8220 Gang Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en842
ru76
ja30
de16
fr10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Linux Kernel20
Apache HTTP Server18
Joomla CMS12
phpMyAdmin12
Microsoft IIS10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010752.52CVE-2006-6168
2Pligg cloud.php sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.46
3MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.013022.72CVE-2007-0354
4Joomla CMS com_easyblog sql injection6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.000000.57
5PHP Link Directory Administration Page index.html cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.003990.31CVE-2007-0529
6TOTOLINK N200RE Telnet Service custom.conf password in configuration file3.43.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.04CVE-2023-2790
7nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002412.52CVE-2020-12440
8DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.009430.67CVE-2010-0966
9LogicBoard CMS away.php redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000002.93
10Apache HTTP Server Limit Directive ap_limit_section use after free6.46.3$5k-$25k$0-$5kHighOfficial Fix0.973940.04CVE-2017-9798
11GFI Kerio Control Login Page DOM-Based cross site scripting6.16.0$0-$5k$0-$5kFunctionalNot Defined0.002000.00CVE-2019-16414
12Joomla CMS sql injection7.36.9$5k-$25k$0-$5kProof-of-ConceptNot Defined0.002640.04CVE-2013-1453
13PHP cgi_main.c input validation8.58.4$25k-$100k$0-$5kHighOfficial Fix0.920250.00CVE-2012-1823
14Invision Community toolbar.php addPlugin Privilege Escalation4.74.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.000430.05CVE-2024-30162
15Invision Community store.php _categoryView sql injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000430.00CVE-2024-30163
16Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.005480.05CVE-2017-0055
17Kerio Control print.php sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.001010.05CVE-2014-3857
18Google Chrome Compositing out-of-bounds6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.002330.05CVE-2022-2010
19Google Chrome WebGL out-of-bounds6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.002400.00CVE-2022-2008
20Google Chrome WebGPU use after free6.36.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.004650.04CVE-2022-2007

Campaigns (2)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (24)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.42.67.298220 Gang02/23/2024verifiedVery High
251.79.175.139vps-dc8b0481.vps.ovh.ca8220 GangCVE-2022-2613406/15/2022verifiedLow
351.255.171.23vps-fc1a1567.vps.ovh.net8220 GangCVE-2022-2613406/15/2022verifiedLow
477.91.84.42goodvpn.aeza.network8220 Gang03/18/2024verifiedHigh
579.110.62.238220 GangCVE-2019-272502/26/2024verifiedVery High
6XX.XXX.XXX.XXXxxxxx-xxxxx.xxxx.xxxxxxxXxxx Xxxx02/26/2024verifiedVery High
7XX.XX.XX.XXXxxxx.xxxxxxxxx.xxxXxxx Xxxx10/05/2022verifiedHigh
8XX.XXX.XX.XXXxxxxxx-xxxx.xxxx.xxxxxxxXxxx Xxxx02/23/2024verifiedVery High
9XX.XXX.XX.XXxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxx Xxxx10/05/2022verifiedMedium
10XXX.XX.XXX.XXxxx-xxxxxxxx.xxx.xxx.xxxXxxx XxxxXxx-xxxx-xxxxx06/15/2022verifiedLow
11XXX.XXX.XXX.XXXxxx Xxxx07/29/2022verifiedHigh
12XXX.XXX.XXX.XXXXxxx Xxxx02/23/2024verifiedVery High
13XXX.XXX.XXX.XXXXxxx Xxxx03/18/2024verifiedVery High
14XXX.XXX.XXX.XXXxxx-xxxxxxxx.xxx.xxx.xxXxxx XxxxXxx-xxxx-xxxxx06/15/2022verifiedLow
15XXX.XXX.XX.XXxxx Xxxx03/18/2024verifiedHigh
16XXX.XX.XXX.XXXXxxx Xxxx02/23/2024verifiedVery High
17XXX.XX.XXX.XXXxxxxxxxx.xxxxxxxxxxxx.xxxXxxx Xxxx03/18/2024verifiedHigh
18XXX.XXX.XX.XXXxxxxx-xxxxxxxxxx.xxxx.xxxxxxxXxxx Xxxx02/26/2024verifiedVery High
19XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxx.xxxx.xxxXxxx Xxxx10/05/2022verifiedMedium
20XXX.XXX.XXX.XXXXxxx Xxxx06/26/2024verifiedVery High
21XXX.XX.XX.XXXxxxxxx-xxxxx.xxxxxxxx.xxxXxxx Xxxx02/26/2024verifiedVery High
22XXX.XX.XXX.XXXxxx-xx-xxx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxx XxxxXxx-xxxx-xxxx02/26/2024verifiedVery High
23XXX.XXX.XX.XXXxxx XxxxXxx-xxxx-xxxxx06/15/2022verifiedMedium
24XXX.XXX.XXX.XXXxxx-xxxxxxxx.xxx.xxx.xxxXxxx Xxxx02/23/2024verifiedHigh

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-21, CWE-22, CWE-23, CWE-425Path TraversalpredictiveHigh
2T1040CAPEC-102CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
4T1059CAPEC-137CWE-88, CWE-94, CWE-1321Argument InjectionpredictiveHigh
5T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CAPEC-122CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCAPEC-CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXXCAPEC-150CWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXX.XXXCAPEC-16CWE-XXX, CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
10TXXXX.XXXCAPEC-CWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHigh
11TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
12TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
13TXXXXCAPEC-CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
14TXXXX.XXXCAPEC-492CWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHigh
15TXXXXCAPEC-184CWE-XXXXxxxxxxx Xx Xxxx Xxxxxxx Xxxxxxxxx XxxxxpredictiveHigh
16TXXXXCAPEC-108CWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHigh
17TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
18TXXXXCAPEC-102CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
19TXXXX.XXXCAPEC-CWE-XXXXxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
20TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
21TXXXXCAPEC-38CWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
22TXXXX.XXXCAPEC-CWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
23TXXXXCAPEC-116CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
24TXXXXCAPEC-112CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
25TXXXX.XXXCAPEC-112CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
26TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (393)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File%PROGRAMFILES%\MyQ\PHP\Sessions\predictiveHigh
2File.htaccesspredictiveMedium
3File//proc/kcorepredictiveMedium
4File/admin/about-us.phppredictiveHigh
5File/admin/action/delete-vaccine.phppredictiveHigh
6File/admin/edit-post.phppredictiveHigh
7File/admin/index2.htmlpredictiveHigh
8File/admin/userprofile.phppredictiveHigh
9File/admin_class.phppredictiveHigh
10File/alphaware/summary.phppredictiveHigh
11File/api/baskets/{name}predictiveHigh
12File/app/index/controller/Common.phppredictiveHigh
13File/applications/core/modules/admin/editor/toolbar.phppredictiveHigh
14File/Applications/Google\ Drive.app/Contents/MacOSpredictiveHigh
15File/applications/nexus/modules/front/store/store.phppredictiveHigh
16File/apply.cgipredictiveMedium
17File/bitrix/admin/ldap_server_edit.phppredictiveHigh
18File/cgi-bin/nas_sharing.cgipredictiveHigh
19File/cgi-bin/wlogin.cgipredictiveHigh
20File/classes/Master.phppredictiveHigh
21File/classes/Master.php?f=save_categorypredictiveHigh
22File/classes/Users.php?f=savepredictiveHigh
23File/College/admin/teacher.phppredictiveHigh
24File/Controls/Generic/EBMK/Handlers/EStatements/DownloadEStatement.ashxpredictiveHigh
25File/cupseasylive/countrymodify.phppredictiveHigh
26File/dcim/rack-roles/predictiveHigh
27File/domains/listpredictiveHigh
28File/fftools/ffmpeg_enc.cpredictiveHigh
29File/forms/doLoginpredictiveHigh
30File/formSysLogpredictiveMedium
31File/forum/away.phppredictiveHigh
32File/goform/addUserNamepredictiveHigh
33File/goform/aspFormpredictiveHigh
34File/goform/delAdpredictiveHigh
35File/goform/SetOnlineDevNamepredictiveHigh
36File/goform/wifiSSIDsetpredictiveHigh
37File/inc/topBarNav.phppredictiveHigh
38File/index.phppredictiveMedium
39File/index.php/weblinks-categoriespredictiveHigh
40File/index.php?app=main&func=passport&action=loginpredictiveHigh
41File/install/predictiveMedium
42File/kelas/datapredictiveMedium
43File/listplace/user/ticket/createpredictiveHigh
44File/loginpredictiveLow
45File/LoginRegistration.phppredictiveHigh
46File/Main_Login.asp?flag=1&productname=RT-AC88U&url=/downloadmaster/task.asppredictiveHigh
47File/manager/ipconfig_new.phppredictiveHigh
48File/xxxxxx/xx.xxx?xxxxxx=xxpredictiveHigh
49File/xxxx/xxxxx-xx-x/predictiveHigh
50File/xxxxxxxx/xxxxx.xxxpredictiveHigh
51File/xxxxx/xxxxxx/xxxxpredictiveHigh
52File/xxxxx/xxx/.xxxx-xxxxx/xxxxxx-xxxxxxxxxxxxxpredictiveHigh
53File/xxxxxxx/xxxpredictiveMedium
54File/xxxxxxxxxx.xxx?xx=xpredictiveHigh
55File/xxxx.xxxpredictiveMedium
56File/xxxxxxxx-xxxx/xxx_xx/xxxxxx.xxxxpredictiveHigh
57File/xxx/xxxxx/xxxxxxx_xxxxxxx_xxxxxx.xxxpredictiveHigh
58File/xxx/xxxx/xxxx_xxxx.xxxpredictiveHigh
59File/xxxxx/xxxx_xxxx_xxxxxxx.xxxpredictiveHigh
60File/xxxxxxxxx/xxxxxxxxxxxxx.xxxxpredictiveHigh
61File/xxxxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
62File/xxxxxxx/predictiveMedium
63File/xxxx/xxxxxxxpredictiveHigh
64File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
65File/xxxx/xxxxxxx_xxxxxx_xxxxxxx.xxxpredictiveHigh
66File/xxxx/xxxxxxxxx.xxxpredictiveHigh
67File/xxxxx/xxxxxxx.xxxpredictiveHigh
68File/xxxxxx/xxxx.xxxpredictiveHigh
69File/xx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
70Filexxxxx.xxx/xxxxx-x.x.xxx/xxxxxxx.xxx/xxxx.xxxpredictiveHigh
71Filexxxxxxxxxxxxxxx.xxx.xxxpredictiveHigh
72Filexxxxxxxxxxxxxx.xxxxpredictiveHigh
73Filexxxxxxxx.xxxpredictiveMedium
74Filexxxx.xxxpredictiveMedium
75Filexxx_xxxxxxx.xxxpredictiveHigh
76Filexxxxx/xxxxxx.xxxxx_xxxxxx.xxxpredictiveHigh
77Filexxxxx/xxxxxxxxxxxxx/xxxxxx_xxxxxx.xxxpredictiveHigh
78Filexxxxxxx.xxxpredictiveMedium
79Filexxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
80Filexxxxx\xxxx\xxxxxx_xxxx.xxxpredictiveHigh
81Filexxx/xxx-xx.xpredictiveMedium
82Filexxx\xxxxxxx\xxx\xxx.xxx.xxxpredictiveHigh
83Filexxxx/xxxx.xxxpredictiveHigh
84Filexxxxx-xxx.xpredictiveMedium
85Filexxxx/xx_xxx.xxxpredictiveHigh
86Filexxxxxxx.xxpredictiveMedium
87Filexxxxxxxxxx.xxxpredictiveHigh
88Filexxxxxx/xxxxxxxxx/xxxxxxxx/xxxxxxxxxx/xxxxxx/xxxx/xxxx_xxxxxxxx/xxxxxx.xxpredictiveHigh
89Filexxxxx\xxxxxx\xxxx.xxxpredictiveHigh
90Filexx_xxxx_xx_xxxx_xxxx.xxxpredictiveHigh
91Filexxx_xxx_xxx.xxpredictiveHigh
92Filexxxxxxx-xxxxxx-xxxxxx.xxxpredictiveHigh
93Filex-xxxxxx/xxxxxxx.xpredictiveHigh
94Filexxx-xxx/xxxxxxx.xxpredictiveHigh
95Filexxx/xxxxxx_xxxx.xxxpredictiveHigh
96Filexxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
97Filexxxxxxx/xxxxxx.xxx?x=xxxx_xxxxxpredictiveHigh
98Filexxxxxxxxxx_xxxxx.xxxpredictiveHigh
99Filexxxxx.xxxpredictiveMedium
100Filexxxxx-xxxxxxx.xxxpredictiveHigh
101Filexxxxxxx_xxxx.xxxxpredictiveHigh
102Filexxxxxxxx_xxxxxxxxxxxxxxxxx.xxxpredictiveHigh
103Filexxxxxx.xxxpredictiveMedium
104Filexxxx/xxxxxx/xxxxxxxxx/xxxxxxxxx/xxxxxx/xxxx.xxpredictiveHigh
105Filexxxxxxxx_xxxxxxx.xxxpredictiveHigh
106Filexxxxxx_xxxxx.xxxpredictiveHigh
107Filexxxxxx.xxxpredictiveMedium
108Filexxxxxxxxx/xxxx/xxxxxxxxxxxxx.xxxxpredictiveHigh
109Filexxxxxxxxx_xxxxxx.xpredictiveHigh
110Filexxxxxxxxxx_xxxxxx.xxxpredictiveHigh
111Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxxxxxx/xx/xxx_xxx.xpredictiveHigh
112Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxx/xxxx.xpredictiveHigh
113Filexxx_xxxxxxxx.xpredictiveHigh
114Filexxxx_xxx/xx/xxxxxxxx/xxxxxx.xxxpredictiveHigh
115Filexxxx_xxxx.xpredictiveMedium
116Filexxxx.xxxpredictiveMedium
117Filexxxxx.xxxpredictiveMedium
118Filexxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
119Filexxx/xxxx/xxx_xxxx.xpredictiveHigh
120Filexxx/xxx/xxx.xpredictiveHigh
121Filexxxxxxxx-xxxxxx-xxxxxx.xxxpredictiveHigh
122Filexxxx.xxxpredictiveMedium
123Filexxxxx/xxxxxx.xxxpredictiveHigh
124Filexxxxxxxxxx.xxxpredictiveHigh
125Filexxxxxxxxxx.xxxxxxx.xxpredictiveHigh
126Filexxxxxxxxx/xx/xxxxxxxxxxxx.xxxpredictiveHigh
127Filexx/xxxxx/xxxxxxx.xpredictiveHigh
128Filexx/xxxxx/xxxxx.xpredictiveHigh
129Filexxxxxxx.xxxpredictiveMedium
130Filexxxx_xx.xxpredictiveMedium
131Filexxxxxxxxxxxx_xxxx.xxxpredictiveHigh
132Filexxxxxxxxx.xxxpredictiveHigh
133Filexx/xxx/xxxx_xxxxx.xpredictiveHigh
134Filexxxxxxxxx.xxxpredictiveHigh
135Filexxx/xxxxxx.xxxpredictiveHigh
136Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
137Filexxxxxxx.xxxpredictiveMedium
138Filexxxxxxxx/xxxxx.xxx.xxxpredictiveHigh
139Filexxxxxxxx/xxxxxxxx.xxxpredictiveHigh
140Filexxxxx.xxxxpredictiveMedium
141Filexxxxx.xxxpredictiveMedium
142Filexxxxx.xxpredictiveMedium
143Filexxxxxxxx.xxxpredictiveMedium
144Filexxxxx/xxxx.xxxpredictiveHigh
145Filexxxx_xxxx.xxxpredictiveHigh
146Filexxxxxx/xxxxx/xxxxx_xxxxxx.xpredictiveHigh
147Filexxxxxxxxx/xxxxxxx/xxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
148Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
149Filexxxxx_xxx.xxpredictiveMedium
150Filexxxxxxxxxxxxx.xxxpredictiveHigh
151Filexxxxx.xxxpredictiveMedium
152Filexxxxx.xxxpredictiveMedium
153Filexxxxx/?xxxxxx=xxxxxxx&xxxxpredictiveHigh
154Filexxxxxx-xxxx.xxxpredictiveHigh
155Filexxxx.xpredictiveLow
156Filexxxxxxxxxxxx.xxxpredictiveHigh
157Filexxxx_xxxxx.xxxpredictiveHigh
158Filexxxxxx_xxxxxx.xxxpredictiveHigh
159Filexxxxxx_xxxx.xxxpredictiveHigh
160Filexxxxxx.xxx?x=xxxxxx_xxxxpredictiveHigh
161Filexxxxxxxx_xxxxxxx.xxxpredictiveHigh
162Filexxxxxxx-xx/xxxxxx/xxx.xxpredictiveHigh
163Filexxxxxx/xxxxxxxx.xxpredictiveHigh
164FilexxxxxxpredictiveLow
165Filexxxxxxxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
166Filexxx/xxx/xx_xxx.xpredictiveHigh
167Filexxx/xxxx/xxxx_xxxx.xpredictiveHigh
168Filexxxxxxx/xxxx.xxxpredictiveHigh
169Filexxxxxxx.xxxpredictiveMedium
170Filexxxxxxxxxx.xxpredictiveHigh
171Filexxxxxxxxxxxx.xxxxpredictiveHigh
172Filexxxx.xxxpredictiveMedium
173Filexxxxxxxxx.xxxxpredictiveHigh
174Filexxxxxxxxxxx-xxxx.xxpredictiveHigh
175Filexxxxx.xxxx_xxxx.xxxpredictiveHigh
176Filexxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
177Filexxxxx.xxxpredictiveMedium
178Filexxxxxxxxxxxxxx.xxxpredictiveHigh
179Filexxxxxxx_xxxx.xxxpredictiveHigh
180Filexxxxx.xxxpredictiveMedium
181Filexxxx.xxxpredictiveMedium
182Filexxxxx.xxxpredictiveMedium
183Filexxxxxxxx.xxxpredictiveMedium
184Filexxxxx-xxxx/xxxxx-xxxxx-xxxx.xxxpredictiveHigh
185Filexxxxxxxx_xxxx.xxxpredictiveHigh
186Filexxxxxxxxxx.xxxpredictiveHigh
187Filexxxxxxxx_xxxxxx.xxxpredictiveHigh
188Filexxxxxxxxxx_xxxxx.xxxxxxpredictiveHigh
189Filexxxx/xxx/xxx_xxxx.xpredictiveHigh
190Filexxxx.xxxpredictiveMedium
191Filexxxx-xxx/xxxxxxxx.xxx?xxxx=xxxx_xxxx.xxxpredictiveHigh
192Filexxxxxx.xxpredictiveMedium
193Filexxxxx.xxxpredictiveMedium
194Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
195Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
196Filexxxxxxxxxxx.xxxpredictiveHigh
197Filexxxx_xxxxxx_xxxxxx.xxxpredictiveHigh
198Filexxxxxxxx/xxx/xxxx.xpredictiveHigh
199Filexxx/xxxxxxxx-xxxx.xxpredictiveHigh
200Filexxx/xxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
201Filexxxxxx_xxxx.xxxpredictiveHigh
202Filexxxxxx/predictiveLow
203Filexxxx-xxxxxxxx.xxxpredictiveHigh
204Filexxxx-xxxxx.xxxpredictiveHigh
205Filexxxx-xxxxxxxx.xxxpredictiveHigh
206Filexxxxxxx_xxxxx.xxxpredictiveHigh
207Filexxxxxxx/xxxxxx.xxxxpredictiveHigh
208Filexxxx/xxxxxx_xxxxxxxx.xxxpredictiveHigh
209Filexxxxx/xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
210Filexx/xxxxxxxxx/xxpredictiveHigh
211Filexxxxxxxxx.xpredictiveMedium
212Filexxxxxx.xxxpredictiveMedium
213Filexxxx_xxxxx.xxxpredictiveHigh
214Filexxxx_xxx.xxxpredictiveMedium
215Filexxxx.xxxpredictiveMedium
216Filexxxxxxx/xx/xxxx/xxx/xxxxxx/xxxxxxxxx.xxpredictiveHigh
217Filexxxxx-xxxx/xxx/xxxx/xxxx/xxx/xxxxx/xxxxxx/xxxxxxxxxx/xxxxxxxxxxxxxxx.xxxxpredictiveHigh
218Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
219Filexx-xxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
220Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
221Filexxxx.xxpredictiveLow
222File~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxx.xxxpredictiveHigh
223Libraryxxxxx_xxxxxxxx.xxxpredictiveHigh
224Libraryxxxxxxx/xxxxx/xxxxxxxxxxxx.xpredictiveHigh
225Libraryxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
226Libraryxxx/xxxxxxxxxx.xpredictiveHigh
227Libraryxxxxxxxxxxx.xxxpredictiveHigh
228Libraryxxxxxxxxxxx.xxxpredictiveHigh
229Libraryxxxxx.xxxpredictiveMedium
230Argument$_xxxxxx['xxx_xxxx']predictiveHigh
231Argument$_xxxxxx['xxxxx_xxxxxx']predictiveHigh
232Argument-xxxxxxxxxxxxxpredictiveHigh
233Argument?xxxx_xxxx=xxxxxxx.xxx/xxxx=xxxxxx/xxx=xxx+/xxx/.xxxxxxxx/xxxxxxx=//xxxxxxxxxxxxxx.xxx=xpredictiveHigh
234Argumentxx/xxpredictiveLow
235ArgumentxxxxxxxpredictiveLow
236ArgumentxxxxxxxxpredictiveMedium
237Argumentxxxxxx/xxxxxxxx/xxx_xxpredictiveHigh
238ArgumentxxxpredictiveLow
239Argumentxxxxxxxx_xxx_xxx/xxxxxxxx_xxxxxxxx_xxxpredictiveHigh
240ArgumentxxxxxxpredictiveLow
241ArgumentxxxxxxxxpredictiveMedium
242ArgumentxxxxpredictiveLow
243Argumentx_xxxx/x_xxx/x_xxxxxxxpredictiveHigh
244ArgumentxxxxxxxxpredictiveMedium
245ArgumentxxxxxpredictiveLow
246Argumentxxx_xxxx_xxxxxpredictiveHigh
247Argumentxxxxx_xxxx/xx_xxxxx_xxxxx_xx/xx_xxxxx_xxxxx_xxxxx_xxxx_xxxx/xxxxx_xxxxxxxxx_xxxx/xxxxxx_xxxxxx_xxxxxpredictiveHigh
248Argumentxxxxxxxxxx_xxxxpredictiveHigh
249ArgumentxxxpredictiveLow
250Argumentxxxxxxxx/xxxxxxxx xxxxxpredictiveHigh
251ArgumentxxxxxxxxxxpredictiveMedium
252Argumentxxx_xxpredictiveLow
253Argumentxx-xxxpredictiveLow
254ArgumentxxxpredictiveLow
255ArgumentxxxxxxxxxpredictiveMedium
256ArgumentxxxxxxxxpredictiveMedium
257Argumentxxxx_xxpredictiveLow
258Argumentxxxxxxx[x][xxxx]predictiveHigh
259ArgumentxxxxxxxxxpredictiveMedium
260ArgumentxxxxxxpredictiveLow
261Argumentxxxxxxxxxx_xxpredictiveHigh
262ArgumentxxxxxxpredictiveLow
263ArgumentxxxxxxxpredictiveLow
264ArgumentxxxxxxxxxpredictiveMedium
265Argumentxxxxxxx_xxxx_xxxxpredictiveHigh
266Argumentxxxxxx_xxxpredictiveMedium
267ArgumentxxxxxxxxpredictiveMedium
268ArgumentxxxpredictiveLow
269ArgumentxxxxxxxxxpredictiveMedium
270Argumentxxxxxx xxxxpredictiveMedium
271ArgumentxxxxxxxpredictiveLow
272ArgumentxxxxxxxxxxxxxpredictiveHigh
273Argumentxxx_xxxxpredictiveMedium
274Argumentx_x/x_x/xxxxxpredictiveHigh
275ArgumentxxxxxpredictiveLow
276Argumentxxxxx/xxxxxxxxpredictiveHigh
277Argumentxxxxx_xxxxxx/xxxxpredictiveHigh
278ArgumentxxxxxpredictiveLow
279ArgumentxxxxxxxxxxxpredictiveMedium
280ArgumentxxxxxxxxxxxxxxpredictiveHigh
281Argumentxxxxxxxx_xxxxxpredictiveHigh
282Argumentxxxxx xxxxpredictiveMedium
283ArgumentxxxxpredictiveLow
284ArgumentxxxxxxpredictiveLow
285ArgumentxxxxxxxxpredictiveMedium
286ArgumentxxxxxxxxpredictiveMedium
287ArgumentxxxxxxpredictiveLow
288Argumentxxxxxxxxx/xxxxxxxxpredictiveHigh
289Argumentxxxxxxxxx/xxxxxxxxpredictiveHigh
290ArgumentxxxxxxpredictiveLow
291ArgumentxxxxxxxxxpredictiveMedium
292Argumentxxxxxxxxx/xxxxxxpredictiveHigh
293Argumentxx_xxpredictiveLow
294ArgumentxxxxxxxxpredictiveMedium
295ArgumentxxxxpredictiveLow
296ArgumentxxxxxpredictiveLow
297Argumentx_xxxxxxxpredictiveMedium
298ArgumentxxxxpredictiveLow
299ArgumentxxxxxxxxxpredictiveMedium
300ArgumentxxxxpredictiveLow
301Argumentxxxx/xxxxxx/xxxpredictiveHigh
302ArgumentxxxxxxxxpredictiveMedium
303ArgumentxxpredictiveLow
304Argumentxx/xxxpredictiveLow
305Argumentxx/xxxxxx_xxxxxxxx/xxxxxx_xxx/xxxxxx_xxxxxxx/xxxxxx_xxxxxx/xxxxxx_xxxx/xxxxx/xxxx_xxx/xxxx_xxxxpredictiveHigh
306ArgumentxxxxxxxxxpredictiveMedium
307ArgumentxxxxxpredictiveLow
308ArgumentxxxpredictiveLow
309ArgumentxxxxpredictiveLow
310ArgumentxxxxxxxxpredictiveMedium
311Argumentxxxxxxxxx/xxxxx_xxxxpredictiveHigh
312Argumentxxxxxxxx_xxxpredictiveMedium
313ArgumentxxxxxpredictiveLow
314ArgumentxxxxxxxxxxpredictiveMedium
315Argumentxxx_xxxxxxxpredictiveMedium
316ArgumentxxxxxxxxpredictiveMedium
317ArgumentxxxxxxxpredictiveLow
318ArgumentxxxpredictiveLow
319ArgumentxxxpredictiveLow
320ArgumentxxxpredictiveLow
321ArgumentxxxxpredictiveLow
322ArgumentxxxxpredictiveLow
323Argumentxxxx/xxxxxx_xxx_xxx_xxx/xxxxxx_xxx_xxxxxxx_xxxx/xxxxxxxx_xx/xxxxx/xxxxxxx xxxx/xxxxxxxx_xxxxpredictiveHigh
324Argumentxxx.xxxxxxxpredictiveMedium
325ArgumentxxxpredictiveLow
326Argumentxxxxxx/xxxxx/xxxxpredictiveHigh
327ArgumentxxxxxxpredictiveLow
328ArgumentxxxxxpredictiveLow
329Argumentxxxxxxx_xxxxx_xxxxxxx_xxxxx[x]predictiveHigh
330ArgumentxxxxpredictiveLow
331ArgumentxxxxxxxpredictiveLow
332Argumentxxxxx_xpredictiveLow
333ArgumentxxxxxxxxpredictiveMedium
334ArgumentxxxxpredictiveLow
335Argumentxxxx_xxxxxxpredictiveMedium
336Argumentxxxxx/xxxxx/xxxxxxpredictiveHigh
337ArgumentxxxxxxxxxpredictiveMedium
338ArgumentxxxxxxxxxxxpredictiveMedium
339Argumentxxxxxxx_xxxxxxxpredictiveHigh
340Argumentxxxxxxx_xx/xxxx_xxpredictiveHigh
341Argumentxxxxxxxx[xx]predictiveMedium
342Argumentxxxxxxxx_xxxpredictiveMedium
343ArgumentxxxpredictiveLow
344Argumentxxxxxx_xxxpredictiveMedium
345ArgumentxxxxxpredictiveLow
346Argumentxxxxxxx_xxxpredictiveMedium
347ArgumentxxxxxxxxpredictiveMedium
348ArgumentxxxxxxpredictiveLow
349ArgumentxxxxxxxxxxpredictiveMedium
350Argumentxxxxxxx_xxpredictiveMedium
351ArgumentxxxxxxxxxpredictiveMedium
352ArgumentxxxpredictiveLow
353ArgumentxxxxxxpredictiveLow
354ArgumentxxxxxxxxxpredictiveMedium
355ArgumentxxxxxpredictiveLow
356Argumentxxxxxxx/xxxx/xxxxxxxpredictiveHigh
357Argumentxxxxxx-xxxpredictiveMedium
358ArgumentxxxxxxxxxxpredictiveMedium
359Argumentxxxxx xxxxpredictiveMedium
360ArgumentxxxxxxxxxxxxpredictiveMedium
361ArgumentxxxpredictiveLow
362ArgumentxxxxxpredictiveLow
363ArgumentxxxxxxxxxpredictiveMedium
364ArgumentxxxxxxxxxxxpredictiveMedium
365ArgumentxxxpredictiveLow
366Argumentxxxxxx/xxxxxpredictiveMedium
367ArgumentxxxxpredictiveLow
368ArgumentxxxxxxpredictiveLow
369ArgumentxxxxxxxxpredictiveMedium
370Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
371ArgumentxxxxpredictiveLow
372ArgumentxxxxpredictiveLow
373ArgumentxxxxxpredictiveLow
374Argumentxx_xxxxxpredictiveMedium
375Argumentx-xxxxxxxxx-xxxpredictiveHigh
376Argumentx-xxxx xxpredictiveMedium
377Argumentx_xxpredictiveLow
378Argument_xxxxxxpredictiveLow
379Argument主题predictiveLow
380Input Value%xxx%xxxxxxxxx%xxxxxxx(x)>%xxpredictiveHigh
381Input Value-xpredictiveLow
382Input Value..predictiveLow
383Input Value../../predictiveLow
384Input Value../../../../../xxx/xxx/xxxxx/xxxx/xxxxxxxx/xxxxx/xxx.xxxpredictiveHigh
385Input Valuex%xx%xx%xxxxxxx%xxxxxxxx%xxxxxxxxxx%xxxxxx%xx%xxxxxxx_xxxxx%xx%xx--%xx%xxpredictiveHigh
386Input Valuex%xx"()%xx%xx<xxx><xxxxxx>xxxxx(xxxxxxxx.xxxxxx)</xxxxxx>predictiveHigh
387Input Value</xxxxx><xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
388Input Value<xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
389Input ValuexxxxxxxxxxpredictiveMedium
390Input Valuexxx://xxxxxx/xxxx=xxxxxxx.xxxxxx-xxxxxx/xxxxxxxx=xxxxx_xxxxxpredictiveHigh
391Input ValuexxxxpredictiveLow
392Pattern() {predictiveLow
393Network Portxxx/xx (xxx xxxxxxxx)predictiveHigh

References (9)

The following list contains external sources which discuss the actor and the associated activities:

Interested in the pricing of exploits?

See the underground prices here!