APT36 Analysisinfo

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (812)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Language

en768
ru10
zh10
pl6
es6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

US: USA166
CN: China16
NL: Netherland12
SE: Sweden8
ES: Spain4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

APT3620
Mirai4
Transparent Tribe4
RedLine Stealer3
Remcos2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined202
Operating System82
Web Browser78
Programming Language Software52
Multimedia Player Software24

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined148
Microsoft80
Sun40
IBM34
Google30

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Google Chrome30
PHP28
Microsoft Windows26
Mozilla Firefox26
Sun Java JRE20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

These are the vulnerabilities that we have identified as researched, approached, or attacked.

#VulnerabilityBaseTemp0dayTodayExpCouKEVEPSSCTICVE
1JForum jforum.page cross-site request forgery4.34.2$0-$5k$0-$5kNot definedNot defined 0.002470.02CVE-2022-26173
2Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot definedOfficial fixexpected0.911380.51CVE-2020-15906
3Pligg cloud.php sql injection6.36.3$0-$5k$0-$5kNot definedNot defined 0.000000.26
4eSyndicat Directory Software suggest-listing.php cross site scripting3.53.5$0-$5k$0-$5kNot definedNot defined 0.000000.31
5TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial fix 0.042770.74CVE-2006-6168
6Apple M1 Register s3_5_c15_c10_1 M1RACLES access control8.88.8$5k-$25k$5k-$25kNot definedNot defined 0.000000.05CVE-2021-30747
7V-EVA Press Release Script page.php sql injection7.37.1$0-$5k$0-$5kHighUnavailablepossible0.030350.12CVE-2010-5047
8Check point Firewall-1/VPN-1 IKE Aggressive Mode missing encryption5.35.1$0-$5k$0-$5kNot definedOfficial fixpossible0.785590.00CVE-2002-1623
9Fortinet FortiOS sslvpnd heap-based overflow9.89.7$0-$5k$0-$5kAttackedOfficial fixverified0.931410.06CVE-2022-42475
10PHPizabi template.class.php assignuser information disclosure4.34.2$0-$5kCalculatingHighUnavailablepossible0.023860.02CVE-2008-2018
11Joomla CMS com_easyblog sql injection6.36.1$5k-$25k$5k-$25kNot definedNot defined 0.000000.23
12PHP phpinfo cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial fix 0.140280.06CVE-2007-1287
13Zammad Article access control6.26.1$0-$5k$0-$5kNot definedOfficial fix 0.001410.06CVE-2023-29868
14Zammad privilege escalation6.36.0$0-$5k$0-$5kNot definedOfficial fix 0.005110.00CVE-2021-42086
15nginx request smuggling6.96.9$0-$5k$0-$5kNot definedNot defined 0.000000.17CVE-2020-12440
16Siemens SIMATIC CN 4100 Configuration File access control9.69.4$5k-$25k$0-$5kNot definedOfficial fix 0.001960.00CVE-2023-29130
17FLDS redir.php sql injection7.37.3$0-$5k$0-$5kHighUnavailablepossible0.002020.09CVE-2008-5928
18Vunet VU Web Visitor Analyst redir.asp sql injection7.37.1$0-$5k$0-$5kHighWorkaroundpossible0.012320.03CVE-2010-2338
19Django Admin Interface debug.py cross site scripting6.15.8$5k-$25k$0-$5kProof-of-ConceptOfficial fix 0.130950.02CVE-2016-6186
20Cisco Switch Telnet Server improper authentication4.23.8$5k-$25k$0-$5kProof-of-ConceptOfficial fix 0.000000.02

Campaigns (4)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (81)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.189.137.8vending.softjourn.if.uaAPT36C-Major12/23/2020verifiedLow
25.189.143.225APT36C-Major12/23/2020verifiedLow
35.189.152.147ccloud.armax.deAPT36C-Major12/23/2020verifiedVery Low
45.189.167.23mltx.deAPT36C-Major12/23/2020verifiedLow
55.189.167.65vmi437585.contaboserver.netAPT36C-Major12/23/2020verifiedLow
613.107.21.237APT36ElizaRAT11/29/2024verifiedVery High
713.248.169.48a904c694c05102f30.awsglobalaccelerator.comAPT36Indian Defense Officials06/22/2025verifiedHigh
815.197.148.33a2aa9ff50de748dbe.awsglobalaccelerator.comAPT36Indian Defense Officials06/22/2025verifiedHigh
923.254.119.11APT3605/31/2021verifiedLow
1038.54.84.83APT36ElizaRAT11/05/2024verifiedVery High
1164.188.12.12664.188.12.126.static.quadranet.comAPT3605/31/2021verifiedLow
1264.188.25.20564.188.25.205.static.quadranet.comAPT36Crimson RAT03/31/2022verifiedLow
1364.188.25.23264.188.25.232.static.quadranet.comAPT3605/31/2021verifiedLow
1464.227.134.248APT36ElizaRAT11/05/2024verifiedVery High
1575.98.175.79a2s83.a2hosting.comAPT36C-Major12/23/2020verifiedVery Low
1675.119.139.169server1.immacolata.comAPT3605/31/2021verifiedLow
1776.223.54.146a904c694c05102f30.awsglobalaccelerator.comAPT36Indian Defense Officials06/22/2025verifiedHigh
18XX.XXX.XXX.XXXxxxxX-xxxxx12/23/2020verifiedLow
19XX.XXX.XX.XXXxxxxX-xxxxx12/23/2020verifiedLow
20XX.XXX.XXX.XXxxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxXxxxxxxx11/05/2024verifiedVery High
21XX.XX.XX.XXXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
22XX.XXX.XXX.XXXxxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxXxxxxxxx11/05/2024verifiedVery High
23XX.XXX.XXX.XXXxxxxxxxxx.xxxxx.xxxxxXxxxx03/26/2025verifiedHigh
24XX.XX.XX.XXXxxxxX-xxxxx12/23/2020verifiedLow
25XX.XXX.XXX.XXXXxxxx05/31/2021verifiedLow
26XXX.XX.XX.XXXXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
27XXX.XXX.XX.XXXxxx-xxx-xx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
28XXX.XXX.XX.XXXxxx-xxx-xx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
29XXX.XX.XX.XXXxxxx04/06/2023verifiedMedium
30XXX.XX.XX.XXXxxxx04/06/2023verifiedMedium
31XXX.XXX.XXX.XXXXxxxxXxxxxxxx11/05/2024verifiedVery High
32XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
33XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
34XXX.XXX.XX.XXXxxxx05/31/2021verifiedLow
35XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
36XXX.XXX.XX.XXXXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
37XXX.XX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
38XXX.XXX.XXX.XXxxxx.xx-xxx-xxx-xxx.xxxXxxxx05/31/2021verifiedLow
39XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
40XXX.XX.XXX.XXXXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
41XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
42XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
43XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
44XXX.XXX.XX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
45XXX.XXX.XX.XXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
46XXX.XX.XXX.XXx-xxx-xx-xxx-xx.xxxx.xxxx.xxxxxxx.xxXxxxxX-xxxxx12/23/2020verifiedLow
47XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxx-xxxXxxxx05/31/2021verifiedLow
48XXX.XXX.X.XXXxxx-xxx-x-xxx.xxxxxx-xx-xxxxxxxxxxx.xxxXxxxx05/31/2021verifiedVery Low
49XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
50XXX.XXX.XXX.XXxxxx.xxxxxxxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
51XXX.XXX.XXX.XXXxxxxx.xxxxxxxxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
52XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
53XXX.XXX.XXX.XXXXxxxxX-xxxxx12/23/2020verifiedLow
54XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
55XXX.XXX.XXX.XXXXxxxx05/31/2021verifiedLow
56XXX.XXX.XXX.XXXXxxxx05/31/2021verifiedLow
57XXX.XXX.XXX.XXXXxxxx05/31/2021verifiedLow
58XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxxxxxx-xxxXxxxx05/31/2021verifiedLow
59XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
60XXX.XXX.XX.XXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
61XXX.XX.XXX.XXxxxx05/31/2021verifiedLow
62XXX.XX.XXX.XXxx-xx-xxx-xx-xxx.xxxxxx.xxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
63XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxx-xxxXxxxx05/31/2021verifiedLow
64XXX.XXX.XXX.XXxxxxxxxx.xxxxxxx.xxxxXxxxxX-xxxxx12/23/2020verifiedLow
65XXX.XXX.XXX.XXXxxxxx.xxxxxx.xxXxxxxX-xxxxx12/23/2020verifiedLow
66XXX.XX.XXX.XXxxx-xx-xxx-xx-xxxx.xxxxxxxxxxxx.xxxXxxxx05/31/2021verifiedLow
67XXX.XX.XXX.XXXxxxxxxxxx-x.xxx-xxxxxxx.xxxXxxxx05/31/2021verifiedVery Low
68XXX.XXX.XXX.XXxx.xxx.xxx.xxx.xxxxxx.xxxxxxx.xxxxxxxxxxxxx.xxxXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
69XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxXxxxxxxx11/29/2024verifiedVery High
70XXX.XX.XXX.XXXXxxxxXxxxxxxx11/29/2024verifiedVery High
71XXX.XX.XX.XXXXxxxx05/31/2021verifiedLow
72XXX.XXX.XXX.XXXxxxx05/31/2021verifiedLow
73XXX.XXX.XXX.XXXxxxxxx.xxxxxxx.xxxXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High
74XXX.XXX.XX.XXXXxxxx05/31/2021verifiedLow
75XXX.XXX.XX.XXXXxxxx02/22/2022verifiedLow
76XXX.X.XXX.XXXxxx-x-xxx-xxx.xxxxxx-xx-xxxxxxxxxxx.xxxXxxxx05/31/2021verifiedVery Low
77XXX.XXX.XX.XXXxx-xxx-xx-xxx-xxx.xxxxxx.xxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
78XXX.XXX.XX.XXxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
79XXX.XXX.XX.XXXxxxxxxxxx.xxxxxxxxxxxxx.xxxXxxxxX-xxxxx12/23/2020verifiedLow
80XXX.XXX.XXX.XXXxxxx05/31/2021verifiedLow
81XXX.XXX.XX.XXxxxxxxxxx.xxxxx.xxxXxxxxXxxxxx Xxxxxxx Xxxxxxxxx06/22/2025verifiedVery High

TTP - Tactics, Techniques, Procedures (18)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-21, CWE-22Path TraversalpredictiveHigh
2T1040CAPEC-102CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
4T1059CAPEC-242CWE-94Argument InjectionpredictiveHigh
5TXXXX.XXXCAPEC-XXXCWE-XX, CWE-XXXxxxx Xxxxx Xxxx XxxxxxxxxpredictiveHigh
6TXXXXCAPEC-XXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
7TXXXX.XXXCAPEC-XXXCWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
8TXXXXCAPEC-XXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
9TXXXX.XXXCAPEC-XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
10TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
11TXXXXCAPEC-XXXCWE-XXXxx XxxxxxxxxpredictiveHigh
12TXXXXCWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
13TXXXX.XXXCAPEC-XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
14TXXXX.XXXCAPEC-XXXCWE-XXXXxxxxxxxpredictiveHigh
15TXXXXCAPEC-XXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
16TXXXXCAPEC-XXXCWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
17TXXXX.XXXCAPEC-XXCWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
18TXXXX.XXXCAPEC-XCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (283)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/+CSCOE+/logon.htmlpredictiveHigh
2File/.asppredictiveLow
3File/adminpredictiveLow
4File/admin/conferences/get-all-status/predictiveHigh
5File/admin/conferences/list/predictiveHigh
6File/admin/countrymanagement.phppredictiveHigh
7File/admin/general/change-langpredictiveHigh
8File/admin/group/list/predictiveHigh
9File/admin/renewaldue.phppredictiveHigh
10File/admin/usermanagement.phppredictiveHigh
11File/artist-display.phppredictiveHigh
12File/assets/php/upload.phppredictiveHigh
13File/backend/admin/his_admin_register_patient.phppredictiveHigh
14File/backups/predictiveMedium
15File/catcompany.phppredictiveHigh
16File/CCMAdmin/serverlist.asppredictiveHigh
17File/cgi-bin/editBookmarkpredictiveHigh
18File/film-rating.phppredictiveHigh
19File/front/roomtype-details.phppredictiveHigh
20File/horde/imp/search.phppredictiveHigh
21File/index.phppredictiveMedium
22File/mcategory.phppredictiveHigh
23File/mces/?p=class/view_classpredictiveHigh
24File/movie.phppredictiveMedium
25File/nidp/idff/ssopredictiveHigh
26File/products/view_product.phppredictiveHigh
27File/real-estate-script/search_property.phppredictiveHigh
28File/searchpredictiveLow
29File/sitemagic/index.phppredictiveHigh
30File/spip.phppredictiveMedium
31File/TeleoptiWFM/Administration/GetOneTenantpredictiveHigh
32File/xxxx_xxxxxxxx_xxxxxx_xxxxx.xxxpredictiveHigh
33File/xxx/xxx/.xxxxx.xxxpredictiveHigh
34File/xx/xxxxx/xxxxxxx.xxxpredictiveHigh
35File/xxx/xxxx/_xxxxxxxx/xxxxxxxxxxxxx.xxx.xxxpredictiveHigh
36File/xxxxxxx/?/xxxxx/xxxx/xxxpredictiveHigh
37FilexxxxxpredictiveLow
38Filexxxxxxx.xxxpredictiveMedium
39Filexxxxxxxxxxx.xxxpredictiveHigh
40Filexxxxx-xxxx.xxxpredictiveHigh
41Filexxxxx/predictiveLow
42Filexxxxx/xxx/xxxxxxxxxxxxpredictiveHigh
43Filexxxxx/xxxxx.xxxpredictiveHigh
44Filexxxxx/xxxxxx-xxxxxx.xxxpredictiveHigh
45Filexxx.xxxpredictiveLow
46Filexxxxx_xxxxxx.xxxpredictiveHigh
47Filexxxxxx.xxxpredictiveMedium
48Filexxx.xxxpredictiveLow
49Filexxxxx.xxxpredictiveMedium
50Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
51Filexxxx-xxxxxxx.xpredictiveHigh
52Filexxxxxxxxxxxxxx.xxxpredictiveHigh
53Filexxxxxxxx.xxxpredictiveMedium
54Filexxxx.xxxxxxxxxxx.xxxpredictiveHigh
55Filexxxxxxxxxxx.xxxpredictiveHigh
56Filexxx xxxx xxxxxxxpredictiveHigh
57Filexxx-xxx/xxx/xxxxxxxx_xxx.xxxpredictiveHigh
58Filexxx_xxxx.xpredictiveMedium
59Filexxxxx.xx_xxxxxxxxxxx_xxx.xxxpredictiveHigh
60Filexxxxx.xxxpredictiveMedium
61Filexxxxxx.xpredictiveMedium
62Filexxxxxx.xxxpredictiveMedium
63Filexxxxxxxxx.xxpredictiveMedium
64Filexxxx-xx/xxxx/xxxxxxxxxxx.xxxpredictiveHigh
65Filexxxxxxxxx.xxxpredictiveHigh
66Filexx.xxxpredictiveLow
67Filexxx_xxxxxx_xxxx_xxxxxx.xpredictiveHigh
68Filexxxxxxxxxx.xxxpredictiveHigh
69Filexx/xxxxx/xxxxxx_xxxxx.xxxpredictiveHigh
70Filexxxxxxx.xxxpredictiveMedium
71Filexxxx.xxxpredictiveMedium
72Filexxxxxxxx.xxxpredictiveMedium
73Filexx/xxxx/xxxxxxxxxxx.xpredictiveHigh
74Filexxxxxxxxx/xxxxxxx_xxx.xxxpredictiveHigh
75Filexxxxxx.xxxpredictiveMedium
76Filexx xxxxxxxx xxxxxxxxxpredictiveHigh
77Filexxxx.xxxpredictiveMedium
78Filexxxxxxxxxxxxx.xxxxx.xxxpredictiveHigh
79Filexxx/xxxxxx.xxxpredictiveHigh
80Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
81Filexxxxx.xxxxpredictiveMedium
82Filexxxxx.xxxpredictiveMedium
83Filexxxxxxxx.xxxxpredictiveHigh
84Filexxxxxxxxxxxxxx/xxxx/xxxx_xxxxxxx.xxxpredictiveHigh
85Filexxxxxx.xxxxpredictiveMedium
86Filexxxxxxx.xxxpredictiveMedium
87Filexxxxx.xxxpredictiveMedium
88Filexxxxx_xx.xxxxpredictiveHigh
89Filexxxxxxx.xxxpredictiveMedium
90Filexx/xxxx.xxxpredictiveMedium
91Filexxxxxxx.xxxpredictiveMedium
92Filexxxxxxx/xxxxxx/xxxxx.xxxpredictiveHigh
93Filexxxxx.xxxpredictiveMedium
94Filexxxxxxxx_xxxxxx.xxxpredictiveHigh
95Filexxxxxxxx.xxxpredictiveMedium
96Filexxxxxxxxx.xxxpredictiveHigh
97Filexxxxx.xxxpredictiveMedium
98Filexxx_xxxx.xxxpredictiveMedium
99Filexxxx.xxxpredictiveMedium
100Filexxxxxxxxx.xpredictiveMedium
101Filexxx xxxxxxxx xxxxxxpredictiveHigh
102Filexxx_xxxxxxxxx.xpredictiveHigh
103Filexxxxxxx_xxxxxx_xxx.xxxxpredictiveHigh
104Filexxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
105Filexxxxxxxx.xpredictiveMedium
106Filexxxxxxxxx.xxxxpredictiveHigh
107Filexxxxx.xxxpredictiveMedium
108Filexxxxx.xxxpredictiveMedium
109Filexxxxxxxx.xxpredictiveMedium
110Filexxxxxxxx.xxxpredictiveMedium
111Filexxxxxxxx_xxxx.xxxpredictiveHigh
112Filexxxxxxxxxx_xxxxx.xxxxxxpredictiveHigh
113Filexxxxxxxxx.xxxpredictiveHigh
114FilexxpredictiveLow
115Filexxxx_xx.xpredictiveMedium
116Filexxxxx-xxxxx-xxxxx.xxxpredictiveHigh
117Filexxx/xxxx.xpredictiveMedium
118Filexxxxxxx.xxpredictiveMedium
119Filexxxxxx-xxxxxxxx/xxxxxxxxxxxxx.xxpredictiveHigh
120Filexxxxxx-xxxxxxxx/xxxxxx/xxxxxx-xxxxxx.xxpredictiveHigh
121Filexxxxxxx-xxxxxxxx/xxxxxx/xxxxxxxxxx.xxxxxxpredictiveHigh
122Filexxxxxxx-xxxxxxx.xxxpredictiveHigh
123Filexxxxxxx\xxxxxx\xxxxxxxx\xxxxxxxxxxxxxxxx.xxxpredictiveHigh
124Filexxx/xxpredictiveLow
125Filexxxxxxxx.xxxxx.xxxpredictiveHigh
126Filexxxxxxxx.xxxxpredictiveHigh
127Filexxxx-xxxxx.xxxpredictiveHigh
128Filexxxx-xxxxxxxx.xxxpredictiveHigh
129Filexxxxxx.xxxpredictiveMedium
130FilexxxxxpredictiveLow
131Filexxxxxx.xxxpredictiveMedium
132Filexxxx/xxx-xxx.xxxpredictiveHigh
133Filexxx xxxxxxxpredictiveMedium
134Filexxx_xxx.xpredictiveMedium
135Filexxxxx/xxxxx.xxpredictiveHigh
136Filexxxxxxx/xxxxxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
137Filexxxxxx.xxxpredictiveMedium
138Filexxxxxxxxxx.xxxxpredictiveHigh
139Filexx-xxxxx/xxxxx.xxxpredictiveHigh
140Filexx-xxxxx/xxxxx-xxxxxx.xxxpredictiveHigh
141Filexx-xxxxxxxx.xxxpredictiveHigh
142File~/.xxxxxxxxxxxx/predictiveHigh
143Libraryxxxx.xxxpredictiveMedium
144Libraryxxxxxxxx.xxxpredictiveMedium
145LibraryxxxxxxxxxxpredictiveMedium
146LibraryxxxxxxxxxxpredictiveMedium
147LibraryxxxxxxpredictiveLow
148LibraryxxxxxxxpredictiveLow
149LibraryxxxxxxxpredictiveLow
150Libraryxxxxxx.xxxpredictiveMedium
151Libraryxxxxxxxxxxx.xxxpredictiveHigh
152Libraryxxxxxxx.xxxpredictiveMedium
153Libraryxxxxxx.xxxpredictiveMedium
154Libraryxxxxxxx.xxxpredictiveMedium
155Libraryxxxxx.xxxpredictiveMedium
156Argument$xxx_xxxxpredictiveMedium
157Argument$_xxx['xxxx']predictiveHigh
158Argument$_xxxxxxxpredictiveMedium
159Argument--xx xxxpredictiveMedium
160ArgumentxxxpredictiveLow
161ArgumentxxpredictiveLow
162ArgumentxxxxxpredictiveLow
163ArgumentxxxxxxxxxxxxpredictiveMedium
164ArgumentxxxxxxxxxpredictiveMedium
165ArgumentxxxxxxxxpredictiveMedium
166ArgumentxxxpredictiveLow
167ArgumentxxxxxxxxxxpredictiveMedium
168Argumentxxxxxxx_xxxxx_xxpredictiveHigh
169ArgumentxxxxxxxxxxpredictiveMedium
170ArgumentxxpredictiveLow
171Argumentxxxxxxx-xxxxpredictiveMedium
172ArgumentxxxxxxpredictiveLow
173Argumentxxxxxxxxx[x]predictiveMedium
174ArgumentxxxxxpredictiveLow
175Argumentxxxxxxxx_xxxxpredictiveHigh
176ArgumentxxxxpredictiveLow
177ArgumentxxxxxxxpredictiveLow
178ArgumentxxxxxxpredictiveLow
179Argumentxxxxxxxxx()predictiveMedium
180ArgumentxxxxxpredictiveLow
181ArgumentxxxpredictiveLow
182ArgumentxxxpredictiveLow
183ArgumentxxxxpredictiveLow
184ArgumentxxxxxxxxxxxxpredictiveMedium
185ArgumentxxxxxxxpredictiveLow
186ArgumentxxxxxxpredictiveLow
187ArgumentxxpredictiveLow
188ArgumentxxxxpredictiveLow
189ArgumentxxxxxxxxxpredictiveMedium
190ArgumentxxxxxxxxxxxxpredictiveMedium
191Argumentxxxx[]predictiveLow
192ArgumentxxxxxpredictiveLow
193Argumentxxxxx_xxxxpredictiveMedium
194ArgumentxxxxxxpredictiveLow
195ArgumentxxxxpredictiveLow
196ArgumentxxxxxxxpredictiveLow
197ArgumentxxxpredictiveLow
198Argumentxxxxxx_xxxxpredictiveMedium
199ArgumentxxxxpredictiveLow
200Argumentxx-xxx-xxxxxxxpredictiveHigh
201ArgumentxxxxxxxxxxxxxxxxxxxpredictiveHigh
202Argumentxxxxxxx.xxx_xxxxxxxxxxpredictiveHigh
203Argumentxxxxx/xxxxpredictiveMedium
204Argumentxxxxx_xx/xxxxxpredictiveHigh
205Argumentxxxxx_xxpredictiveMedium
206ArgumentxxxxxxxxpredictiveMedium
207ArgumentxxxxxxxpredictiveLow
208Argumentxxx_xxxxx/xxx_xxxxxxx/xxx_xxxxx/xxx_xxx/xxx_xxx/xxx_xxxxxx/xxx_xxxxx/xxx_xxxx/xxx_xxxxpredictiveHigh
209ArgumentxxxxxxpredictiveLow
210Argumentxxxxx_xxxx_xxxxpredictiveHigh
211Argumentxxxxxxxx_xxxpredictiveMedium
212ArgumentxxxxxxxxxxxxxpredictiveHigh
213Argumentxxxxxx_xxxxxx_xxxxxxxxxpredictiveHigh
214Argumentxxxxxxxx_xxxpredictiveMedium
215Argumentxxxx_xxxxpredictiveMedium
216Argumentxxxx_xxxx/xxxx_xxxxxxxpredictiveHigh
217ArgumentxxxxxxpredictiveLow
218ArgumentxxxpredictiveLow
219ArgumentxxxxxxxxxxxxxxpredictiveHigh
220ArgumentxxxxpredictiveLow
221ArgumentxxxxxxpredictiveLow
222ArgumentxxxpredictiveLow
223ArgumentxxxpredictiveLow
224ArgumentxxxxxxxxxxpredictiveMedium
225ArgumentxxxpredictiveLow
226ArgumentxxxxxpredictiveLow
227ArgumentxxxxxpredictiveLow
228ArgumentxxxxxxxxxxxxxxxpredictiveHigh
229ArgumentxxxpredictiveLow
230Argumentxxxxxx_xxxpredictiveMedium
231ArgumentxxxpredictiveLow
232ArgumentxxxxpredictiveLow
233ArgumentxxxxxxxxpredictiveMedium
234ArgumentxxxxxxxxpredictiveMedium
235ArgumentxxxxxxxpredictiveLow
236Argumentxxxx_xxxxxpredictiveMedium
237Argumentxxx_xxxxxpredictiveMedium
238Argumentx-xxxxxxxxx-xxxpredictiveHigh
239Argument_xxxxxpredictiveLow
240Input Value%xx/%xx.xxxpredictiveMedium
241Input Value%xxpredictiveLow
242Input Value%xpredictiveLow
243Input Value%{xxxxxxxxxx}x xxx xxxxxx xxxxxxpredictiveHigh
244Input Value../../predictiveLow
245Input Value/%xx/%xx/predictiveMedium
246Input Value/'-xxxxx(xxxxxxxx.xxxxxx)-'x/x/x/predictiveHigh
247Input Value/..xpredictiveLow
248Input Valuex' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
249Input Valuexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
250Input Value</xxxxx><xxx xxx=xx xxxxxxx=xxxxx(x)>predictiveHigh
251Input Value<xxx%xxxxx='xxxx://xxx.xxxx.xx/xxxx.xxx'%xxxxxxx='xxxxxx:%xxxxx%xxxxxxx%xxxxxxx;'>predictiveHigh
252Input Value<xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
253Input Valuexxxxx.xxxpredictiveMedium
254Input Valuexxx%xx(xxxxxx*xxxx(xxxxxx(xxxxx(x)))x)predictiveHigh
255Input ValuexxxxxxpredictiveLow
256Input ValuexxxxxxxxpredictiveMedium
257Input Value\??\predictiveLow
258Pattern.xxx|xx|predictiveMedium
259Pattern/xxxxx/xxxxxx/predictiveHigh
260Pattern/xxxxxxxxx/predictiveMedium
261Patternxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxxpredictiveHigh
262Pattern<?xxxpredictiveLow
263PatternxxpredictiveLow
264Patternxxxx/x.x xxxpredictiveMedium
265Patternxxxxxxxxxxxxx.xxxxxxxxxpredictiveHigh
266PatternxxxxpredictiveLow
267PatternxxxxxxxxxxxpredictiveMedium
268Patternxxxx|xx|//predictiveMedium
269Patternxxx/x.xpredictiveLow
270Patternx|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|predictiveHigh
271Pattern`|xx|predictiveLow
272Pattern|xx xx xx xx|predictiveHigh
273Pattern|xx|predictiveLow
274Pattern|xx xx xx xx xx xx xx xx|predictiveHigh
275Pattern|xx|@|xx|xxxx|xx|x|xx|@|xx xx xx xx xx|predictiveHigh
276Pattern|xx xx|predictiveLow
277Pattern|xx xx|predictiveLow
278Pattern|xx xx|predictiveLow
279Pattern|xx xx|x|xx xx xx|x|xx xx xx xx xx xx xx|@|xx xx xx xx xx xx xx xx xx xx xx|>|xx xx xx xx|x|xx|>=~-|xx|x|xx xx xx|x|xx xx|&|xx xx|xx|xx xx|predictiveHigh
280Pattern|xx xx|predictiveLow
281Pattern|xx xx xx|predictiveMedium
282Network Portxxx/xx, xxx/xxxpredictiveHigh
283Network Portxxx/xxxxpredictiveMedium

References (10)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

This view requires CTI permissions

Just purchase a CTI license today!