxxx.xxxxxx	Xxxxxx	04/26/2023	verified	High
138	XX.XX.XXX.XXX		Xxxxxx	03/04/2024	verified	High
139	XX.XX.XXX.XX		Xxxxxx	12/15/2023	verified	High
140	XX.XX.XXX.XX		Xxxxxx	01/25/2024	verified	High
141	XX.XX.XXX.XX		Xxxxxx	03/19/2024	verified	High
142	XX.XX.XXX.XX		Xxxxxx	02/18/2024	verified	High
143	XX.XXX.XXX.XXX		Xxxxxx	04/19/2024	verified	High
144	XX.XXX.XX.XXX		Xxxxxx	02/10/2023	verified	High
145	XX.XXX.XX.XX	xxxxxxxxxxx.xx	Xxxxxx	04/26/2023	verified	High
146	XX.XXX.XX.XXX		Xxxxxx	04/26/2023	verified	High
147	XX.XX.XXX.XXX	xxxxxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
148	XX.XXX.XX.XX		Xxxxxx	04/02/2024	verified	High
149	XX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
150	XX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
151	XX.XXX.XXX.XXX		Xxxxxx	03/08/2023	verified	High
152	XX.XXX.XX.XX	xxxxx.xxxxxxxxx.xxx	Xxxxxx	09/28/2023	verified	High
153	XX.XXX.XX.XX		Xxxxxx	05/16/2023	verified	High
154	XX.XXX.XX.XX		Xxxxxx	05/19/2023	verified	High
155	XXX.XXX.XXX.XXX		Xxxxxx	07/27/2023	verified	High
156	XXX.XXX.XXX.XX		Xxxxxx	06/24/2023	verified	High
157	XXX.XXX.X.XXX		Xxxxxx	04/26/2023	verified	High
158	XXX.XXX.XXX.XXX	xxxxxxxx-xx-xx.xxxxx.xxx	Xxxxxx	04/30/2024	verified	High
159	XXX.XX.XX.XX		Xxxxxx	02/21/2024	verified	High
160	XXX.XX.XXX.XX	xxxxxxxxxx.xxxxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
161	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xxxx.xxxxxxxxxxxx.xxx	Xxxxxx	09/20/2019	verified	High
162	XXX.XXX.XX.XXX	xxxxxx.xxx.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxx	11/01/2023	verified	High
163	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
164	XXX.XXX.XXX.XX		Xxxxxx	09/21/2023	verified	High
165	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
166	XXX.XXX.XXX.XXX		Xxxxxx	05/07/2023	verified	High
167	XXX.XX.XXX.XXX	xxxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxx	09/20/2019	verified	High
168	XXX.XX.XXX.XXX	xxxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
169	XXX.XX.XXX.XXX	xxxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxx	04/23/2023	verified	High
170	XXX.XX.XXX.XXX	xxxxxxxx.xxxxxxxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
171	XXX.X.XXX.XXX		Xxxxxx	04/26/2023	verified	High
172	XXX.XX.XX.XXX		Xxxxxx	04/26/2023	verified	High
173	XXX.XX.XX.XX	xxxxxxxxxx.xx-xxxx.xx	Xxxxxx	04/26/2023	verified	High
174	XXX.XX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
175	XXX.XXX.XXX.X		Xxxxxx	12/11/2023	verified	High
176	XXX.XXX.XXX.X		Xxxxxx	12/12/2023	verified	High
177	XXX.XXX.XXX.XX		Xxxxxx	11/20/2023	verified	High
178	XXX.XXX.XXX.XX		Xxxxxx	01/13/2024	verified	High
179	XXX.XXX.XXX.XXX		Xxxxxx	11/05/2023	verified	High
180	XXX.XXX.XXX.XXX		Xxxxxx	12/05/2023	verified	High
181	XXX.XXX.XXX.XXX		Xxxxxx	01/28/2023	verified	High
182	XXX.XXX.X.XXX		Xxxxxx	11/01/2023	verified	High
183	XXX.XXX.X.XXX		Xxxxxx	12/04/2023	verified	High
184	XXX.XXX.XX.XX		Xxxxxx	01/20/2024	verified	High
185	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
186	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
187	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
188	XXX.XXX.XXX.XX		Xxxxxx	02/10/2024	verified	High
189	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
190	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
191	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
192	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
193	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
194	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
195	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
196	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
197	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
198	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
199	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
200	XXX.XXX.XXX.XX		Xxxxxx	01/07/2024	verified	High
201	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
202	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
203	XXX.XXX.XXX.XX		Xxxxxx	04/26/2023	verified	High
204	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
205	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
206	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
207	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
208	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
209	XXX.XXX.XXX.XXX		Xxxxxx	01/13/2023	verified	High
210	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
211	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
212	XXX.XXX.XXX.XXX		Xxxxxx	07/07/2023	verified	High
213	XXX.XXX.XX.XXX		Xxxxxx	04/26/2023	verified	High
214	XXX.XXX.XX.XXX		Xxxxxx	04/26/2023	verified	High
215	XXX.X.XX.XX		Xxxxxx	09/20/2019	verified	High
216	XXX.XXX.XX.XXX	xxx-xxx-xx-xxx.xxxxxx.xxxx.xx	Xxxxxx	02/20/2023	verified	High
217	XXX.X.XX.XXX		Xxxxxx	12/23/2023	verified	High
218	XXX.X.XX.XXX		Xxxxxx	04/22/2023	verified	High
219	XXX.XX.XX.XX		Xxxxxx	09/28/2023	verified	High
220	XXX.XX.XX.X		Xxxxxx	10/19/2023	verified	High
221	XXX.XX.XX.XX		Xxxxxx	12/27/2022	verified	High
222	XXX.XX.XX.XX		Xxxxxx	04/26/2023	verified	High
223	XXX.XX.XX.XX		Xxxxxx	01/06/2023	verified	High
224	XXX.XX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
225	XXX.XX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
226	XXX.XX.XXX.XXX		Xxxxxx	03/07/2023	verified	High
227	XXX.XX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
228	XXX.XXX.XXX.XXX		Xxxxxx	10/05/2022	verified	High
229	XXX.XXX.XXX.XXX		Xxxxxx	08/03/2023	verified	High
230	XXX.XXX.XXX.XXX		Xxxxxx	04/26/2023	verified	High
231	XXX.XXX.XXX.XXX		Xxxxxx	08/03/2023	verified	High
232	XXX.XXX.XXX.XX		Xxxxxx	04/12/2024	verified	High
233	XXX.XXX.X.XX		Xxxxxx	04/11/2023	verified	High
234	XXX.XXX.X.XXX		Xxxxxx	04/18/2023	verified	High
235	XXX.XXX.XX.X		Xxxxxx	02/01/2023	verified	High
236	XXX.XXX.XX.X		Xxxxxx	02/01/2023	verified	High
237	XXX.XXX.XX.XX		Xxxxxx	02/18/2023	verified	High
238	XXX.XXX.XX.XX		Xxxxxx	02/18/2023	verified	High
239	XXX.XXX.XX.XX		Xxxxxx	03/02/2023	verified	High
240	XXX.XXX.XX.XX		Xxxxxx	03/03/2023	verified	High
241	XXX.XXX.XX.XX		Xxxxxx	03/31/2023	verified	High
242	XXX.XXX.XX.XX		Xxxxxx	03/30/2023	verified	High
243	XXX.XXX.XXX.XX		Xxxxxx	03/24/2024	verified	High
244	XXX.XXX.XXX.XX		Xxxxxx	02/02/2024	verified	High
245	XXX.XXX.XXX.XXX		Xxxxxx	04/24/2024	verified	High
246	XXX.XXX.XXX.XXX		Xxxxxx	02/10/2024	verified	High
247	XXX.XXX.XXX.X	.	Xxxxxx	08/03/2023	verified	High
248	XXX.XXX.XXX.XXX		Xxxxxx	04/24/2024	verified	High
249	XXX.XX.XX.XXX		Xxxxxx	04/26/2023	verified	High
250	XXX.XX.XXX.XX		Xxxxxx	12/05/2023	verified	High
251	XXX.XX.XXX.XX		Xxxxxx	04/26/2023	verified	High
252	XXX.XX.XXX.X	xxx-xx-xxx-x.xxxxxxxx.xxxxxxxxxxxx.xx	Xxxxxx	04/26/2023	verified	High
253	XXX.XX.XX.XX		Xxxxxx	03/23/2024	verified	High
254	XXX.XXX.XXX.X		Xxxxxx	04/02/2024	verified	High
255	XXX.XXX.XXX.XXX		Xxxxxx	04/05/2024	verified	High
256	XXX.XXX.XXX.XXX	xx-xx-xxxx-xx.xxx-xxxxxxx.xxx	Xxxxxx	04/26/2023	verified	High
257	XXX.XX.XX.XXX		Xxxxxx	04/26/2023	verified	High
258	XXX.XXX.XXX.XXX	xxxxx-xxxxxxx.xxxx.xxxxxxx	Xxxxxx	04/08/2023	verified	High
259	XXX.XXX.XX.XXX	xxxxxxxx.xxxxxx-xx-xxxxxx.xx	Xxxxxx	03/04/2023	verified	High
260	XXX.XXX.XXX.XX		Xxxxxx	03/30/2023	verified	High
261	XXX.XXX.XXX.XX		Xxxxxx	04/07/2023	verified	High

TTP - Tactics, Techniques, Procedures (14)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Class	Vulnerabilities	Access Vector	Type	Confidence
1	T1006	CAPEC-126	CWE-22	Path Traversal	predictive	High
2	T1055	CAPEC-10	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	High
3	T1059	CAPEC-242	CWE-94	Argument Injection	predictive	High
4	TXXXX.XXX	CAPEC-209	CWE-XX, CWE-XX	Xxxxx Xxxx Xxxxxxxxx	predictive	High
5	TXXXX	CAPEC-122	CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
6	TXXXX	CAPEC-136	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	High
7	TXXXX	CAPEC-	CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	High
8	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	High
9	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	High
10	TXXXX	CAPEC-102	CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
11	TXXXX	CAPEC-37	CWE-XXX	Xxxxxxxxx Xxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxx	predictive	High
12	TXXXX.XXX	CAPEC-459	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
13	TXXXX	CAPEC-116	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	High
14	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	High

IOA - Indicator of Attack (74)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Class	Indicator	Type	Confidence
1	File	/catalog/all-products	predictive	High
2	File	/changePassword	predictive	High
3	File	/goform/addIpMacBind	predictive	High
4	File	/goform/DelDhcpRule	predictive	High
5	File	/goform/delIpMacBind	predictive	High
6	File	/goform/DelPortMapping	predictive	High
7	File	/goform/modifyDhcpRule	predictive	High
8	File	/goform/modifyIpMacBind	predictive	High
9	File	/goform/setBlackRule	predictive	High
10	File	/xxxxxx/xxxxxxxxxx	predictive	High
11	File	/xxxxxx/xxxxxxxxx	predictive	High
12	File	/xxxxxx/xxxxxxxxxxxxxxxx	predictive	High
13	File	/xxxxxx/xxxxxxxxxxxxxx	predictive	High
14	File	/xxxxxx/xxxxxxxxxxxxx	predictive	High
15	File	/xxxxxx/xxxxxxxxxxx	predictive	High
16	File	/xxxxxx/xxxxxxxxxx.xxx	predictive	High
17	File	/xxxxxxxxxxx.xxx/xxxxxxxx	predictive	High
18	File	/xxx/xxxxxxx/xxx	predictive	High
19	File	/xxxx/xxxxxx_xxxxx_xxxxx_xxxxxx_xxxx.xxx	predictive	High
20	File	/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxx	predictive	High
21	File	/xxxx/xxxxxxx_xxxxxxxxxx_xxxxxxxx.xxx	predictive	High
22	File	/xxxx/xxxxxxx_xxxx_xxxx_xxxxxx_xxxxx.xxx	predictive	High
23	File	/xxxx/xxxxxxx_xxxxxx_xxxxxxx.xxx	predictive	High
24	File	/xxxxx/xxxxxxx.xxx	predictive	High
25	File	xxx/xxx-xx.x	predictive	Medium
26	File	xxxxx/xxxxxxx/xxxxxxxxxxxxx.xx	predictive	High
27	File	xxxxx.xxx	predictive	Medium
28	File	xxxxxxxxxxxx.xxx	predictive	High
29	File	xxxxxxxxxxxxxxxxxxx.xxx	predictive	High
30	File	xxxxxxx/xxxxxxxx.xxx	predictive	High
31	File	xx/xxxxxx/xxxxxxxxxx	predictive	High
32	File	xxxxx-xxxxxx-xxxxxx.xxxx	predictive	High
33	File	xxxxx.xxx	predictive	Medium
34	File	xxxxxxxx.xxx	predictive	Medium
35	File	xxxxxxxx.xxx	predictive	Medium
36	File	xxxxxxxx.xxx	predictive	Medium
37	File	xxxxxxxxxxxxxxx.xxx	predictive	High
38	File	xxxxxxx_xxxxxxxx.xxx	predictive	High
39	File	xxxx-xxxxxxxx.xxx	predictive	High
40	Argument	xxxxx_xxxxx	predictive	Medium
41	Argument	xxxxxxxxxxxxx	predictive	High
42	Argument	xxx	predictive	Low
43	Argument	xxxxxxxxx	predictive	Medium
44	Argument	xxxxxxxxxxxx	predictive	Medium
45	Argument	xxxxxxxxxx	predictive	Medium
46	Argument	xxxxxxx	predictive	Low
47	Argument	xxxxx_xxx	predictive	Medium
48	Argument	xxxx	predictive	Low
49	Argument	xxxxxxxxxxxxxxxxxxxxxx	predictive	High
50	Argument	xx/xxxx	predictive	Low
51	Argument	xxxxx	predictive	Low
52	Argument	xxxxxxx	predictive	Low
53	Argument	xx	predictive	Low
54	Argument	xx	predictive	Low
55	Argument	xxxxx	predictive	Low
56	Argument	xxxxxxxxxxxxxx	predictive	High
57	Argument	xxxxxxxxxxxxx	predictive	High
58	Argument	xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxx	predictive	High
59	Argument	xxxxxxxxxx	predictive	Medium
60	Argument	xxxxxxxxxxxx	predictive	Medium
61	Argument	xxxx	predictive	Low
62	Argument	xxxx	predictive	Low
63	Argument	xxxxxxxxxxxxxxxx	predictive	High
64	Argument	xxxxxxx_xxxxxxx_xxxxx_xxxxx_xxxxx	predictive	High
65	Argument	xxxxxx	predictive	Low
66	Argument	xxxxxxxx	predictive	Medium
67	Argument	xxxxxxxxxxxxxxxxxx	predictive	High
68	Argument	xxxxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxx	predictive	High
69	Argument	xxxxxxxxx	predictive	Medium
70	Argument	xxxxxxxxxxxxxxxx	predictive	High
71	Argument	xxxx	predictive	Low
72	Argument	xxxxxxxxxx	predictive	Medium
73	Argument	xxxx	predictive	Low
74	Argument	xxxx/xxxxx/xxx/xxxx/xxxxxx/xxxxxx	predictive	High

References (135)

The following list contains external sources which discuss the actor and the associated activities:

Samples (2)

The following list contains associated samples:

◂ PreviousOverviewNext ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!