BackdoorDiplomacy Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en700
zh206
ru18
ar16
de16

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows26
Qualcomm Snapdragon Auto22
Qualcomm Snapdragon Consumer IOT22
Qualcomm Snapdragon Industrial IOT22
Qualcomm Snapdragon Compute20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010755.51CVE-2006-6168
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.009430.70CVE-2010-0966
3Pligg cloud.php sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.76
4ALPACA improper authentication5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001220.10CVE-2021-3618
5nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002411.66CVE-2020-12440
6MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.013020.73CVE-2007-0354
7SolarWinds Network Performance Monitor deserialization9.89.8$0-$5k$0-$5kNot DefinedOfficial Fix0.643210.09CVE-2021-31474
8Huawei ACXXXX/SXXXX SSH Packet input validation7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.002460.08CVE-2014-8572
9MantisBT cross site scripting4.34.1$0-$5k$0-$5kNot DefinedOfficial Fix0.004820.00CVE-2014-9571
10Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix0.009362.79CVE-2020-15906
11jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.002890.09CVE-2019-7550
12Apple Mac OS X Server Wiki Server cross site scripting4.34.3$5k-$25k$0-$5kNot DefinedNot Defined0.002630.05CVE-2009-2814
13AMI Megarac API password recovery7.47.4$0-$5k$0-$5kNot DefinedNot Defined0.001870.00CVE-2022-26872
14Serendipity exit.php privileges management6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000000.23
15vBulletin redirector.php6.66.6$0-$5k$0-$5kNot DefinedNot Defined0.001060.09CVE-2018-6200
16Phpsugar PHP Melody page_manager.php cross site scripting5.24.9$0-$5k$0-$5kNot DefinedOfficial Fix0.000870.00CVE-2017-15648
17TP-Link TL-WR902AC dm_fillObjByStr stack-based overflow6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.001720.00CVE-2022-25074
18Netgear WN604/WN802Tv2/WNAP210/WNAP320/WNDAP350/WNDAP360 boardDataWW.php command injection9.89.8$5k-$25k$0-$5kHighNot Defined0.973550.04CVE-2016-1555
19TRENDnet TV-IP110WN/TV-IP121WN network.cgi memory corruption8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.002060.05CVE-2018-19240
20Hex-Rays SA IDA .NET Processor Module Remote Code Execution5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.00

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • Middle East

IOC - Indicator of Compromise (26)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
123.83.224.17823.83.224.178.16clouds.comBackdoorDiplomacy06/11/2021verifiedVery Low
223.106.140.20723.106.140.207.16clouds.comBackdoorDiplomacy06/11/2021verifiedVery Low
323.228.203.130unassigned.psychz.netBackdoorDiplomacy06/11/2021verifiedLow
423.247.47.252BackdoorDiplomacy06/11/2021verifiedLow
543.225.126.179BackdoorDiplomacy06/11/2021verifiedLow
643.251.105.139BackdoorDiplomacy06/11/2021verifiedLow
7XX.XXX.XXX.XXXXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
8XX.XXX.XXX.XXXXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
9XX.XX.XXX.XXxx.xx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxx06/11/2021verifiedVery Low
10XX.XX.XXX.XXxx.xx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxx06/11/2021verifiedVery Low
11XX.XX.XXX.XXXxx.xx.xxx.xxx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium
12XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxx.xxxXxxxxxxxxxxxxxxxx06/11/2021verifiedVery Low
13XX.XXX.XXX.XXxx.xxx.xxx.xx.xxxxx.xxxXxxxxxxxxxxxxxxxx06/11/2021verifiedVery Low
14XXX.XXX.XX.XXXXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedHigh
15XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium
16XXX.XX.XX.XXXxxx.xx.xx.xxx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium
17XXX.XX.XXX.XXXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
18XXX.XX.XXX.XXXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedHigh
19XXX.XXX.XXX.XXXXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
20XXX.XXX.XXX.XXXXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
21XXX.XX.XXX.XXXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedHigh
22XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xx.xxxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium
23XXX.XXX.X.XXxxx.xxx.x.xx.xxxxx.xxxXxxxxxxxxxxxxxxxx06/11/2021verifiedVery Low
24XXX.XXX.XX.XXxxx.xxx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium
25XXX.XXX.X.XXxxxxxxxxxxxxxx.xxxxxxx.xxXxxxxxxxxxxxxxxxx06/11/2021verifiedLow
26XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxxxxxxxxxXxxxxx Xxxx12/17/2022verifiedMedium

TTP - Tactics, Techniques, Procedures (27)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-21, CWE-22, CWE-23, CWE-24, CWE-425Path TraversalpredictiveHigh
2T1040CAPEC-102CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
4T1059CAPEC-137CWE-88, CWE-94, CWE-1321Argument InjectionpredictiveHigh
5T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CAPEC-104CWE-250, CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCAPEC-CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCAPEC-191CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
9TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
11TXXXXCAPEC-CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
12TXXXXCAPEC-1CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
13TXXXX.XXXCAPEC-492CWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHigh
14TXXXXCAPEC-184CWE-XXXXxxxxxxx Xx Xxxx Xxxxxxx Xxxxxxxxx XxxxxpredictiveHigh
15TXXXXCAPEC-108CWE-XX, CWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHigh
16TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
17TXXXXCAPEC-102CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
18TXXXXCAPEC-37CWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
19TXXXXCAPEC-466CWE-XXXXxxxxxx Xxxxxxxxxx Xx Xxx-xxxxxxxxpredictiveHigh
20TXXXX.XXXCAPEC-154CWE-XXXXxxxxxxxxxxxpredictiveHigh
21TXXXXCAPEC-38CWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
22TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
23TXXXXCAPEC-116CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
24TXXXX.XXXCAPEC-CWE-XXXxxxxxxxxxxxxpredictiveHigh
25TXXXXCAPEC-157CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
26TXXXX.XXXCAPEC-112CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
27TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (388)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/+CSCOE+/logon.htmlpredictiveHigh
2File/act/ActDao.xmlpredictiveHigh
3File/administrator/components/table_manager/predictiveHigh
4File/ajax.php?action=read_msgpredictiveHigh
5File/ajax/networking/get_netcfg.phppredictiveHigh
6File/api/clusters/local/topics/{topic}/messagespredictiveHigh
7File/api/gen/clients/{language}predictiveHigh
8File/API/infopredictiveMedium
9File/app/options.pypredictiveHigh
10File/bin/httpdpredictiveMedium
11File/cgi-bin/wapopenpredictiveHigh
12File/ci_spms/admin/categorypredictiveHigh
13File/ci_spms/admin/search/searching/predictiveHigh
14File/classes/Master.php?f=delete_appointmentpredictiveHigh
15File/classes/Master.php?f=delete_trainpredictiveHigh
16File/concat?/%2557EB-INF/web.xmlpredictiveHigh
17File/Content/Template/root/reverse-shell.aspxpredictiveHigh
18File/ctcprotocol/ProtocolpredictiveHigh
19File/dashboard/menu-list.phppredictiveHigh
20File/data/removepredictiveMedium
21File/debug/pprofpredictiveMedium
22File/ebics-server/ebics.aspxpredictiveHigh
23File/ffos/classes/Master.php?f=save_categorypredictiveHigh
24File/filemanager/upload/droppredictiveHigh
25File/forum/away.phppredictiveHigh
26File/goform/net\_Web\_get_valuepredictiveHigh
27File/goforms/rlminfopredictiveHigh
28File/GponForm/usb_restore_Form?script/predictiveHigh
29File/group1/uploapredictiveHigh
30File/hedwig.cgipredictiveMedium
31File/HNAP1predictiveLow
32File/HNAP1/SetClientInfopredictiveHigh
33File/index.php/newsletter/subscriber/new/predictiveHigh
34File/Items/*/RemoteImages/DownloadpredictiveHigh
35File/manage/IPSetup.phppredictiveHigh
36File/menu.htmlpredictiveMedium
37File/mkshop/Men/profile.phppredictiveHigh
38File/modules/profile/index.phppredictiveHigh
39File/nagiosxi/admin/banner_message-ajaxhelper.phppredictiveHigh
40File/navigate/navigate_download.phppredictiveHigh
41File/novel/bookSetting/listpredictiveHigh
42File/ocwbs/admin/?page=user/manage_userpredictiveHigh
43File/ofrs/admin/?page=user/manage_userpredictiveHigh
44File/out.phppredictiveMedium
45File/password.htmlpredictiveHigh
46File/xxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
47File/xxx_xxxxxx/xxxxxxxxxxxxxxxxx.xxxpredictiveHigh
48File/xxxxxxpredictiveLow
49File/xxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxx/predictiveHigh
50File/xxx/xxxxxx/xxxxxxxxpredictiveHigh
51File/xxxxxxxx-xxxx/xxxxxxxx_xxxx.xxxpredictiveHigh
52File/xxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
53File/xxxxxxxxx//../predictiveHigh
54File/xxxxxxx/xxxx_xxxxxxpredictiveHigh
55File/xxxxxx/xxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
56File/xxxx.xxxpredictiveMedium
57File/xxxxxxxx-xxxx/xxx/xxxxx/xxxxxxx/xxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
58File/xxx/xxxx/xxxxxxxxxxxxxxpredictiveHigh
59File/xxxpredictiveLow
60File/xxxxxxx/predictiveMedium
61File/xxxxxxxx_xxxxx/?x=xxxx_xxxxxxxpredictiveHigh
62File/xxxx/?xxxx=xx_xxxxxxxxpredictiveHigh
63File/xxxx/xxxxx/?xxxx=xxxxpredictiveHigh
64File/xx-xxxxpredictiveMedium
65Filexxx.xxxpredictiveLow
66Filexxxxxxx.xxxpredictiveMedium
67Filexxxxx/?xxxx=xxxxxxxpredictiveHigh
68Filexxxxx/xxx.xxxpredictiveHigh
69Filexxxxx/xxxx_xxxxx_xxxx.xxxpredictiveHigh
70Filexxxxx/xx_xxxxxxxx.xxxpredictiveHigh
71Filexxxxx/xxxx-xxxxx.xxxpredictiveHigh
72Filexxxxx/xxxxx.xxxpredictiveHigh
73Filexxxxx/xxxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
74Filexxxxx/xxxxxxxx/xxxx_xxxxxxx.xxxpredictiveHigh
75Filexxxxx/xxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
76Filexxxxx/xxxxxxxx.xxxxpredictiveHigh
77Filexxxxxxxxxxxxx/xxxxxxxxxx/xxx_xxxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
78Filexxxx_xxxxxxx.xxxpredictiveHigh
79Filexxx/xxx/xxxxxpredictiveHigh
80Filexxx/xxxxxxxxxxx/xxxx/xxxxxxxx_xxxxxxxxxx.xxpredictiveHigh
81Filexxxxxx/xxxxxxxxx.xxpredictiveHigh
82Filexxxxxxxxxxxxxx.xxxpredictiveHigh
83Filexxxx.xxx_xxxxx_xxxx_xxxx-xxxx.xxxpredictiveHigh
84Filexxxx/xxxxxpredictiveMedium
85Filexxxxxx.xxxxpredictiveMedium
86Filexxxxxxxxxxxx.xxx/xxxxxxxxxxx.xxx/xxxxxxxxxxx.xxx/xxxxxxxxxxx.xxxpredictiveHigh
87Filexxx_xxxxxxxxx.xxxpredictiveHigh
88Filexxxxxxxxx.xxxpredictiveHigh
89Filexx_xxxx.xxxpredictiveMedium
90Filexxxxxxxxxx_xxxxx.xxxpredictiveHigh
91Filexxx.xxxxpredictiveMedium
92Filexxxxx.xxxpredictiveMedium
93Filexx.xxxxxx.xxxx.xxxx.xxxxxxx.xxxxpredictiveHigh
94Filexxxxxx/xxx.xpredictiveMedium
95Filexxxx_xxxxxxxx/xx.xxxpredictiveHigh
96Filexxxx_xxxx.xxxpredictiveHigh
97Filexxxxxxxxxxx.xpredictiveHigh
98Filexxxxxxx.xxxxxxxx.xxxpredictiveHigh
99Filexxxx.xxpredictiveLow
100Filex_xxxxxxpredictiveMedium
101Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
102Filexx.xxxpredictiveLow
103Filexxxxxxx.xxxxx.xxxpredictiveHigh
104Filexxxxxxxxxxxx.xxxpredictiveHigh
105Filexxxx_xxxx.xxxpredictiveHigh
106Filexxxxxxxx_xxxxx_xxxxxxxxx.xxxpredictiveHigh
107Filexxxx-xxxxxxx.xxxpredictiveHigh
108Filexxxxxxxx.xxxpredictiveMedium
109Filexxxxx.xxxpredictiveMedium
110Filexxx.xpredictiveLow
111Filexxxxxxx.xxxpredictiveMedium
112Filexxxx-xxxxx.xpredictiveMedium
113Filexxxx.xpredictiveLow
114Filexxxx.xxxpredictiveMedium
115Filexxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
116Filexxxxxx_xxxxxxx.xxxpredictiveHigh
117Filexxxxxxxx.xxxxpredictiveHigh
118Filexx_xxxx.xxxpredictiveMedium
119Filexxxxxxxxx.xxx.xxxpredictiveHigh
120Filexxxxxxxxxx.xxxpredictiveHigh
121Filexxxxx.xxxpredictiveMedium
122Filexxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
123Filexxxx.xxxpredictiveMedium
124Filexxxxxxxx/xxxx_xxxxpredictiveHigh
125Filexxxxxxx/xxxxxxxxxxxx.xxxpredictiveHigh
126Filexxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
127Filexxxxx/xxxxxxx/xxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
128Filexxxx.xxxpredictiveMedium
129Filexxxx-xxxx.xxpredictiveMedium
130Filexxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
131Filexxxx.xxpredictiveLow
132Filexxxxxxxxxxxxxx.xxxpredictiveHigh
133Filexxx/xxxxxx.xxxpredictiveHigh
134Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
135Filexxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
136Filexxxxx.xxxxpredictiveMedium
137Filexxxxx.xxpredictiveMedium
138Filexxxxx.xxxpredictiveMedium
139Filexxxxx_xxxxxx_xxxxxxxxxx.xxxpredictiveHigh
140Filexxxxxxx.xpredictiveMedium
141Filexxxxxxxx/xx/xxxx_xxxxxx.xxpredictiveHigh
142Filexxxxx.xxxpredictiveMedium
143Filexxx.xpredictiveLow
144Filexxxx.xxxpredictiveMedium
145Filexxxx_xxxx.xxxpredictiveHigh
146Filexxx_xxxxxx_xxxxxx.xxpredictiveHigh
147Filexxxx.xpredictiveLow
148Filexxxxxxxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
149Filexxxxxx/xxxxxx/xxxxxx-xx.xpredictiveHigh
150Filexxxxxxxxxxxx/xxxxxx_xxxxx.xxpredictiveHigh
151Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
152Filexxxx/xxxxxxxx/xxxxxx_xxxxxxxx.xpredictiveHigh
153Filexxxxxxxxxxxx_xxx.xxpredictiveHigh
154Filexxxxx.xxxpredictiveMedium
155Filexxxxx.xxxpredictiveMedium
156Filexxxxx/predictiveLow
157Filexxxxx_xxxpredictiveMedium
158Filexxxxx/xxxxxxxx/xxxxxxxx.xxpredictiveHigh
159Filexxxxxxx.xxxpredictiveMedium
160Filexxx_xxxxxx.xpredictiveMedium
161Filexxx_xxxxx.xpredictiveMedium
162Filexxxxxx/xxxxxx.xxxpredictiveHigh
163Filexxxxxxxx.xxpredictiveMedium
164Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
165Filexx-xxxxxxx.xxxpredictiveHigh
166Filexxx_xx/xxx_xx_xxxxxx.xpredictiveHigh
167Filexxxxxxx.xxxpredictiveMedium
168Filexxxx.xxxpredictiveMedium
169Filexxxx_xxxx.xxxpredictiveHigh
170Filexxxx_xxxxxxx.xxxpredictiveHigh
171Filexxxxxxxxx.xxxpredictiveHigh
172Filexxxxxx.xxxpredictiveMedium
173Filexxxxx.xxxx_xxxx.xxxpredictiveHigh
174Filexxxx_xxxxxxx.xxxpredictiveHigh
175Filexxx_xxxxxx.xxpredictiveHigh
176Filexxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
177Filexxxxxxxxx.xxx.xxxpredictiveHigh
178Filexxx/xxxxxx_xxxx.xxxpredictiveHigh
179Filexxxxx/xxxxxxxx/xxx/xxx_xxxxx.xxxpredictiveHigh
180Filexxxxxxxx.xxxpredictiveMedium
181Filexxxxxxxxx.xxxpredictiveHigh
182Filexxxxxxx/xxx/xxxxxxx/xxxxxx/xxxx-xxxxxxxxxx/<xxxxxx>/xx.xxxpredictiveHigh
183Filexxxx.xxxpredictiveMedium
184Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
185Filexxxxxxx.xxxpredictiveMedium
186Filexxxxxxxx.xxxpredictiveMedium
187Filexxxxxxxxxxxxxx.xxxpredictiveHigh
188Filexxxxx-xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
189Filexxxx.xxxpredictiveMedium
190Filexxxxx.xxxpredictiveMedium
191Filexxxxxxxxxx.xxxpredictiveHigh
192Filexxxxxxxx.xxxpredictiveMedium
193Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
194Filexxxxxx.xpredictiveMedium
195Filexxxxxxx.xpredictiveMedium
196Filexxxxxxxxxx_xxxxx.xxxxxxpredictiveHigh
197Filexxxxxx/xxxxxxxx.xxxpredictiveHigh
198Filexxxx-xxxxxx.xpredictiveHigh
199Filexxxx.xxxpredictiveMedium
200Filexxxx.xxxpredictiveMedium
201Filexxxx/xxxxx.xxxpredictiveHigh
202Filexxxx/xxxx.xxxpredictiveHigh
203Filexxxx_xxxx.xxxpredictiveHigh
204Filexxxxxxx.xxxpredictiveMedium
205Filexxx/xxxxxxx/xxx_xxxx.xpredictiveHigh
206Filexx_xxxx/xxxx_xxxx.xpredictiveHigh
207Filexx_xxxx/xxxxxxxxxxxxxxxx.xpredictiveHigh
208Filexxx_xxxxx.xpredictiveMedium
209Filexxxxxxx.xxxpredictiveMedium
210Filexxxxxxx-xxxxxxx.xxxpredictiveHigh
211Filexxxxxxxx.xxxpredictiveMedium
212Filexxxxxx\xxxxxxxx\xx_xxxxx_xxxxxxx.xxxpredictiveHigh
213Filexxxxxxx.xxxpredictiveMedium
214Filexxxx/xxxx/xxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
215Filexxxx-xxxxx.xxxpredictiveHigh
216Filexxxx-xxxxxxxx.xxxpredictiveHigh
217Filexxxxx/xxxx_xxxxx.xpredictiveHigh
218Filexxxxxxxxx/xxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
219FilexxxxxxxxxpredictiveMedium
220Filexxxxxxx_xxxxx.xxxpredictiveHigh
221Filexxxx.xxxxpredictiveMedium
222Filexxxxxxxxx.xxxpredictiveHigh
223Filexxxxx.xxxpredictiveMedium
224Filexxxxx/xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
225Filexxxx\xxxxxxxxxx\xxxxxxx_xxxxxxxxx.xxxpredictiveHigh
226Filexxxxx.xpredictiveLow
227Filexxxx-xxxxx-xxxxxxx.xxxpredictiveHigh
228Filexxxxx.xxxpredictiveMedium
229Filexx/xxxxx/xxxxxxxx/xxxxxxxxxx-xxxx?xxxxxxxxx_xxxxxxxxx_xxxxxx[][xxxxxxxx]predictiveHigh
230Filexxx/xxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
231Filexxxxxxx-xxxx.xxxpredictiveHigh
232Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
233Filexxxxxx.xxxpredictiveMedium
234Filexxxxxx.xxxxpredictiveMedium
235File\xxxxx\xxxxxxxxxx\xxxxxxxx.xxxpredictiveHigh
236File~/xxxxx/xxxxx-xxxxxxx-xxxxx-xxxxx.xxxpredictiveHigh
237File~/xxxxxx/xxxx/xxxxxxxx-xxxx.xxxpredictiveHigh
238File~/xxxxxxxx-xxxxxxxx.xxxpredictiveHigh
239File~/xxxxxxxx/xxxxx/xxxxx-xx-xxxxxx-xxxxx-xxxx-xxxx.xxxpredictiveHigh
240File~/xxxxxx-xxxxx-xxxxxxx.xxxpredictiveHigh
241Libraryxxxxxx.xxxpredictiveMedium
242Libraryxxxx/xxx/xxxxxx.xxxpredictiveHigh
243Libraryxxxxx.xxxpredictiveMedium
244Libraryxxx/xxxxxxx.xxpredictiveHigh
245Libraryxxxxxxx/xxxxxxxx.xxxpredictiveHigh
246Libraryxxx/xxx/xxx/xxxxxx/xxxxx/xxxxxxxxx.xxxxx.xxxpredictiveHigh
247Argument$_xxxxxx['xxx_xxxx']predictiveHigh
248Argument?xxxxxxpredictiveLow
249Argumentxx_xxxxx_xxx_xxxxpredictiveHigh
250ArgumentxxxxxpredictiveLow
251Argumentxxxxx_xxxxxxxxpredictiveHigh
252ArgumentxxxpredictiveLow
253Argumentxxxx(xxxx_xxxx)predictiveHigh
254ArgumentxxxxxpredictiveLow
255Argumentxxx_xxxxx_xxxxpredictiveHigh
256ArgumentxxxxxxxxpredictiveMedium
257Argumentxxxxxxx_xxpredictiveMedium
258Argumentxxxxxxxxxx_xxxxpredictiveHigh
259ArgumentxxxpredictiveLow
260ArgumentxxxxxxxxxxpredictiveMedium
261Argumentxxxx_xxpredictiveLow
262ArgumentxxxxxxxpredictiveLow
263Argumentxxxxxxx-xxxxxxpredictiveHigh
264Argumentxxxxxxx-xxxxxxxx-xxxxxxpredictiveHigh
265Argumentxxxxx_xxpredictiveMedium
266Argumentxxxx_xxxxxpredictiveMedium
267Argumentxxxxx$xxxxxxxxxxxxxx$xxxxxxxxxxxpredictiveHigh
268ArgumentxxxxpredictiveLow
269Argumentxxxx_xxxxpredictiveMedium
270ArgumentxxxxxxxxxxxpredictiveMedium
271ArgumentxxxxpredictiveLow
272Argumentxxxx_xxxxxx=xxxxpredictiveHigh
273ArgumentxxxxxpredictiveLow
274ArgumentxxxxxxpredictiveLow
275ArgumentxxxxpredictiveLow
276ArgumentxxxxxxxxxxpredictiveMedium
277ArgumentxxxxxxxxpredictiveMedium
278ArgumentxxxxxxxxpredictiveMedium
279ArgumentxxxxxxxxxxxxxxxpredictiveHigh
280ArgumentxxxxxpredictiveLow
281Argumentxxxxx xxxx/xxxx xxxxpredictiveHigh
282ArgumentxxxxpredictiveLow
283Argumentxxxxxxxx_xxxxxxxpredictiveHigh
284ArgumentxxxxpredictiveLow
285ArgumentxxxxxxxxxxxxxxpredictiveHigh
286ArgumentxxpredictiveLow
287ArgumentxxpredictiveLow
288Argumentxx/xxxxxpredictiveMedium
289Argumentxx_xxxxxxxxpredictiveMedium
290ArgumentxxxxxpredictiveLow
291ArgumentxxxxxxxxpredictiveMedium
292ArgumentxxxxxxpredictiveLow
293ArgumentxxxxpredictiveLow
294Argumentxxxx/xxx_xxxxxxxxxpredictiveHigh
295Argumentxxxxxxxx_xxxpredictiveMedium
296ArgumentxxxxpredictiveLow
297ArgumentxxxxxxxxxxpredictiveMedium
298ArgumentxxxxxxxxpredictiveMedium
299ArgumentxxxpredictiveLow
300ArgumentxxxxxxxpredictiveLow
301ArgumentxxxpredictiveLow
302ArgumentxxxxpredictiveLow
303Argumentxxxx/xxxxxxxxxxxpredictiveHigh
304Argumentxxxxxxx/xxxxxxxpredictiveHigh
305ArgumentxxxxxxxxpredictiveMedium
306Argumentxx_xxpredictiveLow
307Argumentxxxxxx xxxxxxpredictiveHigh
308ArgumentxxxxxxxxxxxpredictiveMedium
309Argumentxxxxx_xxpredictiveMedium
310ArgumentxxxxxxxxxxpredictiveMedium
311ArgumentxxxxpredictiveLow
312ArgumentxxxxxxpredictiveLow
313ArgumentxxxxxxpredictiveLow
314Argumentxxxxxxxx/xxxxxxpredictiveHigh
315Argumentxxxx_xxxxpredictiveMedium
316Argumentxxxx_xxxxxpredictiveMedium
317ArgumentxxxpredictiveLow
318ArgumentxxxxxxpredictiveLow
319ArgumentxxxxpredictiveLow
320ArgumentxxxxpredictiveLow
321ArgumentxxxxxxxxpredictiveMedium
322ArgumentxxxxxxxxxpredictiveMedium
323ArgumentxxxxxxxpredictiveLow
324Argumentxxx_xxxxxx_xxxxpredictiveHigh
325ArgumentxxxxxxxxpredictiveMedium
326Argumentxx_xxxx_xxxxxx/xx_xxxxx_xxxxxpredictiveHigh
327Argumentxxxxxxx xxxxxpredictiveHigh
328ArgumentxxxxxxpredictiveLow
329Argumentxxxxx-xxxxxxxxxxxxxpredictiveHigh
330Argumentxxxxx_xxxxxxpredictiveMedium
331Argumentxxxxxxxx_xxpredictiveMedium
332ArgumentxxxxxxxpredictiveLow
333ArgumentxxxxxxxxxxpredictiveMedium
334ArgumentxxxxxxxxxxxxxxpredictiveHigh
335ArgumentxxxxxxxxxxpredictiveMedium
336ArgumentxxxxxxpredictiveLow
337ArgumentxxxxxxxxxxxxxxxpredictiveHigh
338Argumentxxxxxx/xxxxxx/xxxpredictiveHigh
339ArgumentxxxxxxpredictiveLow
340ArgumentxxxxpredictiveLow
341Argumentxxxxxx_xxxxxxpredictiveHigh
342ArgumentxxxxxxxxxxpredictiveMedium
343ArgumentxxxxxxxpredictiveLow
344Argumentxxxxxxxx[xxxx xxxxxxx][xxxxxxxxxxxxxxxxxx]predictiveHigh
345ArgumentxxxxxxxxxxxpredictiveMedium
346Argumentxxxx_xxxxxpredictiveMedium
347Argumentxxxx_xxxpredictiveMedium
348ArgumentxxxxpredictiveLow
349ArgumentxxxxxxxpredictiveLow
350ArgumentxxxxxxxxpredictiveMedium
351ArgumentxxxxxxpredictiveLow
352ArgumentxxxxxxxxxpredictiveMedium
353ArgumentxxxpredictiveLow
354ArgumentxxxpredictiveLow
355ArgumentxxxpredictiveLow
356ArgumentxxxxxpredictiveLow
357Argumentxxxxxx/xxxxxxxx/xxxx/xxxpredictiveHigh
358Argumentxxxx_xx[]predictiveMedium
359ArgumentxxxpredictiveLow
360ArgumentxxxpredictiveLow
361ArgumentxxxxpredictiveLow
362Argumentxxxx-xxxxxpredictiveMedium
363ArgumentxxxxxxpredictiveLow
364ArgumentxxxxxxxxpredictiveMedium
365ArgumentxxxxxxxxxxxxpredictiveMedium
366ArgumentxxxpredictiveLow
367Argumentxxxxxxx_xxxxpredictiveMedium
368ArgumentxxxxxxxxpredictiveMedium
369Argumentx-xxxxxxxxx-xxxpredictiveHigh
370Argumentx-xxxxxxxxx-xxxxxxpredictiveHigh
371Argument_xxxx[_xxx_xxxx_xxxxpredictiveHigh
372Argument__xxxxxxxxxxxxxpredictiveHigh
373Argument__xxxxxxxxxpredictiveMedium
374Input Value"><xxxxxx>xxxxx("xxx")</xxxxxx>predictiveHigh
375Input Value'"><xxxxxx>xxxxx(/xxx/)</xxxxxx>predictiveHigh
376Input Value../predictiveLow
377Input Value../..predictiveLow
378Input Value../../../../xxxxxx/xxxxxx/xxxxxx/xxxxxx.xxxxxx-x.xxxpredictiveHigh
379Input Value../../../../xxxxx_xxxxx.xxxpredictiveHigh
380Input Valuexxx' xxx xxxxx(x) xxx 'xxxx'='xxxxpredictiveHigh
381Input Value<xxxxxx>xxxxx(/xxx/)</xxxxxx>predictiveHigh
382Input Valuexxxxx%'/**/xxx/**/(xxxxxx/**/xxxx/**/xxxx/**/(xxxxxx(xxxxx(x)))xxxx)/**/xxx/**/'xxxx%'='xxxxpredictiveHigh
383Input Valuex=xpredictiveLow
384Pattern|xx xx xx|predictiveMedium
385Network PortxxxxxpredictiveLow
386Network Portxxx/xxxxpredictiveMedium
387Network Portxxx/xxxxxpredictiveMedium
388Network Portxxx/xxx (xxx)predictiveHigh

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Interested in the pricing of exploits?

See the underground prices here!