Dofoil Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

de118
es106
ja102
ar98
it88

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

de118
es106
ar98
it88
ru76

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Unknown1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined62
WordPress Plugin10
E-Commerce Management Software6
Router Operating System2
Operating System2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Tenda50
Kashipara6
Not Defined6
Contemporary Controls2
Rimes Gold2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Tenda W15E16
Tenda TX98
Kashipara Online Furniture Shopping Ecommerce Webs ...6
Tenda W96
Tenda i214

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Tenda AC8 SetRebootTimer formSetRebootTimer stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.40CVE-2024-4065
2Tenda W15E DelPortMapping formDelPortMapping stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.21CVE-2024-4117
3Tenda W9 DhcpSetSer fromDhcpSetSer stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.05CVE-2024-4244
4Tenda W9 wifiSSIDset formwrlSSIDset stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.17CVE-2024-4243
5Tenda AC8 execCommand R7WebsSecurityHandler stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.13CVE-2024-4064
6Tenda AX1806 SetRebootTimer formSetRebootTimer stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.00CVE-2024-4239
7Techkshetra Info Solutions Savsoft Quiz Category Page editCategory cross site scripting2.42.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.20CVE-2024-4256
8Tenda i21 DhcpSetSe fromDhcpSetSer stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.04CVE-2024-4251
9EZVIZ CS-C6-21WFR-8 Davinci Application certificate validation3.73.6$0-$5k$0-$5kNot DefinedNot Defined0.000451.31CVE-2024-4063
10idcCMS cross-site request forgery4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.18CVE-2024-4172
11SourceCodester Simple Subscription Website view_application.php sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.33CVE-2024-4093
12Tenda W15E formQOSRuleDel stack-based overflow8.88.5$0-$5k$0-$5kNot DefinedNot Defined0.000451.20CVE-2024-4121
13Tenda AX1806 execCommand R7WebsSecurityHandler stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.16CVE-2024-4237
14PHPGurukul Doctor Appointment Management System appointment-bwdates-reports-details.php cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.48CVE-2024-4293
15PHPGurukul Doctor Appointment Management System view-appointment-detail.php resource injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.25CVE-2024-4294
16cyanomiko dcnnt-py Notification notifications.py main command injection6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix0.000450.86CVE-2023-1000
17Tenda 4G300 sub_4279CC stack-based overflow8.88.5$0-$5k$0-$5kNot DefinedNot Defined0.000451.43CVE-2024-4169
18Tenda i21 wifiSSIDget formwrlSSIDget stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.83CVE-2024-4249
19Tenda W15E SetSysTimeCfg formSetSysTime stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.01CVE-2024-4126
20Tenda W15E SetRemoteWebManage formSetRemoteWebManage stack-based overflow8.88.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000451.24CVE-2024-4124

IOC - Indicator of Compromise (61)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.149.253.100enappiv.comDofoil03/10/2022verifiedHigh
28.110.105.136Dofoil04/08/2022verifiedHigh
38.123.232.109Dofoil04/08/2022verifiedHigh
413.107.21.200Dofoil07/22/2021verifiedHigh
523.3.13.137a23-3-13-137.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedHigh
623.6.24.15a23-6-24-15.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedHigh
723.6.65.194a23-6-65-194.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedHigh
823.209.185.159a23-209-185-159.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedHigh
927.100.36.191Dofoil07/22/2021verifiedHigh
1037.230.112.146audiotop.ruDofoil03/10/2022verifiedHigh
1145.63.25.5545.63.25.55.vultr.comDofoil07/22/2021verifiedMedium
1250.3.75.246web.netkolik.orgDofoil07/22/2021verifiedHigh
1350.21.183.63Dofoil07/22/2021verifiedHigh
14XX.XX.XX.XXxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxx04/12/2022verifiedHigh
15XX.XXX.XX.XXXxxx.xxxxxxxxxxx.xxXxxxxx03/10/2022verifiedHigh
16XX.XXX.XX.XXXxxxxxx.xxxx.xxXxxxxx03/10/2022verifiedHigh
17XX.XXX.XX.XXXxxxxx-xx.xxxXxxxxx03/10/2022verifiedHigh
18XX.XXX.XX.XXXxx.xxxxxxxxxx.xxxx.xxXxxxxx03/10/2022verifiedHigh
19XX.XXX.XXX.XXXxxxxx07/22/2021verifiedHigh
20XX.XX.XXX.XXXxxxxx03/10/2022verifiedHigh
21XX.XXX.XX.XXXxxxxxxx-xxx-xxx-xxx-xxx.xx.xxx.xxxx.xxxxxxxxxx.xxXxxxxx04/08/2022verifiedHigh
22XX.XXX.XXX.XXxx.xxx.xxx.xx.xxx.xxx.xxxXxxxxx04/08/2022verifiedHigh
23XX.XXX.X.XXXXxxxxx04/08/2022verifiedHigh
24XX.XXX.XX.XXXxx-xxx-xx-xxx.xxxx.xxxxxx.xxXxxxxx04/08/2022verifiedHigh
25XX.XXX.XXX.XXx-xxxxxxxx.xx-xxx-xxxxxxx.xxxxxx.xxxxxxx.xxXxxxxx04/08/2022verifiedHigh
26XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxxxxxxxx.xxXxxxxx03/10/2022verifiedHigh
27XX.XX.XX.XXXxxxxx07/22/2021verifiedHigh
28XX.XXX.XX.XXXxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxxxx03/10/2022verifiedHigh
29XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxxx.xxxxxxx.xxXxxxxx04/08/2022verifiedHigh
30XX.XX.XXX.XXXxxxxx04/08/2022verifiedHigh
31XX.XXX.XX.XXXx-xx-xxx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx04/08/2022verifiedHigh
32XX.XX.XXX.XXXXxxxxx04/08/2022verifiedHigh
33XX.XXX.X.XXXxxxx-xx-xxx-x-xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxx04/08/2022verifiedHigh
34XXX.XX.XX.XXXXxxxxx07/22/2021verifiedHigh
35XXX.XXX.XX.XXXxxxx-xxx-xx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedHigh
36XXX.XXX.XXX.XXxxxxx-xxxxxx.xxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedHigh
37XXX.XXX.XX.XXXXxxxxx07/22/2021verifiedHigh
38XXX.XX.XXX.XXXxxxx.xxxxxxx.xxxxxxXxxxxx03/10/2022verifiedHigh
39XXX.XX.XXX.XXxxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx07/22/2021verifiedHigh
40XXX.XXX.XXX.XXXxxxxxxxxxxx.xxxxxx-xx.xxxXxxxxx03/10/2022verifiedHigh
41XXX.XXX.XX.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxx07/22/2021verifiedHigh
42XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxx.xxxxxxxxxxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedHigh
43XXX.XX.XXX.XXXxxx.xxxxxx.xxxXxxxxx07/22/2021verifiedHigh
44XXX.XX.XXX.XXxxx.xx.xxx.xx.xxxxxxxxx-xxxXxxxxx03/10/2022verifiedHigh
45XXX.XX.XX.XXxxxxxxxxxxxxxx.xxxxxxx.xxxXxxxxx03/10/2022verifiedHigh
46XXX.XXX.XX.XXxxxx.xxxxxx.xxxXxxxxx03/10/2022verifiedHigh
47XXX.XXX.XXX.XXXxxxxx07/22/2021verifiedHigh
48XXX.XXX.XXX.XXXxxxxxx.xxxxx.xxXxxxxx07/22/2021verifiedHigh
49XXX.XXX.XXX.XXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedHigh
50XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedHigh
51XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedHigh
52XXX.XXX.XXX.XXxxxxxxxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedHigh
53XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedHigh
54XXX.XXX.XX.XX.Xxxxxx03/10/2022verifiedHigh
55XXX.XXX.XXX.XXXXxxxxx03/10/2022verifiedHigh
56XXX.XX.XXX.XXxxxx.xxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedHigh
57XXX.XXX.XXX.XXXxxxxxxxxxxx.xxxxxx.xxxXxxxxx03/10/2022verifiedHigh
58XXX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx07/22/2021verifiedHigh
59XXX.XX.XXX.XXXxxx.xxx.xx.xxx.xxxx.xxxx.xxxXxxxxx07/22/2021verifiedHigh
60XXX.XXX.XX.XXxxx-xxx-xx-xx.xxxxx.xxx.xxXxxxxx07/22/2021verifiedHigh
61XXX.XXX.XX.XXxxxxxxxx.xxxxx.xxxxxXxxxxx03/10/2022verifiedHigh

TTP - Tactics, Techniques, Procedures (7)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1059.007CAPEC-209CWE-79Cross Site ScriptingpredictiveHigh
2T1202CAPEC-136CWE-77, CWE-78Command Shell in Externally Accessible DirectorypredictiveHigh
3TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
4TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
5TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
6TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
7TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (92)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin/admin_cl.php?mudi=revPwdpredictiveHigh
2File/cgi-bin/koha/opac-MARCdetail.plpredictiveHigh
3File/doctor/view-appointment-detail.phppredictiveHigh
4File/goform/AddDnsForwardpredictiveHigh
5File/goform/addIpMacBindpredictiveHigh
6File/goform/AdvSetMacMtuWanpredictiveHigh
7File/goform/DelDhcpRulepredictiveHigh
8File/goform/DelPortMappingpredictiveHigh
9File/goform/DhcpSetSepredictiveHigh
10File/goform/DhcpSetSerpredictiveHigh
11File/goform/execCommandpredictiveHigh
12File/goform/modifyDhcpRulepredictiveHigh
13File/goform/modifyIpMacBindpredictiveHigh
14File/xxxxxx/xxxxxxxxxxxxxxxxxxxxxpredictiveHigh
15File/xxxxxx/xxxxxxxxxxxxpredictiveHigh
16File/xxxxxx/xxxxxxxxxxxxpredictiveHigh
17File/xxxxxx/xxxxxxxxxxpredictiveHigh
18File/xxxxxx/xxxxxxxxxxxpredictiveHigh
19File/xxxxxx/xxxxxxxxxpredictiveHigh
20File/xxxxxx/xxxxxxxxxxxxxxxxpredictiveHigh
21File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
22File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
23File/xxxxxx/xxxxxxxxxxxxxxxxxxpredictiveHigh
24File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
25File/xxxxxx/xxxxxxxxxxxxxpredictiveHigh
26File/xxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
27File/xxxxxx/xxxxxxxxxxxpredictiveHigh
28File/xxxxxx/xxxxxxxxxxxpredictiveHigh
29File/xxxxxx/xxxxxxxxxxxxpredictiveHigh
30File/xxxxxxxxxxxxx.xxpredictiveHigh
31File/xxxxxx/xxxxx.xxx/xxxxx/xxxxxxxxxxxxpredictiveHigh
32File/xxxxxxx.xxpredictiveMedium
33File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
34File/xxx/xxxxxxxxxxx.xxxpredictiveHigh
35Filexxxxxxxxxxx-xxxxxxx-xxxxxxx-xxxxxxx.xxxpredictiveHigh
36Filexxxxx/xxxxxxx/xxxxxxxxxxxxx.xxpredictiveHigh
37Filexxxxxx/xxxxxx/xxx/xxxxxxxxxxx/xx.xxpredictiveHigh
38Filexxxxx.xxxpredictiveMedium
39Filexxxxxxxx.xxxpredictiveMedium
40Filexxxxxxxx.xxxpredictiveMedium
41Filexxxxxx.xxxpredictiveMedium
42Filexxxxxxxxxxxx.xxxpredictiveHigh
43Filexxxx_xxxxxxxxxxx.xxxpredictiveHigh
44ArgumentxxxxxxxxxxxxpredictiveMedium
45ArgumentxxxxxxxxxxxxxpredictiveHigh
46Argumentxxxxxxxx_xxxxpredictiveHigh
47ArgumentxxxxxxxxxxxxpredictiveMedium
48ArgumentxxxxxxxxxxpredictiveMedium
49ArgumentxxxxxxxpredictiveLow
50Argumentxxxxxxxxxxx/xxxxxxxxx/xxxxxx/xxxxxxxx/xxxxxxxxxxxxx/xxxxxxxx/xxxxxxxxpredictiveHigh
51ArgumentxxxxxxxxxxxxxxpredictiveHigh
52ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
53ArgumentxxxxxxpredictiveLow
54Argumentxxxxxx/xxxxx/xxxxxxpredictiveHigh
55ArgumentxxxxxxxxpredictiveMedium
56Argumentxxxxxxxx/xxxxxxpredictiveHigh
57Argumentxx/xxxxpredictiveLow
58ArgumentxxxxxxxxxxpredictiveMedium
59ArgumentxxpredictiveLow
60ArgumentxxpredictiveLow
61ArgumentxxxxxxxxxxxxxpredictiveHigh
62Argumentxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
63ArgumentxxxxpredictiveLow
64ArgumentxxxxpredictiveLow
65ArgumentxxxxxpredictiveLow
66ArgumentxxxxxxxxxxpredictiveMedium
67ArgumentxxxxpredictiveLow
68ArgumentxxxxpredictiveLow
69ArgumentxxxxxxxxpredictiveMedium
70ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
71Argumentxxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
72ArgumentxxxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
73ArgumentxxxpredictiveLow
74ArgumentxxxxxxpredictiveLow
75ArgumentxxxxxxxxpredictiveMedium
76ArgumentxxxxxxxxxxxxxxxxxxpredictiveHigh
77ArgumentxxxxxxxxpredictiveMedium
78ArgumentxxxxxxxxxxpredictiveMedium
79ArgumentxxxxxxxxpredictiveMedium
80Argumentxxxxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxxpredictiveHigh
81ArgumentxxxxxxxxxxxxpredictiveMedium
82ArgumentxxxxxxxxxpredictiveMedium
83ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
84ArgumentxxxxpredictiveLow
85ArgumentxxxxxxxxxxpredictiveMedium
86ArgumentxxxxxxxxxpredictiveMedium
87ArgumentxxxxxxxpredictiveLow
88Argumentxxxxxx/xxxxxxxx/xxxxxxxxx/xxx/xxxxxxxxxxx/xxxxxxxxxxpredictiveHigh
89Argumentxxxx/xxxxx/xxx/xxxx/xxxxxx/xxxxxxpredictiveHigh
90Input Valuex"><xxxx>predictiveMedium
91Input ValuexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
92Input Value><xxxxxx>xxxxx('xxx')</xxxxxx>predictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!