APT27 Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en910
zh32
de24
ru14
es6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us434
cn98
es24
ru14
de8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

APT278
UNC2155
Iron2
Cobalt Strike2
Kinsing1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined450
Content Management System52
Operating System46
Programming Language Software32
Web Browser26

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined286
Microsoft54
Google32
Apple22
Apache20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows26
Google Chrome20
Google Android12
PHP10
Apple Mac OS X10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.630.04187CVE-2010-0966
3Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.400.25090CVE-2017-0055
4jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.040.04499CVE-2019-7550
5HP Storage Data Protector memory corruption10.010.0$25k-$100k$0-$5kHighNot Defined0.010.90299CVE-2014-2623
6Microsoft IIS IP/Domain Restriction access control6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.590.29797CVE-2014-4078
7D-Link DIR-846 SetGuestWLanSettings.php Privilege Escalation9.39.1$5k-$25k$5k-$25kNot DefinedNot Defined0.030.01978CVE-2020-21016
8Google Chrome V8 type confusion7.57.4$25k-$100k$5k-$25kHighOfficial Fix0.060.01055CVE-2022-4262
9D-Link Router soap.cgi privileges management5.44.9$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.050.00000
10Oracle MySQL Server Optimizer access control5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.010.01034CVE-2018-3187
11Ivanti DSM Remote unquoted search path6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000.00885CVE-2022-27088
12Vmware Workspace ONE Access access control7.87.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.00885CVE-2022-22960
13Vmware Workspace ONE Access OAuth2 ACS Framework improper authentication9.89.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.00885CVE-2022-22955
14nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined5.540.00000CVE-2020-12440
15Vmware Workspace ONE Access/Identity Manager Template injection9.88.8$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000.93243CVE-2022-22954
16Basti2web Book Panel books.php sql injection7.37.0$0-$5k$0-$5kHighOfficial Fix0.080.00986CVE-2009-4889
17Lars Ellingsen Guestserver guestbook.cgi cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.250.01055CVE-2005-4222
18MinIO Admin API authentication bypass8.87.7$0-$5k$0-$5kNot DefinedOfficial Fix0.020.01018CVE-2020-11012
19Esoftpro Online Guestbook Pro ogp_show.php sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.100.01055CVE-2009-4935
20WordPress WP_Query sql injection6.36.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.100.11157CVE-2022-21661

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • SysUpdate

IOC - Indicator of Compromise (44)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
134.90.207.2323.207.90.34.bc.googleusercontent.comAPT27verifiedMedium
234.93.247.126126.247.93.34.bc.googleusercontent.comAPT27SysUpdateverifiedMedium
335.187.148.253253.148.187.35.bc.googleusercontent.comAPT27SysUpdateverifiedMedium
435.220.135.8585.135.220.35.bc.googleusercontent.comAPT27SysUpdateverifiedMedium
545.77.250.14145.77.250.141.vultr.comAPT27verifiedMedium
645.142.214.188vm309132.pq.hostingAPT27SysUpdateverifiedHigh
747.75.49.32APT27SysUpdateverifiedHigh
849.143.192.221APT27verifiedHigh
949.143.205.30APT27verifiedHigh
10XX.XX.X.Xxx-xx-x-x.xxx.xxxx.xx.xxXxxxxverifiedHigh
11XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
12XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
13XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
14XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
15XX.XX.XXX.XXXxx.xx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
16XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
17XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh
18XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh
19XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh
20XX.XXX.XXX.XXXxxxxxxxx.xx.xxxxxxxXxxxxverifiedHigh
21XX.XXX.XX.XXXXxxxxXxxxxxxxxverifiedHigh
22XX.XX.XXX.XXXxxxxx.xx-xx-xx-xxx.xxXxxxxverifiedHigh
23XX.XX.XXX.XXXXxxxxXxxxxxxxxverifiedHigh
24XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
25XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
26XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
27XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxverifiedHigh
28XXX.XX.X.XXXxxxxxxx.xxxxxx.xx.xxxxxxxx.xxxXxxxxverifiedHigh
29XXX.XX.X.XXxxxxxxx.xxxxxx.xx.xxxxxxxx.xxxXxxxxverifiedHigh
30XXX.XX.XX.XXXxxx.xx.xx.xxx.xxxxxx.xxxxxxxx.xxxXxxxxverifiedHigh
31XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxx.xxxxxxxx.xxxXxxxxXxxxxxxxxverifiedHigh
32XXX.XX.XXX.XXXXxxxxXxxxxxxxxverifiedHigh
33XXX.XXX.XXX.XXxxxxxx-xxx-xxx-xxx-xx.xxxxxxxxxxxx.xxxXxxxxverifiedHigh
34XXX.XXX.XX.XXXXxxxxverifiedHigh
35XXX.XXX.XXX.XXXXxxxxverifiedHigh
36XXX.XX.XX.XXXXxxxxXxxxxxxxxverifiedHigh
37XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxx.xxxXxxxxXxxxxxxxxverifiedMedium
38XXX.XX.XX.XXXxxxxxxx.xxxxx.xxxxXxxxxverifiedHigh
39XXX.XXX.XXX.XXXXxxxxverifiedHigh
40XXX.XXX.X.XXxxxxverifiedHigh
41XXX.XXX.XXX.XXxxxxxxxx.xx.xxxxxxxXxxxxverifiedHigh
42XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh
43XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh
44XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-21, CWE-22, CWE-23Pathname TraversalpredictiveHigh
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CWE-74InjectionpredictiveHigh
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHigh
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CWE-264, CWE-269, CWE-270, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
11TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
12TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
13TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
14TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
15TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
16TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
17TXXXX.XXXCWE-XXXXxxxxxxxx XxxxxxxxxpredictiveHigh
18TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
19TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
20TXXXX.XXXCWE-XXXXxxxxxxx Xx Xxx Xxxxxxx Xx X Xxxxxxxx XxxxxxxxpredictiveHigh
21TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
22TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHigh
23TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHigh
24TXXXX.XXXCWE-XXXxxxxxxxxxxxxpredictiveHigh
25TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
26TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (345)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/+CSCOE+/logon.htmlpredictiveHigh
2File/cgi-bin/live_api.cgipredictiveHigh
3File/cgi-bin/wapopenpredictiveHigh
4File/cgi-bin/wlogin.cgipredictiveHigh
5File/config/getuserpredictiveHigh
6File/etc/ajenti/config.ymlpredictiveHigh
7File/etc/shadowpredictiveMedium
8File/goform/telnetpredictiveHigh
9File/infusions/shoutbox_panel/shoutbox_admin.phppredictiveHigh
10File/lan.asppredictiveMedium
11File/modules/profile/index.phppredictiveHigh
12File/opt/zimbra/jetty/webapps/zimbra/publicpredictiveHigh
13File/oscommerce/admin/currencies.phppredictiveHigh
14File/proc/pid/syscallpredictiveHigh
15File/rapi/read_urlpredictiveHigh
16File/rom-0predictiveLow
17File/session/list/allActiveSessionpredictiveHigh
18File/SysInfo.htmpredictiveMedium
19File/syslog_rulespredictiveHigh
20File/uncpath/predictiveMedium
21File/uploadpredictiveLow
22File/users/{id}predictiveMedium
23File/var/tmp/sess_*predictiveHigh
24File/var/WEB-GUI/cgi-bin/telnet.cgipredictiveHigh
25File/videopredictiveLow
26Fileactionphp/download.File.phppredictiveHigh
27FileActivityManagerService.javapredictiveHigh
28Fileadaptmap_reg.cpredictiveHigh
29Fileadd_comment.phppredictiveHigh
30Fileadmin.cgipredictiveMedium
31Fileadmin.phppredictiveMedium
32Fileadmin.php?action=filespredictiveHigh
33Fileadmin/admin.phppredictiveHigh
34Fileadmin/content.phppredictiveHigh
35Fileadmin/index.php?id=users/action=edit/user_id=1predictiveHigh
36Fileadmin/modules/master_file/rda_cmc.php?keywordspredictiveHigh
37Fileadmin_gallery.php3predictiveHigh
38Fileaffich.phppredictiveMedium
39Fileagent/Core/Controller/SendRequest.cpppredictiveHigh
40Filexxxxx_xxxxxx.xxxpredictiveHigh
41Filexx_xxxxxxxxxx.xxxpredictiveHigh
42Filexxx/xxxxxxxxx/xxxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
43Filexxx/xxxx_xxxx/xxxx_xxxxxxxxxxx.xxxpredictiveHigh
44Filexxx/xxxxxx/xxxxxxx/xxxxx/xxxxxxx_xxxxx.xxxxx.xxxpredictiveHigh
45Filexxx/xxxxxxxxx_xxxxxxxxx/xxxxxxxxx_xxxxxxxx_xxxx.xxxpredictiveHigh
46Filexxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
47Filexxxxxxxxxxxx/xxxx-xxx-xxxx/xxxxxx/xxxxx/xxx/xxxx/xxxxxx.xxxpredictiveHigh
48Filexxxxxx/xxxxxxxxx.xxpredictiveHigh
49Filexxxxxx/xxxxxx.xxpredictiveHigh
50Filexxxxxxx.xxxpredictiveMedium
51Filexxxxxxxxxxxx.xxxpredictiveHigh
52Filexxx/xxxx_xxxxxx.xxxpredictiveHigh
53Filexxxxxxxxxx/xxxxxxxx/xxxx/xpredictiveHigh
54Filexxxxx.xxxpredictiveMedium
55Filexxxxxxxx.xpredictiveMedium
56Filexxxxxx.xxxpredictiveMedium
57Filexxxx_xxx.xxxpredictiveMedium
58Filexxx.xxxpredictiveLow
59Filexxxxxxxx.xxxpredictiveMedium
60Filexxx-xxxx.xxxpredictiveMedium
61Filexx_xxx.xxpredictiveMedium
62Filexxx-xxx/predictiveMedium
63Filexxx-xxx/xxxxxxxxxpredictiveHigh
64Filexxx-xxx/xx_xxxxxx_xxxxxx.xxxpredictiveHigh
65Filexxxxx.xxxxxxxxxxxx.xxxpredictiveHigh
66Filexxxxxxx/xxxx_xxxxx.xxxpredictiveHigh
67Filexxx.xxxpredictiveLow
68Filexxx/xxxxxxxxxxxx/xxxxxxxx/xxxxxxxxxxxxxxxxxxxxx.xxxxxpredictiveHigh
69Filexxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
70Filexxxxxxx_xxx.xxxpredictiveHigh
71Filexxxx/xxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
72Filexxxx/xxxxxxx/xxxxxxxxx_xxxx_xxx.xxpredictiveHigh
73Filexxx-xxx/xxxxxxxxxxxxx.xxxpredictiveHigh
74Filexx_xxxx.xpredictiveMedium
75Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
76Filexxxxxx.xxxpredictiveMedium
77Filexxxxxx.xxxpredictiveMedium
78Filexxxxxxxx?xxxx=xxxxxpredictiveHigh
79Filexxxxxxx/xxxx/xxxxxxx.xpredictiveHigh
80Filexxxxx_xxx.xpredictiveMedium
81Filexxxxx.xxxpredictiveMedium
82Filex/xxxxxx/xxxxxxxx.xxxpredictiveHigh
83Filexxxx-xxxxxxxx-xxxxxx.xxxpredictiveHigh
84Filexxxxxxxx.xxxpredictiveMedium
85Filexxxxxx/xxxxxx/xxxxxx.xxxpredictiveHigh
86Filexxxxxxx-xxxxxxx/xxxx/xxxxxx/xxxxxxxx/xxx/xxxxxxxxx/xxxxxx.xxpredictiveHigh
87Filexxxxx.xxxpredictiveMedium
88Filexx_xxxxx.xxxpredictiveMedium
89Filexxxxx.xxxpredictiveMedium
90Filexxx/xxxx/xxxx_xxxxxx.xpredictiveHigh
91Filexxxxxxxxxxxxxx.xxxxpredictiveHigh
92Filexxxxxxxx.xxxpredictiveMedium
93Filexxxx.xxxpredictiveMedium
94Filexxxxxxxxxx/xxx.xxpredictiveHigh
95Filexxxxxxxxx/xx/xxxxxxxxxxxx.xxxpredictiveHigh
96Filexx/xxxx/xxx.xpredictiveHigh
97Filexxx/xxx-xxxxx.xpredictiveHigh
98Filexxxxxxx.xxxpredictiveMedium
99Filexxxxxxxxxxxxxx.xxxpredictiveHigh
100Filexxx.xxxpredictiveLow
101Filexxxx.xxxpredictiveMedium
102Filexxxxxxxxx.xxxpredictiveHigh
103Filexxxxxxxxx.xxpredictiveMedium
104Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveHigh
105Filexxxx-xxxxxxx.xpredictiveHigh
106Filexxxxxx/xxxxxxpredictiveHigh
107Filexxxxx/xxxxxxx/xxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
108Filexx/xxx/xxxxx.xpredictiveHigh
109Filexxxxx_xxxxx_xxxx_xxxxxx_xxxx_x_xx_x.xpredictiveHigh
110Filexxxxx-xxxxxxxxxx.xpredictiveHigh
111Filexxx/xxxxxx.xxxpredictiveHigh
112Filexxxxxxxx/xxxxx-xxxx-xxxxxxx.xxxpredictiveHigh
113Filexxxxx.xxxpredictiveMedium
114Filexxxxx.xxx/xxxx/xxxxx/xxxx/xxxx.xxxpredictiveHigh
115Filexxxxx.xxx?xxx=xxxx&xxx=xxxxxxxxpredictiveHigh
116Filexxxxxxxx.xxxpredictiveMedium
117Filexxxx_xxxx.xxxpredictiveHigh
118Filexxxxxxx.xxxpredictiveMedium
119Filexxxx_xxx.xpredictiveMedium
120Filexxxx.xpredictiveLow
121Filexxxxxxxxxx/xxx/xxxxxx_xxxx.xxxpredictiveHigh
122Filexxx/xxxxxxxxxx/xxxxxxxxx.xxpredictiveHigh
123Filexxxxxxxxxx/xxxxxx.xpredictiveHigh
124Filexxxxxxxxx/xxx.xpredictiveHigh
125Filexxxxxx.xpredictiveMedium
126Filexxxxxxxxx/xxxxxx.xxx.xxxpredictiveHigh
127Filexxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
128Filexxxx/xxxxxxx/xxxxxxxx.xxxx.xxxpredictiveHigh
129Filexxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
130Filexxxxx.xxxxpredictiveMedium
131Filexxxxx.xxxpredictiveMedium
132Filexxxxx.xxxpredictiveMedium
133Filexxxxxxxx.xxxpredictiveMedium
134Filexxxxxxx/xxxxxx_xxxxxxx/{xx}predictiveHigh
135Filexx-xxxxx/xxxx-xxxx.xxxpredictiveHigh
136Filexxxxxxxx/xx/xxxxxxx/xxxxxxxxxxxx.xpredictiveHigh
137Filexxxxx/__xxxx_xxxx.xxxpredictiveHigh
138Filexxxxxx.xxxxxxx_xx_xx.xxpredictiveHigh
139Filexxx/xxxx/xxxx_xxxxxx.xpredictiveHigh
140Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
141Filexxx_xxxx.xpredictiveMedium
142Filexxxxxxxxxxx.xxxpredictiveHigh
143Filexxx_xxxx.xxxpredictiveMedium
144Filexxx/xxxxxx/xxxxxxxx/xxxxx/xxxxxxxxx.xxxxpredictiveHigh
145Filexxxxxx.xxxpredictiveMedium
146Filexxxxxx/xxxxxxx-xxx-xxxpredictiveHigh
147Filexxx/xxx-xxxxx.xpredictiveHigh
148Filexxxxxxx.xxxx_xxxpredictiveHigh
149Filexxx.xxxpredictiveLow
150Filexxx/xxxx.xxxpredictiveMedium
151Filexxxxx.xxxpredictiveMedium
152Filexxxx.xxxpredictiveMedium
153Filexxxxxxxxxxxxx.xxxpredictiveHigh
154Filexxxxxxxxxxx_xxxxxxxxxxxx.xxpredictiveHigh
155Filexxxxxxxxxxx.xxxpredictiveHigh
156Filexxxxx_xxxxxx_xxxxxxxx.xxxpredictiveHigh
157Filexxxx.xxxpredictiveMedium
158Filexxxxx.xxxpredictiveMedium
159Filexxxxx.xxxpredictiveMedium
160Filexxxxxxxxxx.xxxpredictiveHigh
161Filexxxxxxxx.xxxpredictiveMedium
162Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
163Filexxxxxxxxxxxx.xxxpredictiveHigh
164Filexxxxxxxx_xxxx.xxxpredictiveHigh
165Filexxxxx.xxxpredictiveMedium
166Filexx_xxxx.xpredictiveMedium
167Filexxxx/xxxxxxxxxxxxxx/xxxx_xxxxxxx.xpredictiveHigh
168Filexxxxxxxxxx.xxxpredictiveHigh
169Filexxxxxxx.xpredictiveMedium
170Filexxxx_xxxxxxxxx.xxxpredictiveHigh
171Filexxxxxx/xxxxxxxxxxxxx.xxxxpredictiveHigh
172Filexxxx-xxxxxx.xpredictiveHigh
173Filexxxx.xpredictiveLow
174Filexxxxxxxxxxxxxx.xxxpredictiveHigh
175Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
176Filexxxx_xxxxxxxx.xxx/xxxx_xxxx.xxxpredictiveHigh
177Filexxxxx.xxxpredictiveMedium
178Filexxxx.xxxpredictiveMedium
179Filexxxxxxxx-xxxxxxxxxxx.xxxpredictiveHigh
180Filexxxxxxxxxx.xpredictiveMedium
181Filexxxxx_xxxxx.xxxpredictiveHigh
182Filexxxxx.xxxpredictiveMedium
183Filexxxxxxxxx.xxxpredictiveHigh
184Filexxxxx.xpredictiveLow
185Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
186Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
187Filexxx_xxx.xpredictiveMedium
188Filexxxx-xxxxxxxx.xxxpredictiveHigh
189Filexxxx-xxxxxxx.xxxpredictiveHigh
190Filexxxxx/xxxxxxxx.xxxpredictiveHigh
191Filexxxxx_xxxxx.xxxxpredictiveHigh
192Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
193Filexxx/xxxxxx/xxxx/xx/xx_xxxx.xpredictiveHigh
194Filexxxxxxxxx.xxpredictiveMedium
195Filexxxxxxx/xxxxxx/xxxxx/xxxxxxx/xxx/xxx.xxxpredictiveHigh
196Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
197Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
198Filexx-xxxxx.xxxpredictiveMedium
199Filexxx/xx_xxx.xxxpredictiveHigh
200Filexxxxxxxxx.xpredictiveMedium
201File\xxxxxxx\xxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
202File_xxxxxxxxx_xxxxxx_xxxxx___.xxxpredictiveHigh
203File~/xxx-xxx-xxxxxx.xxxpredictiveHigh
204Libraryxxxxx.xxxpredictiveMedium
205Libraryxxxxxxxx/xxxxxxx/xxxxxxxx/xxx/xxxx/xxxx/xxxxxx/xxx/xxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxx/xxxxxx/xxxxxxxx_xxxxxxxxxxxxxxxx.xxxxpredictiveHigh
206Libraryxxxxxx[xxxxxx_xxxxpredictiveHigh
207Libraryxxxxxx.xxxpredictiveMedium
208Libraryxxx/xxxxxxxx.xpredictiveHigh
209Libraryxxx/x.xpredictiveLow
210Libraryxxxxxxxxxx.xxxpredictiveHigh
211Libraryxx/xxx.xxx.xxxpredictiveHigh
212Libraryxxxxxx.xxxpredictiveMedium
213Libraryxxxxxxxx.xxxpredictiveMedium
214Libraryxxxxxx.xxxpredictiveMedium
215Libraryxx-xxxxxxx/xxxxxxx/xx-xxxx-xxxxxxx/xxx/xxxxx/predictiveHigh
216Argumentxx/xxpredictiveLow
217ArgumentxxxxpredictiveLow
218ArgumentxxxpredictiveLow
219Argumentxxxxx_xxxpredictiveMedium
220ArgumentxxxxxxpredictiveLow
221Argumentxxxxxx_xxxxpredictiveMedium
222ArgumentxxxxxxxxxxxxxxpredictiveHigh
223ArgumentxxxxpredictiveLow
224ArgumentxxxxxxxxpredictiveMedium
225ArgumentxxxxxpredictiveLow
226ArgumentxxxxxxpredictiveLow
227Argumentxxxxxxxx xxxx/xxx xxxx/xxxxx xxxx/xxxxxxx/xxxx/xxxxx/xxxxxx/xxxxx xx xxxxx/xxx xxxx/xxx xxxxxx/xxxx xxxx/xxx/xxxxx/xxxxxpredictiveHigh
228Argumentxxx_xxxpredictiveLow
229ArgumentxxxpredictiveLow
230ArgumentxxxxxxxxxpredictiveMedium
231ArgumentxxxxxxxxxxpredictiveMedium
232ArgumentxxxxxpredictiveLow
233Argumentxxx_xxpredictiveLow
234ArgumentxxxpredictiveLow
235ArgumentxxxxxxxxpredictiveMedium
236Argumentxxxx_xxpredictiveLow
237ArgumentxxxxxxxpredictiveLow
238Argumentxxxxxx/xxxxxxxpredictiveHigh
239Argumentxxxxxx[xxxxxx_xxxx]predictiveHigh
240ArgumentxxxxxxxpredictiveLow
241ArgumentxxxxxxxxpredictiveMedium
242Argumentxxxxxx_xxpredictiveMedium
243ArgumentxxxxxxxxxxpredictiveMedium
244ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
245ArgumentxxxxxxxxxxpredictiveMedium
246Argumentxxxx_xxxpredictiveMedium
247Argumentxxxxxxx_xxxxpredictiveMedium
248ArgumentxxxxxpredictiveLow
249Argumentxxxxxx xxxxpredictiveMedium
250Argumentxxxxxxxx_xxxxpredictiveHigh
251ArgumentxxxpredictiveLow
252Argumentxxx_xxxxpredictiveMedium
253ArgumentxxxxxxxpredictiveLow
254ArgumentxxxxxxpredictiveLow
255ArgumentxxxxxxxpredictiveLow
256ArgumentxxxxxxxxpredictiveMedium
257ArgumentxxxxxpredictiveLow
258Argumentxxxxx_xxpredictiveMedium
259ArgumentxxxxxxxxpredictiveMedium
260ArgumentxxxxxxxxxpredictiveMedium
261ArgumentxxxxpredictiveLow
262ArgumentxxxxxxxxxxpredictiveMedium
263ArgumentxxxxxxxxpredictiveMedium
264Argumentxxxxx_xxxpredictiveMedium
265ArgumentxxxxxpredictiveLow
266Argumentxxxx/xxpredictiveLow
267Argumentxxx=xxxpredictiveLow
268Argumentxxxx xxxxpredictiveMedium
269Argumentxxx-xxx-xxxxpredictiveMedium
270Argumentxxxx/xxxxpredictiveMedium
271ArgumentxxxxpredictiveLow
272Argumentxxx_xxxxxxxxxpredictiveHigh
273Argumentxxx_xxxxxxpredictiveMedium
274ArgumentxxxxpredictiveLow
275ArgumentxxpredictiveLow
276Argumentxx/xxxxxxxxx_xxpredictiveHigh
277Argumentxxxxx_xxxx/xxxxxx/xxxxxpredictiveHigh
278Argumentxxxx_xxpredictiveLow
279ArgumentxxxxxpredictiveLow
280ArgumentxxxxpredictiveLow
281ArgumentxxxxxxxxpredictiveMedium
282ArgumentxxxxxxpredictiveLow
283ArgumentxxxpredictiveLow
284ArgumentxxxxxxxxxxpredictiveMedium
285Argumentxxxxxxxxxxxx_xxxxxxpredictiveHigh
286Argumentxxxx_xxxxpredictiveMedium
287Argumentxx_xx[xxxx]predictiveMedium
288Argumentxxxx/xxxxxxxxxx xxxxx/xxxxxpredictiveHigh
289Argumentxxxx_xxxxxxpredictiveMedium
290ArgumentxxxxxpredictiveLow
291ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
292ArgumentxxxxpredictiveLow
293ArgumentxxxxpredictiveLow
294ArgumentxxxxxxxxpredictiveMedium
295ArgumentxxxxxxxxpredictiveMedium
296ArgumentxxxxxxxxxpredictiveMedium
297Argumentxxxxx_xxxx_xxxxpredictiveHigh
298Argumentxx_xxxxpredictiveLow
299ArgumentxxxxxpredictiveLow
300ArgumentxxxxxxxxpredictiveMedium
301Argumentxxxxxx/xxxxxpredictiveMedium
302ArgumentxxxxxxpredictiveLow
303ArgumentxxxxxxxxxxpredictiveMedium
304ArgumentxxxpredictiveLow
305Argumentxxxxx_xxpredictiveMedium
306ArgumentxxxxpredictiveLow
307Argumentxxx_xxxxx_xxxxxpredictiveHigh
308ArgumentxxxxxxxxxpredictiveMedium
309ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
310ArgumentxxxxxxxpredictiveLow
311ArgumentxxxxxxxxxpredictiveMedium
312Argumentxxxxx_xxxxxpredictiveMedium
313ArgumentxxxxpredictiveLow
314Argumentxxxxxxxx_xxpredictiveMedium
315Argumentxxxxx_xxxpredictiveMedium
316ArgumentxxxpredictiveLow
317ArgumentxxxxxxxxxpredictiveMedium
318ArgumentxxxxxxxxxxxpredictiveMedium
319ArgumentxxxpredictiveLow
320ArgumentxxxxpredictiveLow
321ArgumentxxxxxxxxpredictiveMedium
322Argumentxxxxxxxx/xxxxpredictiveHigh
323Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
324Argumentxxxx_xxxxx/xxxx_xxxx/xxpredictiveHigh
325ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
326Argumentxxx_xxxxpredictiveMedium
327ArgumentxxxpredictiveLow
328Argumentx-xxxxxxxxx-xxxxxxpredictiveHigh
329ArgumentxxxxxpredictiveLow
330Input Value%xx%xx%xxxxxxxx%xxxxxxx%xxxxxxxxxx.xxxxxx%xx%xx/xxxxxx%xx%xxxxx%xxxxxxx=%xxxpredictiveHigh
331Input Value-xpredictiveLow
332Input Value../predictiveLow
333Input Value../..predictiveLow
334Input Value./xxx/predictiveLow
335Input Value/xx *predictiveLow
336Input Valuex\"><xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
337Input Valuexxxxxxxx.+xxxpredictiveHigh
338Input Value…/.predictiveLow
339Network PortxxxxxpredictiveLow
340Network Portxxx/xx (xxx)predictiveMedium
341Network Portxxx/xxxpredictiveLow
342Network Portxxx/xxxpredictiveLow
343Network Portxxx/xxxxpredictiveMedium
344Network Portxxx/xxxxxpredictiveMedium
345Network Portxxx xxxxxx xxxxpredictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!