BackdoorDiplomacy Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en788
zh98
de20
es20
ar18

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us364
cn184
ru28
br18
de12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Backdoor7
BackdoorDiplomacy5
LockFile1
Mustang Panda1
Wizard Spider1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined398
Operating System50
Content Management System32
Groupware Software28
Web Server24

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined310
Microsoft64
Apache34
Google32
IBM20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows26
Google Android18
Microsoft Exchange Server16
Qualcomm Snapdragon Auto14
Qualcomm Snapdragon Compute14

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.880.04187CVE-2010-0966
2Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.890.25090CVE-2017-0055
3Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.040.04187CVE-2007-1192
4nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined6.700.00000CVE-2020-12440
5Huawei ACXXXX/SXXXX SSH Packet input validation7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.020.01055CVE-2014-8572
6MantisBT cross site scripting4.34.1$0-$5k$0-$5kNot DefinedOfficial Fix0.020.01408CVE-2014-9571
7jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.050.04499CVE-2019-7550
8Apple Mac OS X Server Wiki Server cross site scripting4.34.3$5k-$25k$0-$5kNot DefinedNot Defined0.180.01319CVE-2009-2814
9Phplinkdirectory PHP Link Directory conf_users_edit.php cross-site request forgery6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.130.04187CVE-2011-0643
10DevExpress.XtraReports.UI deserialization5.55.3$0-$5k$0-$5kNot DefinedNot Defined0.050.03804CVE-2021-36483
11Francisco Burzi PHP-Nuke Downloads Module viewsdownload sql injection5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.130.01055CVE-2005-0996
12Hancom Office 2010 SE memory corruption7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.060.07584CVE-2013-7420
13Gameloft Library X.509 Certificate cryptographic issues6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.010.00954CVE-2014-5529
14OpenSSH Authentication Username information disclosure5.34.8$5k-$25k$0-$5kHighOfficial Fix0.360.49183CVE-2016-6210
15Maran PHP Shop prod.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.010.00986CVE-2008-4879
16WoltLab Burning Book addentry.php sql injection7.36.8$0-$5k$0-$5kFunctionalUnavailable0.020.01319CVE-2006-5509
17Cisco IronPort AsyncOS Login Page cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.010.01319CVE-2009-1162
18ConnX ESP HR Management frmLogin.aspx sql injection8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.040.01055CVE-2015-4043
19Hex-Rays SA IDA .NET Processor Module Remote Code Execution5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.040.00000
20TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.630.01136CVE-2006-6168

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • Middle East

IOC - Indicator of Compromise (26)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
123.83.224.17823.83.224.178.16clouds.comBackdoorDiplomacyverifiedHigh
223.106.140.20723.106.140.207.16clouds.comBackdoorDiplomacyverifiedHigh
323.228.203.130unassigned.psychz.netBackdoorDiplomacyverifiedHigh
423.247.47.252BackdoorDiplomacyverifiedHigh
543.225.126.179BackdoorDiplomacyverifiedHigh
643.251.105.139BackdoorDiplomacyverifiedHigh
7XX.XXX.XXX.XXXXxxxxxxxxxxxxxxxxverifiedHigh
8XX.XXX.XXX.XXXXxxxxxxxxxxxxxxxxverifiedHigh
9XX.XX.XXX.XXxx.xx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxxverifiedMedium
10XX.XX.XXX.XXxx.xx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxxverifiedMedium
11XX.XX.XXX.XXXxx.xx.xxx.xxx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
12XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxxxxxxxxverifiedMedium
13XX.XXX.XXX.XXxx.xxx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxxverifiedMedium
14XXX.XXX.XX.XXXXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
15XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
16XXX.XX.XX.XXXxxx.xx.xx.xxx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
17XXX.XX.XXX.XXXxxxxxxxxxxxxxxxxverifiedHigh
18XXX.XX.XXX.XXXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
19XXX.XXX.XXX.XXXXxxxxxxxxxxxxxxxxverifiedHigh
20XXX.XXX.XXX.XXXXxxxxxxxxxxxxxxxxverifiedHigh
21XXX.XX.XXX.XXXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
22XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
23XXX.XXX.X.XXxxx.xxx.x.xx.xxxxx.xxxXxxxxxxxxxxxxxxxxverifiedMedium
24XXX.XXX.XX.XXxxx.xxx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh
25XXX.XXX.X.XXxxxxxxxxxxxxxx.xxxxxxx.xxXxxxxxxxxxxxxxxxxverifiedHigh
26XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx XxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-21, CWE-22, CWE-23, CWE-24Pathname TraversalpredictiveHigh
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CWE-74InjectionpredictiveHigh
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHigh
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CWE-250, CWE-264, CWE-266, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
8TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
9TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
10TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
11TXXXX.XXXCWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHigh
12TXXXXCWE-XXXXxxxxxxx Xx Xxxx Xxxxxxx Xxxxxxxxx XxxxxpredictiveHigh
13TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHigh
14TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
15TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
16TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
17TXXXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveHigh
18TXXXX.XXXCWE-XXXXxxxxxxxxx XxxxxxxxxpredictiveHigh
19TXXXX.XXXCWE-XXXXxxxxxxxxxxxpredictiveHigh
20TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
21TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
22TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
23TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHigh
24TXXXX.XXXCWE-XXXxxxxxxxxxxxxpredictiveHigh
25TXXXXCWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
26TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (424)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/+CSCOE+/logon.htmlpredictiveHigh
2File/.ssh/authorized_keyspredictiveHigh
3File/admin/default.asppredictiveHigh
4File/administrator/components/table_manager/predictiveHigh
5File/ajax/networking/get_netcfg.phppredictiveHigh
6File/app/options.pypredictiveHigh
7File/bin/httpdpredictiveMedium
8File/cgi-bin/wapopenpredictiveHigh
9File/ci_spms/admin/categorypredictiveHigh
10File/ci_spms/admin/search/searching/predictiveHigh
11File/classes/Master.php?f=delete_appointmentpredictiveHigh
12File/classes/Master.php?f=delete_trainpredictiveHigh
13File/cms/print.phppredictiveHigh
14File/concat?/%2557EB-INF/web.xmlpredictiveHigh
15File/Content/Template/root/reverse-shell.aspxpredictiveHigh
16File/ctcprotocol/ProtocolpredictiveHigh
17File/dashboard/menu-list.phppredictiveHigh
18File/data/removepredictiveMedium
19File/ffos/classes/Master.php?f=save_categorypredictiveHigh
20File/forum/away.phppredictiveHigh
21File/goforms/rlminfopredictiveHigh
22File/index.php/newsletter/subscriber/new/predictiveHigh
23File/Items/*/RemoteImages/DownloadpredictiveHigh
24File/loginpredictiveLow
25File/menu.htmlpredictiveMedium
26File/mkshop/Men/profile.phppredictiveHigh
27File/navigate/navigate_download.phppredictiveHigh
28File/ocwbs/admin/?page=user/manage_userpredictiveHigh
29File/ofrs/admin/?page=user/manage_userpredictiveHigh
30File/out.phppredictiveMedium
31File/owa/auth/logon.aspxpredictiveHigh
32File/password.htmlpredictiveHigh
33File/php_action/fetchSelectedUser.phppredictiveHigh
34File/proc/ioportspredictiveHigh
35File/property-list/property_view.phppredictiveHigh
36File/ptms/classes/Users.phppredictiveHigh
37File/resources//../predictiveHigh
38File/rest/api/2/searchpredictiveHigh
39File/s/predictiveLow
40File/scripts/cpan_configpredictiveHigh
41File/secure/admin/InsightDefaultCustomFieldConfig.jspapredictiveHigh
42File/services/system/setup.jsonpredictiveHigh
43File/spip.phppredictiveMedium
44File/tmppredictiveLow
45File/uncpath/predictiveMedium
46File/vloggers_merch/?p=view_productpredictiveHigh
47File/webconsole/APIControllerpredictiveHigh
48File/websocket/execpredictiveHigh
49File/whbs/?page=my_bookingspredictiveHigh
50File/xxxx/xxxxx/?xxxx=xxxxpredictiveHigh
51File/xx-xxxxpredictiveMedium
52File/xx-xxxx/xxxxxx/x.x/xxxxx?xxxpredictiveHigh
53File/_xxxxpredictiveLow
54Filex.xxx.xxx\xxxx\xxxxxxxx.xxxpredictiveHigh
55Filexxxxx.xxx/xxxxx-x.x.xxx/xxxxxxx.xxx/xxxx.xxxpredictiveHigh
56Filexxxxxxx.xxxpredictiveMedium
57Filexxxxxxxx.xxxpredictiveMedium
58Filexxxxx/?xxxx=xxxxxxxpredictiveHigh
59Filexxxxx/xxxxxxxx.xxx.xxxpredictiveHigh
60Filexxxxx/xxxx_xxxxx_xxxx.xxxpredictiveHigh
61Filexxxxx/xx_xxxxxxxx.xxxpredictiveHigh
62Filexxxxx/xxxx-xxxxx.xxxpredictiveHigh
63Filexxxxx/xxxxx.xxxpredictiveHigh
64Filexxxxx/xxxxx.xxxpredictiveHigh
65Filexxxxx/xxxxxxxx_xxxxxxxxx.xxxpredictiveHigh
66Filexxxxx/xxxxxxxx.xxxxpredictiveHigh
67Filexxxxx.xxxpredictiveMedium
68Filexxxx/xxxxxxx-xxxxxxx-xxxxxx.xxxpredictiveHigh
69Filexxxx_xxxxxxx.xxxpredictiveHigh
70Filexxx/xxx/xxxxxpredictiveHigh
71Filexxx/xxxxxxxxxxx/xxxx/xxxxxxxx_xxxxxxxxxx.xxpredictiveHigh
72Filexxxxxxxxxxxx/xxxxxxxxx/xxx/xxxxx.xxxpredictiveHigh
73Filexxxxxx/xxxxxxxxx.xxpredictiveHigh
74Filexxxx.xxx_xxxxx_xxxx_xxxx-xxxx.xxxpredictiveHigh
75Filexxxx/xxxxxpredictiveMedium
76Filexxxxxxx.xxpredictiveMedium
77Filexxxxxx/xxxxxx.xxxpredictiveHigh
78Filexxxxxx.xxxxpredictiveMedium
79Filexxxxxxxx.xxxpredictiveMedium
80Filexxxxxx.xxxpredictiveMedium
81Filexxxxx.xxxpredictiveMedium
82Filex:\xxxxxxxxpredictiveMedium
83Filexxx.xxxpredictiveLow
84Filexxx-xxxx.xxxpredictiveMedium
85Filexxx-xxx/xxxxxxxxx.xxxpredictiveHigh
86Filexxx-xxx/xxxxx/xxxxx.xxxpredictiveHigh
87Filexxxxxxxxx.xxxpredictiveHigh
88Filexxx.xxxxpredictiveMedium
89Filexx.xxxxxx.xxxx.xxxx.xxxxxxx.xxxxpredictiveHigh
90Filexxxxxx/xxx.xpredictiveMedium
91Filexxxx_xxxx.xxxpredictiveHigh
92Filexxxxxxxxxxx.xpredictiveHigh
93Filexxxxxxx.xxxxxxxx.xxxpredictiveHigh
94Filexxxxxxx.xxxpredictiveMedium
95Filexxxx/xxxxx/xxxxxxx_xxxxxx_xxxxxx.xxxpredictiveHigh
96Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
97Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
98Filexx.xxxpredictiveLow
99Filexxxxxxxxxxxx.xxxpredictiveHigh
100Filexxxx_xxxx.xxxpredictiveHigh
101Filexxxxxxxxx.xxxpredictiveHigh
102Filexxxxxxxx.xxxxpredictiveHigh
103Filexxxxxxx/xxx/xxxxxxxx/xxx/xxxxxx/xxx.xpredictiveHigh
104Filexxxxxxx.xxxpredictiveMedium
105Filexxx.xpredictiveLow
106Filexxxx-xxxxxxx.xxxpredictiveHigh
107Filexxxxxxxx.xxxpredictiveMedium
108Filexxxxx.xxxpredictiveMedium
109Filexxxxxxx.xxxpredictiveMedium
110Filexxxx-xxxxx.xpredictiveMedium
111Filexxxx.xpredictiveLow
112Filexxxx.xxxpredictiveMedium
113Filexxx.xxxpredictiveLow
114Filexxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
115Filexxxxxxxxxxxx.xxxpredictiveHigh
116Filexxxxxxx.xxxpredictiveMedium
117Filexxxxxx.xpredictiveMedium
118Filexxxxxx_xxxx.xxxpredictiveHigh
119Filexxxxxxxx.xxxxpredictiveHigh
120Filexxxxxxxxx.xxx.xxxpredictiveHigh
121Filexxxxxxx.xxxpredictiveMedium
122Filexxxxxxxxxx.xxxpredictiveHigh
123Filexxxxx.xxxpredictiveMedium
124Filexxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
125Filexxxx.xxxpredictiveMedium
126Filexxxxxxxx/xxxx_xxxxpredictiveHigh
127Filexxxx_xxxxxxx.xxx.xxxpredictiveHigh
128Filexxxxxxx/xxxxxxxxxxxx.xxxpredictiveHigh
129Filexxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
130Filexxxx-xxxx.xxpredictiveMedium
131Filexxx/xxx.xpredictiveMedium
132Filexxxxxxx.xpredictiveMedium
133Filexxx/xxxxxx.xxxpredictiveHigh
134Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
135Filexxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
136Filexxxxx.xxxpredictiveMedium
137Filexxxxx.xxxxpredictiveMedium
138Filexxxxx.xxpredictiveMedium
139Filexxxxx.xxxpredictiveMedium
140Filexxxxx_xxxxxx_xxxxxxxxxx.xxxpredictiveHigh
141Filexxxxxxx.xpredictiveMedium
142FilexxxxxxxxxxpredictiveMedium
143Filexxxxxxxx/xxxxxxxx_xxxxxxx_xxxxxx/xxxxx.xxxpredictiveHigh
144Filexxx.xpredictiveLow
145Filexxxx.xxxpredictiveMedium
146Filexxx_xxxxxx_xxxxxx.xxpredictiveHigh
147Filexx/xxxxxx.xxxxxxxxxxx.xxpredictiveHigh
148Filexxxxxx/xxxxxx/xxxxxx-xx.xpredictiveHigh
149Filexx.xxxpredictiveLow
150Filexxxxxxxxxxx/xxxxxxxxxxxxx.xpredictiveHigh
151Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
152Filexxxxxxxxx/xxxxxx.xxx.xxxpredictiveHigh
153Filexxxx/xxxxxxxx/xxxxxx_xxxxxxxx.xpredictiveHigh
154Filexxxxxxxxxxxx_xxx.xxpredictiveHigh
155Filexxxxx.xxxpredictiveMedium
156Filexxxxxxxx.xxxpredictiveMedium
157Filexxxxxxx.xxxpredictiveMedium
158Filexxxxxxx/xxxx/xxxx_xxxx.xxpredictiveHigh
159Filexxx_xxxxxx.xpredictiveMedium
160Filexxx_xxxxx.xpredictiveMedium
161Filexxxxxx/xxxxxx.xxxpredictiveHigh
162Filexxxxxxxx.xxpredictiveMedium
163Filexxxxx.xxxpredictiveMedium
164Filexx-xxxxxxx.xxxpredictiveHigh
165Filexxxxxx-xxxxxx/xxxxx/xxxxxxxxx/xxxxxxx/xxx_xxxxx.xxxpredictiveHigh
166Filexxxxxx.xxxpredictiveMedium
167Filexxx_xx/xxx_xx_xxxxxx.xpredictiveHigh
168Filexxx/xxxxxxxxx/xxx_xxxxx.xpredictiveHigh
169Filexxxx.xxxpredictiveMedium
170Filexxxx.xxxxpredictiveMedium
171Filexxxx_xxxx.xxxpredictiveHigh
172Filexxx_xx_xxx.xxpredictiveHigh
173Filexxxxxxx.xxxpredictiveMedium
174Filexxx_xxxxxx.xxpredictiveHigh
175Filexxxxxxxxx.xxx.xxxpredictiveHigh
176Filexxx%xx.xxxpredictiveMedium
177Filexxx.xxxpredictiveLow
178Filexxxxxxxx.xxxpredictiveMedium
179Filexxxxxxx/xxxxxxxx/xx-xxxxxx.xxxpredictiveHigh
180Filexxxxxxxx_xxx.xxxpredictiveHigh
181Filexxxxxx/xxxxx_xxxxxxxx/xxxxxxx.xxxxpredictiveHigh
182Filexxxxxxxxxxxx/xxx.xxx/xxxxx/xxxxx/xxxxxxxxxxx/xxxxxxxxxxxxxxxx.xxpredictiveHigh
183Filexxxxxxxxxxxx.xxxpredictiveHigh
184Filexxxx.xxxpredictiveMedium
185Filexxxxxxx.xxxpredictiveMedium
186Filexxxxxxx/xxxxxxxxxxxx.xxxpredictiveHigh
187Filexxxxxxxxxxxxxx.xxxpredictiveHigh
188Filexxxxxxxx.xxxpredictiveMedium
189Filexxxxxxx.xxxpredictiveMedium
190Filexxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]predictiveHigh
191Filexxxxxxxx.xxxpredictiveMedium
192Filexxxxx_xxx_xxxxxxpredictiveHigh
193Filexxxxxxxxxxxxxx.xxxpredictiveHigh
194Filexxxxxxxx.xxxpredictiveMedium
195Filexxxxx-xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
196Filexxxx.xxxpredictiveMedium
197Filexxxxx.xxxpredictiveMedium
198Filexxxxxxxxxx.xxxpredictiveHigh
199Filexxxxxxxx.xxxpredictiveMedium
200Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
201Filexxxxxxx.xpredictiveMedium
202Filexxx.xpredictiveLow
203Filexxxxxx_xxx_xxxxxx.xxxpredictiveHigh
204Filexxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
205Filexxxxxx.xxxpredictiveMedium
206Filexxxxxxxxxxxxx.xxxxpredictiveHigh
207Filexxxx.xxxpredictiveMedium
208Filexxxxxxxxxxxxxx.xxxpredictiveHigh
209Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
210Filexxxx.xpredictiveLow
211Filexxxxxxx.xxxpredictiveMedium
212Filexxx/xxxxxxx/xxx_xxxx.xpredictiveHigh
213Filexxx/xxxx-xxxxxxxx.xpredictiveHigh
214Filexx_xxxx/xxxx_xxxx.xpredictiveHigh
215Filexx_xxxx/xxxxxxxxxxxxxxxx.xpredictiveHigh
216Filexxx_xxxxx.xpredictiveMedium
217Filexxxxxxx.xxxpredictiveMedium
218Filexxxxxx.xxxpredictiveMedium
219Filexxxxxxxxx.xxxpredictiveHigh
220Filexxxxxx/xxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
221Filexxxxxx\xxxxxxxx\xx_xxxxx_xxxxxxx.xxxpredictiveHigh
222Filexxxx-xxxxxxx/xxxxx.xxxpredictiveHigh
223Filexxxx-xxxxxxxx.xxxpredictiveHigh
224Filexxxx-xxxxxxxx.xxxpredictiveHigh
225Filexxxxx/xxxx_xxxxx.xpredictiveHigh
226Filexxxxxxxxxx.xxxpredictiveHigh
227Filexxxxxxxxx/xxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
228Filexxxxxxx_xxxxx.xxxpredictiveHigh
229Filexxxxxx.xxxpredictiveMedium
230Filexxxxxx/xxxxxx/xxxxx/xxxxxxxx/xxxxx_xxxxx_xxxxxxxx.xxxpredictiveHigh
231Filexxxx-xxxxxxx.xxxpredictiveHigh
232Filexxxx.xxxxpredictiveMedium
233Filexxxx/xxxx.xxxpredictiveHigh
234Filexxxx/xxxxx.xxxpredictiveHigh
235Filexxxxx.xxxpredictiveMedium
236Filexxxxx.xpredictiveLow
237Filexxxx-xxxxx-xxxxxxx.xxxpredictiveHigh
238Filexxxxxxxx.xxxpredictiveMedium
239Filexxx/xxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
240Filexxxxxxx-xxxx.xxxpredictiveHigh
241Filexx-xxxxx/xxxxxxxxx.xxxpredictiveHigh
242Filexx-xxxxx/xxxx.xxxpredictiveHigh
243Filexx-xxxxx.xxxpredictiveMedium
244Filexxxxxx.xxxpredictiveMedium
245Filexxxxxx.xxxxpredictiveMedium
246File\xxxxx\xxxxxxxxxx\xxxxxxxx.xxxpredictiveHigh
247File~/xxxxx/xxxxx-xxxxxxx-xxxxx-xxxxx.xxxpredictiveHigh
248File~/xxxxxx/xxxx/xxxxxxxx-xxxx.xxxpredictiveHigh
249File~/xxxxxxxx-xxxxxxxx.xxxpredictiveHigh
250File~/xxxxxxxx/xxxxx/xxxxx-xx-xxxxxx-xxxxx-xxxx-xxxx.xxxpredictiveHigh
251File~/xxxxxx-xxxxx-xxxxxxx.xxxpredictiveHigh
252Library/xxxxxx/xxx/xxx.xx.xxxpredictiveHigh
253Libraryxxxxxx/xxx/xxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
254Libraryxxxxxx.xxxpredictiveMedium
255Libraryxxxxxxxxxx.xxxpredictiveHigh
256Libraryxxx/xxxxxx/xxxxxxxxx/xxx_xxxxxxx.xpredictiveHigh
257Libraryxxxxx.xxxpredictiveMedium
258Libraryxxxxxxxxxx.xxxpredictiveHigh
259Libraryxxxxxxx/xxxxxxxx.xxxpredictiveHigh
260Libraryxxxxxx.xxxpredictiveMedium
261Libraryxxx/xxx/xxx/xxxxxx/xxxxx/xxxxxxxxx.xxxxx.xxxpredictiveHigh
262Libraryxxxxx_xxx/xxxxxxx/xxxxxxxxx/predictiveHigh
263Argument?xxxxxxpredictiveLow
264ArgumentxxxxxxxxxxxxpredictiveMedium
265Argumentxxxxxx:/xxxxxxxx:/xxxxxxxxxxxxxx:predictiveHigh
266ArgumentxxxxpredictiveLow
267Argumentxxxxx_xxxxxpredictiveMedium
268Argumentxxxxx_xxxxxxxxpredictiveHigh
269Argumentxx_xxxx_xxxxpredictiveMedium
270ArgumentxxxxxpredictiveLow
271ArgumentxxxpredictiveLow
272Argumentxxxx(xxxx_xxxx)predictiveHigh
273ArgumentxxxxxpredictiveLow
274Argumentxxxxxx_xxxxpredictiveMedium
275ArgumentxxxxxxxxxxxxxxpredictiveHigh
276ArgumentxxxxxxxxpredictiveMedium
277ArgumentxxxxxpredictiveLow
278ArgumentxxxxxxpredictiveLow
279ArgumentxxxxxxxxxxpredictiveMedium
280Argumentxxxxxxxxxx_xxxxpredictiveHigh
281ArgumentxxxpredictiveLow
282ArgumentxxxxxxxxxpredictiveMedium
283Argumentxxxxxxxx[xxxxxxx]predictiveHigh
284ArgumentxxxxxpredictiveLow
285ArgumentxxxxxpredictiveLow
286Argumentxxxx_xxxpredictiveMedium
287Argumentxxx_xxpredictiveLow
288ArgumentxxxpredictiveLow
289ArgumentxxxpredictiveLow
290ArgumentxxxpredictiveLow
291ArgumentxxxxxxxpredictiveLow
292ArgumentxxxxxxpredictiveLow
293ArgumentxxxxxxxpredictiveLow
294Argumentxxxxxxx-xxxxxxpredictiveHigh
295Argumentxxxxxxx-xxxxxxxx-xxxxxxpredictiveHigh
296Argumentxxxx_xxxxxpredictiveMedium
297Argumentxxxxx$xxxxxxxxxxxxxx$xxxxxxxxxxxpredictiveHigh
298Argumentxxxxxx_xxpredictiveMedium
299ArgumentxxxxpredictiveLow
300Argumentxxxx_xxxxpredictiveMedium
301ArgumentxxxxpredictiveLow
302Argumentxxxx_xxxxxx=xxxxpredictiveHigh
303ArgumentxxxxxpredictiveLow
304ArgumentxxxxxxpredictiveLow
305ArgumentxxxxpredictiveLow
306ArgumentxxxxxxxxxxpredictiveMedium
307ArgumentxxxxxxxxpredictiveMedium
308ArgumentxxxxxxxxpredictiveMedium
309ArgumentxxxxxxxxxxxxxxpredictiveHigh
310ArgumentxxxxxxxxxxxxxxxpredictiveHigh
311ArgumentxxxxxpredictiveLow
312Argumentxxxxx xxxx/xxxx xxxxpredictiveHigh
313ArgumentxxxxpredictiveLow
314Argumentxxxxxxxxxxxxx_xxxxxxpredictiveHigh
315ArgumentxxxxxxpredictiveLow
316Argumentxxxxxxxx_xxxxxxxpredictiveHigh
317ArgumentxxxxxxxpredictiveLow
318ArgumentxxxxpredictiveLow
319Argumentxxxx/xxxxxxpredictiveMedium
320ArgumentxxxxxxxxxxxxxxpredictiveHigh
321Argumentxxxx_xxxxxxxpredictiveMedium
322ArgumentxxpredictiveLow
323Argumentxx/xxxxxpredictiveMedium
324ArgumentxxxxxxxxxpredictiveMedium
325ArgumentxxxxxpredictiveLow
326ArgumentxxxxxxxxpredictiveMedium
327ArgumentxxxxxxxxxpredictiveMedium
328ArgumentxxxxxxpredictiveLow
329ArgumentxxxxpredictiveLow
330ArgumentxxxxxxxpredictiveLow
331ArgumentxxxxpredictiveLow
332Argumentxxxx/xxx_xxxxxxxxxpredictiveHigh
333ArgumentxxxxxxxxxxpredictiveMedium
334ArgumentxxxxxxxxpredictiveMedium
335Argumentxx-xxxxxxxpredictiveMedium
336ArgumentxxxxpredictiveLow
337ArgumentxxxxxxxxpredictiveMedium
338ArgumentxxxpredictiveLow
339ArgumentxxxxxxxpredictiveLow
340ArgumentxxxpredictiveLow
341ArgumentxxxxpredictiveLow
342Argumentxxxx/xxxxxxxxxxxpredictiveHigh
343ArgumentxxxpredictiveLow
344ArgumentxxxxxxpredictiveLow
345ArgumentxxxxxxxxpredictiveMedium
346Argumentxxxxxx xxxxxxpredictiveHigh
347ArgumentxxxxxxpredictiveLow
348ArgumentxxxxxxxxxxxpredictiveMedium
349Argumentxxxxx_xxpredictiveMedium
350ArgumentxxxxxxxxxxpredictiveMedium
351ArgumentxxxxpredictiveLow
352ArgumentxxxxxxpredictiveLow
353ArgumentxxxxxxpredictiveLow
354Argumentxxxxxxxx/xxxxxxpredictiveHigh
355Argumentxxxx_xxxxpredictiveMedium
356ArgumentxxxxxxxxxpredictiveMedium
357ArgumentxxxxxxxxxxxxxxxpredictiveHigh
358ArgumentxxxxxpredictiveLow
359ArgumentxxxxxxxxpredictiveMedium
360ArgumentxxxxxxxxxpredictiveMedium
361Argumentxxx_xxxxxx_xxxxpredictiveHigh
362Argumentxx_xxxx_xxxxxx/xx_xxxxx_xxxxxpredictiveHigh
363Argumentxxxx_xxxxxpredictiveMedium
364ArgumentxxxxxxxxpredictiveMedium
365ArgumentxxxxxpredictiveLow
366ArgumentxxxxxxpredictiveLow
367Argumentxxxxx-xxxxxxxxxxxxxpredictiveHigh
368Argumentx_xxx_xxxpredictiveMedium
369ArgumentxxxpredictiveLow
370Argumentxxxxx_xxxxxxpredictiveMedium
371ArgumentxxxxxxxxpredictiveMedium
372ArgumentxxxpredictiveLow
373ArgumentxxxxxxxxpredictiveMedium
374ArgumentxxxxxxxpredictiveLow
375ArgumentxxxxxxxxxxpredictiveMedium
376ArgumentxxxxxxxxxpredictiveMedium
377ArgumentxxxxxxxpredictiveLow
378Argumentxxxxxx_xxx/xxxxxxx_xxxx/xxxxxxx_xxxx/xxxxxxxxx_xxxxxxpredictiveHigh
379Argumentxxxxxx/xxxxxx/xxxpredictiveHigh
380ArgumentxxxxxxpredictiveLow
381Argumentxxxxxx xxxxpredictiveMedium
382ArgumentxxxxpredictiveLow
383Argumentxxxxxx_xxxxxxpredictiveHigh
384ArgumentxxxxxxxxxxpredictiveMedium
385Argumentxxxxxxx_xxpredictiveMedium
386Argumentxxxxxxxx[xxxx xxxxxxx][xxxxxxxxxxxxxxxxxx]predictiveHigh
387Argumentxxxx_xxxxxpredictiveMedium
388Argumentxxxx_xxxpredictiveMedium
389ArgumentxxxxxxxpredictiveLow
390ArgumentxxxpredictiveLow
391ArgumentxxxxxxxpredictiveLow
392ArgumentxxxxxxxxpredictiveMedium
393ArgumentxxxxxxxxxpredictiveMedium
394ArgumentxxxpredictiveLow
395ArgumentxxxpredictiveLow
396Argumentxxxxxx/xxxxxxxx/xxxx/xxxpredictiveHigh
397Argumentxxxxx_xxxxxpredictiveMedium
398ArgumentxxxpredictiveLow
399ArgumentxxxpredictiveLow
400ArgumentxxxxxxpredictiveLow
401ArgumentxxxxxxxxpredictiveMedium
402Argumentxxxxxxxx/xxxxpredictiveHigh
403Argumentxxxxxxx_xxxxpredictiveMedium
404ArgumentxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
405ArgumentxxxxxxxxpredictiveMedium
406Argumentx-xxxxxxxxx-xxxpredictiveHigh
407Argumentx-xxxxxxxxx-xxxpredictiveHigh
408Argumentxxxxxxxxxxx[xxxxxxxx]predictiveHigh
409Argument__xxxxxxxxxxxxxpredictiveHigh
410Input Value"><xxxxxx>xxxxx("xxx")</xxxxxx>predictiveHigh
411Input Value'"><xxxxxx>xxxxx(/xxx/)</xxxxxx>predictiveHigh
412Input Value../predictiveLow
413Input Value../..predictiveLow
414Input Value/..predictiveLow
415Input Valuexxx' xxx xxxxx(x) xxx 'xxxx'='xxxxpredictiveHigh
416Input Value<xxxxxx>xxxxx(/xxx/)</xxxxxx>predictiveHigh
417Input Value?<!xxxxxx?predictiveMedium
418Input Valuexxxxx%'/**/xxx/**/(xxxxxx/**/xxxx/**/xxxx/**/(xxxxxx(xxxxx(x)))xxxx)/**/xxx/**/'xxxx%'='xxxxpredictiveHigh
419Input Valuex=xpredictiveLow
420Pattern|xx xx xx|predictiveMedium
421Network PortxxxxxpredictiveLow
422Network Portxxx/xxxxpredictiveMedium
423Network Portxxx/xxx (xxx)predictiveHigh
424Network Portxxx xxxxxx xxxxpredictiveHigh

References (3)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!