Cybergate Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en928
zh30
ru22
es6
sv6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows32
Apple iOS16
Foxit Reader10
Google Android10
WordPress10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010751.52CVE-2006-6168
2PHP phpinfo cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.017440.04CVE-2007-1287
3Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix0.009362.99CVE-2020-15906
4DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.009430.93CVE-2010-0966
5Microsoft Windows win32k.sys xxxMenuWindowProc denial of service5.55.0$5k-$25k$0-$5kProof-of-ConceptUnavailable0.000000.05
6Apple CUPS Interface cross site scripting4.34.1$5k-$25k$0-$5kHighOfficial Fix0.008640.04CVE-2014-2856
7Apache Superset External URL redirect4.94.9$5k-$25k$0-$5kNot DefinedNot Defined0.004360.05CVE-2021-28125
8MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.013022.11CVE-2007-0354
9nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002411.98CVE-2020-12440
10Oracle PeopleSoft Enterprise PeopleTools Integration Broker access control6.55.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.007990.00CVE-2017-3548
11LogicBoard CMS away.php redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000002.78
12Pirelli DRG A115 v3 ADSL Router DNS privileges management7.36.6$0-$5k$0-$5kFunctionalWorkaround0.000000.00
13NotificationX Plugin SQL Statement sql injection5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.024140.04CVE-2022-0349
14DrayTek Vigor/Vigor3910 wlogin.cgi buffer overflow9.08.9$0-$5k$0-$5kNot DefinedOfficial Fix0.001820.04CVE-2022-32548
15PHPUnit HTTP POST eval-stdin.php code injection8.58.4$0-$5k$0-$5kHighOfficial Fix0.974790.34CVE-2017-9841

IOC - Indicator of Compromise (141)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.2.151.76static-5-2-151-76.rdsnet.roCyberGate06/06/2024verifiedVery High
25.2.164.19static-5-2-164-19.rdsnet.roCyberGate06/06/2024verifiedVery High
35.2.166.137static-5-2-166-137.rdsnet.roCyberGate06/06/2024verifiedVery High
45.9.255.80static.80.255.9.5.clients.your-server.deCyberGate06/06/2024verifiedVery High
55.98.48.197host-5-98-48-197.business.telecomitalia.itCyberGate06/06/2024verifiedVery High
65.112.170.98CyberGate06/06/2024verifiedVery High
75.135.69.89CyberGate06/06/2024verifiedVery High
85.180.148.45vmi1922773.contaboserver.netCyberGate06/09/2024verifiedVery High
95.187.78.241CyberGate06/06/2024verifiedVery High
105.245.29.177CyberGate06/06/2024verifiedVery High
1113.107.21.200Cybergate05/05/2022verifiedMedium
1220.36.253.92Cybergate05/05/2022verifiedMedium
1323.5.234.11a23-5-234-11.deploy.static.akamaitechnologies.comCybergate05/05/2022verifiedMedium
1423.105.131.235mail235.nessfist.comCyberGate05/29/2021verifiedLow
1523.203.29.190a23-203-29-190.deploy.static.akamaitechnologies.comCybergate05/05/2022verifiedMedium
1625.81.16.132CyberGate06/06/2024verifiedVery High
1737.35.233.2020.233.35.37.dynamic.jazztel.esCyberGate06/24/2022verifiedLow
1837.252.5.213Cybergate07/04/2020verifiedLow
1941.217.176.33CyberGate08/14/2021verifiedMedium
2046.37.180.19746.37.180.197.srvlist.ukfast.netCyberGate06/06/2024verifiedVery High
2146.118.186.23146-118-186-231.broadband.kyivstar.netCyberGate06/06/2024verifiedVery High
2250.41.149.21250-41-149-212.athn.oh.frontiernet.netCyberGate06/06/2024verifiedVery High
2352.8.126.80ec2-52-8-126-80.us-west-1.compute.amazonaws.comCybergate04/14/2022verifiedLow
2452.201.110.209ec2-52-201-110-209.compute-1.amazonaws.comCybergate05/05/2022verifiedLow
2562.176.21.49CyberGate06/06/2024verifiedVery High
2664.27.3.10964.27.3.109-branzone.comCyberGate06/06/2024verifiedVery High
2765.55.44.109Cybergate05/05/2022verifiedMedium
2869.65.19.115ns3.no-ip.comCybergate05/05/2022verifiedMedium
2969.143.17.87c-69-143-17-87.hsd1.md.comcast.netCyberGate06/06/2024verifiedVery High
30XX.XXX.XX.XXXxxxxxxxx06/06/2024verifiedVery High
31XX.XX.XX.XXXxxxxxxx.xxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
32XX.XXX.XXX.XXXxxx-xxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
33XX.XX.XX.XXXXxxxxxxxx06/06/2024verifiedVery High
34XX.XX.XX.XXXxxxxxxxxxx-xx-xx-xx-xxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
35XX.XX.XX.XXXXxxxxxxxx06/06/2024verifiedVery High
36XX.XXX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
37XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxxx.xxxxx.xxx.xxXxxxxxxxx09/22/2021verifiedLow
38XX.XX.XX.XXxx.xx.xx.xx.xxx.xxx.xxxXxxxxxxxx06/06/2024verifiedVery High
39XX.XXX.XXX.XXXXxxxxxxxx06/06/2024verifiedVery High
40XX.XX.XX.XXXxxxxx-x_xxxx-xx-xx-xx-xxx.xxx.xxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
41XX.XXX.XXX.XXXxx.xxx.xxx.xxx.xxxxxxx.xxxxx.xxx.xxXxxxxxxxx04/09/2024verifiedHigh
42XX.XXX.XXX.XXXxxx-xxx-xxx-xx.xxxx.xxx-xxx.xxXxxxxxxxx06/06/2024verifiedHigh
43XX.XXX.XXX.XXXxxxxx-x_xxxx-xx-xxx-xxx-xxx.xxx.xxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
44XX.XXX.XXX.XXXxxxx-xxxx-x-xxx-xxx.xxx-xxx.xxx.xxxxxxx.xxXxxxxxxxx06/06/2024verifiedVery High
45XX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxx.xxxxx.xxXxxxxxxxx06/06/2024verifiedVery High
46XX.XXX.X.XXxx.xxx.x.xx.xxxxxxx.xxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedHigh
47XX.XX.XX.XXXxxxxxxxx-xxxxxx-x-x-xxxxxxx.xx-x.xxxxx.xxxxxxx.xxxXxxxxxxxx05/07/2021verifiedVery Low
48XX.XXX.XX.XXxx-xxx-xx-xx.xxxx.xxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
49XX.XXX.XX.XXXxxxxxxxx06/06/2024verifiedVery High
50XX.XXX.XXX.XXxxxxxxxx07/08/2021verifiedLow
51XX.XXX.XXX.XXXxxxxxxxx07/24/2021verifiedMedium
52XX.XXX.XXX.XXXxxxxxxxx10/21/2022verifiedHigh
53XX.XXX.XXX.XXXXxxxxxxxx08/15/2021verifiedMedium
54XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxx.xxxxxxxxx.xxxXxxxxxxxx07/25/2022verifiedHigh
55XX.XXX.XXX.XXXxxxxxx.xx-xxx-xxx-xxx.xxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
56XX.XX.XXX.XXXxxxxxxxx06/06/2024verifiedVery High
57XX.XXX.XX.XXxxxxxxxx05/15/2021verifiedVery Low
58XX.XXX.XXX.XXXxxxxxxxx06/06/2024verifiedVery High
59XX.XXX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
60XX.XX.XXX.XXXXxxxxxxxx06/06/2024verifiedVery High
61XX.XX.XXX.XXxx-xx-xxx-xx.xxx.xxx.xxXxxxxxxxx06/06/2024verifiedHigh
62XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxxx.xxxxxxx.xx.xxxxx.xxXxxxxxxxx06/06/2024verifiedHigh
63XX.XXX.XXX.XXXXxxxxxxxx06/06/2024verifiedVery High
64XX.XXX.X.XXXxx-xxx-x-xxx.xxxxxxxxxx.xxxxxx.xxxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
65XXX.XX.XXX.XXXxxxxxxxx05/05/2022verifiedMedium
66XXX.XX.XXX.XXXxxxxxxxx05/05/2022verifiedMedium
67XXX.XX.XX.XXXxxxxxxxx05/05/2022verifiedMedium
68XXX.XX.XX.XXXxxxxxxxx02/13/2022verifiedMedium
69XXX.XXX.XXX.XXXXxxxxxxxx04/08/2022verifiedMedium
70XXX.XX.XXX.XXXXxxxxxxxx06/19/2023verifiedHigh
71XXX.XX.XXX.XXXxxxx.xxxxxxx.xxXxxxxxxxx06/06/2024verifiedVery High
72XXX.XXX.XX.XXxxxxxxxx06/06/2024verifiedVery High
73XXX.XXX.XX.XXXXxxxxxxxx06/06/2024verifiedVery High
74XXX.XXX.XX.XXXxxxxxxxx06/06/2024verifiedVery High
75XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxx-xx.xxxxx.xxxXxxxxxxxx05/05/2022verifiedLow
76XXX.X.X.Xxxx.x.x.x.xxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
77XXX.X.X.Xx.x.x.xxx.xxxxx.xx.xx.xxxxxxx.xxxxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedHigh
78XXX.X.X.XxxxxxxxxxXxxxxxxxx07/04/2020verifiedLow
79XXX.XXX.X.XXxxxxx.xxxxxxxxxxxxxx.xxxXxxxxxxxx10/25/2022verifiedHigh
80XXX.XX.XXX.Xxx-xxx-xx-xxx-x-xxx.xxxxxx.xxxXxxxxxxxx05/05/2022verifiedMedium
81XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxx.xxxxxxxxx.xxxXxxxxxxxx01/09/2024verifiedVery High
82XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxx.xxxxxxxxx.xxxXxxxxxxxx03/30/2021verifiedLow
83XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxx.xxxxxxxxx.xxxXxxxxxxxx03/13/2023verifiedHigh
84XXX.XXX.XXX.XXXxxxxxxxx03/10/2024verifiedVery High
85XXX.XXX.X.XXXXxxxxxxxx05/05/2022verifiedMedium
86XXX.XXX.XX.XXXXxxxxxxxx05/05/2022verifiedMedium
87XXX.XXX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
88XXX.XXX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
89XXX.XXX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
90XXX.XXX.X.XXXxxxxxxxx05/05/2022verifiedMedium
91XXX.XX.X.XXXXxxxxxxxx05/05/2022verifiedMedium
92XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxxxxxxx.xxx.xxXxxxxxxxx09/23/2021verifiedMedium
93XXX.XXX.X.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxxxxx05/05/2022verifiedMedium
94XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxxx05/05/2022verifiedMedium
95XXX.X.X.XXXXxxxxxxxx06/06/2024verifiedVery High
96XXX.X.X.XXXXxxxxxxxx06/06/2024verifiedVery High
97XXX.XXX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
98XXX.XX.XXX.XXxxxx-xxx-xx-xxx-xx.xxxxxxx.xxxxxxxxxxx.xxxXxxxxxxxx05/06/2021verifiedLow
99XXX.XX.XXX.XXXxxxxxxxx.xxxxxx.xxx.xxXxxxxxxxx05/07/2023verifiedHigh
100XXX.XXX.XX.XXxxx-xx-xxx.xxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
101XXX.XXX.XXX.XXXxxxxxxxx08/06/2022verifiedHigh
102XXX.XXX.XXX.XXXXxxxxxxxx10/29/2022verifiedHigh
103XXX.XXX.XXX.XXXxxxxxxxx05/17/2021verifiedLow
104XXX.XXX.XXX.XXXXxxxxxxxx01/06/2023verifiedHigh
105XXX.XXX.XXX.XXxxxxxxxx11/21/2022verifiedHigh
106XXX.XXX.XX.XXXXxxxxxxxx08/16/2022verifiedHigh
107XXX.XXX.XXX.XXXXxxxxxxxx03/06/2022verifiedMedium
108XXX.XXX.XXX.XXXxxxxxxxx09/02/2021verifiedMedium
109XXX.XXX.XXX.XXXxxxxxxxx08/26/2021verifiedMedium
110XXX.XXX.XXX.XXXxxxxxxxx.xxxxxx.xxx.xxXxxxxxxxx04/15/2021verifiedLow
111XXX.XXX.XXX.XXXXxxxxxxxx08/15/2021verifiedMedium
112XXX.XXX.XX.XXXxxxxxxxx04/28/2022verifiedMedium
113XXX.XX.XXX.XXXxxx-xxx-xxx-xxx-xxx.xxx.xxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
114XXX.XXX.XX.XXxxxx-xxx.xxx.xx.xx.xxxxxxxxxx.xxxXxxxxxxxx03/23/2022verifiedMedium
115XXX.XXX.XX.XXxxx-xxx-xx-xx.xxxxxx.xxxxXxxxxxxxx05/15/2021verifiedLow
116XXX.XXX.X.XXXXxxxxxxxx06/06/2024verifiedVery High
117XXX.XX.XXX.XXxxx.xx.xxx.xx.xxxxxx.xxxx.xxx.xxx.xxXxxxxxxxx04/14/2022verifiedMedium
118XXX.XX.XXX.XXXxxxxxxxx.xxxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
119XXX.XX.XXX.XXXxxxxxx-xxx-xxx-xx-xxx.xxxxx.xxxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
120XXX.XXX.XX.XXXXxxxxxxxx06/06/2024verifiedVery High
121XXX.X.XX.XXxxxxxxxx.xxxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
122XXX.XX.XXX.XXXxxx-xx-xxx-xxx.xxxxxx.xxxxxxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
123XXX.XX.XXX.XXXxxxxxxx-xxx-xx-xxx-xxx.xxxxxxx.xxx.xxx.xxXxxxxxxxx08/11/2022verifiedMedium
124XXX.XXX.XXX.XXXxxxxx.xxx.xxx.xxx.xxxXxxxxxxxx06/06/2024verifiedVery High
125XXX.XX.XXX.XXXxxxxxxxx01/06/2023verifiedHigh
126XXX.XX.XXX.XXxxx-xx-xxx-xx.xxxx.xxxxxxx.xxxxxxx.xxXxxxxxxxx08/19/2022verifiedMedium
127XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxx.xxxxxxx.xxxxxxx.xxXxxxxxxxx08/28/2022verifiedMedium
128XXX.XXX.XX.XXXxxxx-xxx.xxx.xx.xxx-xxxxxx.xxxxxx.xxxXxxxxxxxx06/06/2024verifiedVery High
129XXX.XXX.X.XXXxxxxxxxx06/06/2024verifiedVery High
130XXX.XX.XXX.XXXXxxxxxxxx05/05/2022verifiedMedium
131XXX.XX.XX.XXXxxxxxxxx-xxx-xx-xxx.xxxxxxx.xxx.xxXxxxxxxxx06/06/2024verifiedVery High
132XXX.XXX.XX.XXxxx-xxx-xx-xx.xxx.xxxxxx.xxx.xxXxxxxxxxx08/27/2022verifiedMedium
133XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xxx.xxxxxx.xxx.xxXxxxxxxxx12/03/2023verifiedHigh
134XXX.XXX.XXX.XXXXxxxxxxxx07/26/2022verifiedHigh
135XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxxxxx05/05/2022verifiedMedium
136XXX.XXX.XXX.XXxxxx.xxxxx.xxxXxxxxxxxx05/05/2022verifiedMedium
137XXX.XXX.XXX.XXXXxxxxxxxx10/14/2023verifiedVery High
138XXX.XXX.XX.XXXXxxxxxxxx05/05/2022verifiedMedium
139XXX.XXX.XXX.XXxxxxxx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxx03/06/2022verifiedMedium
140XXX.XXX.XXX.XXXxxxxxxxxxx-xxx-xxx-xxx-xxx.xxxxxx.xxxxxxxx.xxx.xxXxxxxxxxx07/12/2021verifiedLow
141XXX.XX.X.XXxxx-xx-x-xx.xxxxxx-xx-xxxxxxxxxxx.xxxXxxxxxxxx06/06/2024verifiedHigh

TTP - Tactics, Techniques, Procedures (27)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22, CWE-24, CWE-29, CWE-425Path TraversalpredictiveHigh
2T1040CAPEC-102CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
4T1059CAPEC-242CWE-94, CWE-1321Argument InjectionpredictiveHigh
5T1059.007CAPEC-209CWE-79, CWE-80, CWE-85Cross Site ScriptingpredictiveHigh
6T1068CAPEC-122CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCAPEC-CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCAPEC-16CWE-XXX, CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
9TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
11TXXXXCAPEC-CWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
12TXXXXCAPEC-CWE-XXXXXxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxx Xxxxxxxx Xxxx Xx X Xxxxxxxx XxxxxxpredictiveHigh
13TXXXXCAPEC-CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
14TXXXX.XXXCAPEC-492CWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveHigh
15TXXXXCAPEC-108CWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHigh
16TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
17TXXXXCAPEC-102CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
18TXXXX.XXXCAPEC-CWE-XXXXxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
19TXXXXCAPEC-466CWE-XXXXxxxxxx Xxxxxxxxxx Xx Xxx-xxxxxxxxpredictiveHigh
20TXXXXCAPEC-38CWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
21TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
22TXXXXCAPEC-116CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
23TXXXX.XXXCAPEC-CWE-XXXxxxxxxxxxxxxpredictiveHigh
24TXXXXCAPEC-157CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
25TXXXX.XXXCAPEC-CWE-XXX, CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
26TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh
27TXXXXCAPEC-CWE-XXXXxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (384)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin/predictiveLow
2File/admin/admin_user.phppredictiveHigh
3File/admin/category/savepredictiveHigh
4File/admin/index2.htmlpredictiveHigh
5File/admin/list_ipAddressPolicy.phppredictiveHigh
6File/admin/subject.phppredictiveHigh
7File/adminspredictiveLow
8File/api/admin/system/store/order/listpredictiveHigh
9File/api/runscriptpredictiveHigh
10File/api/snapshots/predictiveHigh
11File/api/v1/snapshotspredictiveHigh
12File/api/v2/mapspredictiveMedium
13File/auth/auth.php?user=1predictiveHigh
14File/boaform/device_reset.cgipredictiveHigh
15File/cgi-bin/cstecgi.cgipredictiveHigh
16File/cgi-bin/cstecgi.cgi?action=loginpredictiveHigh
17File/cgi-bin/cstecgi.cgi?action=login&flag=1predictiveHigh
18File/cgi-bin/nas_sharing.cgipredictiveHigh
19File/cgi-bin/system_mgr.cgipredictiveHigh
20File/cgi-bin/wlogin.cgipredictiveHigh
21File/cgi/cpaddons_report.plpredictiveHigh
22File/common/dict/listpredictiveHigh
23File/debug/pprofpredictiveMedium
24File/DXR.axdpredictiveMedium
25File/etc/init.d/update_notifications.shpredictiveHigh
26File/farm/product.phppredictiveHigh
27File/forum/away.phppredictiveHigh
28File/goform/DhcpListClientpredictiveHigh
29File/goform/goform_get_cmd_processpredictiveHigh
30File/HNAP1/predictiveLow
31File/hrm/leaverequest.phppredictiveHigh
32File/importexport.phppredictiveHigh
33File/install/predictiveMedium
34File/Interface/DevManage/VM.phppredictiveHigh
35File/main/doctype.phppredictiveHigh
36File/main/webservices/additional_webservices.phppredictiveHigh
37File/mcpredictiveLow
38File/ndmComponents.jspredictiveHigh
39File/net/bluetooth/rfcomm/core.CpredictiveHigh
40File/opt/zimbra/jetty/webapps/zimbra/publicpredictiveHigh
41File/pdfpredictiveLow
42File/register.phppredictiveHigh
43File/registrar/predictiveMedium
44File/remote/put_filepredictiveHigh
45File/xxxxxxx/xxxxxxxxxxxxxxxpredictiveHigh
46File/xxxx.xxxpredictiveMedium
47File/xxxxxxxx-xxxx/xxx_xx/xxxxxx.xxxxpredictiveHigh
48File/xxx/x-xxxxxx/xxxxxxx/xxxxxx/xxxx/xxxxxxx.xpredictiveHigh
49File/xxxxx/xxxxxxxxxxx.xxxpredictiveHigh
50File/xxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
51File/xxx/xxxx/xxxxxxxxxxxx?xxxxxxxx=xxxxxpredictiveHigh
52File/xxxxxxxxxxxx/xxxx/xxxxxxxxxxx?_xxxxxx=xxxxx&xx=xxxxxxxxxxxxx&xxxx=xx&xxxx=x&xxxx=x_xxxxxxxxxxx+xxxx&xxxx=xxxpredictiveHigh
53File/xxxxxxxx/xxxxxx-xxxxxxx.xxxpredictiveHigh
54File/xxx/xxxpredictiveMedium
55File/xxxxxx-xxxxxxxx-xxxx/predictiveHigh
56File/xxxxxxx/xxxx.xxxpredictiveHigh
57File/xxx/xxx/xxxx/xxxx-xxx-xxxxxxxxpredictiveHigh
58File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
59File/xxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx/xxxxxxxxx_xxxxxx.xxxpredictiveHigh
60File/xxxx/xxxxxxx_xxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
61File/xxx/xxxxxxxx.xxxpredictiveHigh
62File/xx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
63File/xx/xxxxx.xxxpredictiveHigh
64Filexxxxxxxxxxx.xxxpredictiveHigh
65Filexxxxxx/xxxx/xxxxxx.xxxxpredictiveHigh
66Filexxxxxxx.xxxpredictiveMedium
67Filexxx.xxxpredictiveLow
68Filexxxxx.xxxpredictiveMedium
69Filexxxxx.xxxxpredictiveMedium
70Filexxxxx.xxx?x=xxxxxx&x=xxxxxx&x=xxxxxxpredictiveHigh
71Filexxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
72Filexxxxx/xxxxxxx/xxxxxxx_xxxx_xxxx.xxxpredictiveHigh
73Filexxxxx/xxxx/xxxxxx/xxxxxxx/xxxxxx/xxxx_xxxxxxxxxx.xxxpredictiveHigh
74Filexxxxxxx.xxxpredictiveMedium
75Filexxxxx_xxxxxx.xxxpredictiveHigh
76Filexxxxxxxx.xxxpredictiveMedium
77Filexxx/xxxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
78Filexxx/xxxxxxx/xxxxxxxxxxx_xxxxxx.xxpredictiveHigh
79Filexxxxxxx.xpredictiveMedium
80Filexxxxxxxx.xxxxpredictiveHigh
81Filexxxxxxxxxxxxxxxx.xxxxpredictiveHigh
82Filexxxxxxx.xxpredictiveMedium
83Filexxxxxxx/xxxxx/xxxx/predictiveHigh
84Filexxxxxxx.xxxxpredictiveMedium
85Filexxx/xxxxxpredictiveMedium
86Filexxxxxx.xpredictiveMedium
87Filexxxxx/xxx-xxxxxx.xpredictiveHigh
88Filexxxxxxxxxx/xxx/xxxxxxx.xxxxpredictiveHigh
89Filexxxxxxx/xxxxxxx/xxxxxxx.xxxx?xxxxpredictiveHigh
90Filexxxx.xpredictiveLow
91Filexxx-xxxx.xxxpredictiveMedium
92Filexxx-xxx/xxxxxxx_xxxxxxxxpredictiveHigh
93Filexxx-xxx/xxxxx/xxxxx/xxxxx/xxx_xxxx/xxxx_xxxx/predictiveHigh
94Filexxxxxxxx/xxxxxxxxxxx/xxxxxxx/xxxxxxx/xxxxx.xxxpredictiveHigh
95Filexxxxx.xxxpredictiveMedium
96Filexxx.xxx?xxx=xxxxx_xxxxpredictiveHigh
97Filexxxxxx/xxx.xpredictiveMedium
98Filexxxxxx/xxx.xpredictiveMedium
99Filexxxxx-xxxxxxx.xxxpredictiveHigh
100Filexxxxxx.xxxpredictiveMedium
101Filexxx_xxxxxxx_xxxxxxxxx_xxxxxxxxx_xxxxxxxxxxxxxx.xxxpredictiveHigh
102Filexxxxxx.xxxpredictiveMedium
103Filexxxxxx/x.xpredictiveMedium
104Filexxxx/xxxxxx.xxxxpredictiveHigh
105Filexxxxxxxx.xxxpredictiveMedium
106Filexxxxxxx.xxxpredictiveMedium
107Filexxxxxxx.xxxpredictiveMedium
108Filexxxxxxx.xxxpredictiveMedium
109Filexxxxx.xxxpredictiveMedium
110Filexxxxxxxxxxxxxxxx-xxx/xxx/xxxx/xxxx/xxx/xxxxxx/xxxxxxxxxxxxxxxx/xxx/xxxxxxxx/xxxx/xxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
111Filexxxxxxx/xxx/xxx/xxx_xxxxxx.xpredictiveHigh
112Filexxxxxxx/xxxxx/xxxxx/xxxxxx-xxx.xpredictiveHigh
113Filexxxxx.xxxpredictiveMedium
114Filexxxxx_xx.xxpredictiveMedium
115Filexxxxxxx.xpredictiveMedium
116Filexxxxxxxxxxx-xxx.xxxpredictiveHigh
117Filexxxx-xxxx.xpredictiveMedium
118Filexxxx.xxxpredictiveMedium
119Filexx/xxx/xxxxxx/xxxxxxx.xpredictiveHigh
120Filexxxx.xxxpredictiveMedium
121Filexxxxxx/xxxxx/xxxx.xxxxxxxx.xxxpredictiveHigh
122Filexxxxxxxxxx.xxxpredictiveHigh
123Filexxxxxx.xxxxpredictiveMedium
124Filexx-xxxxxxx/xxxxxxxpredictiveHigh
125Filexxxxxx/xxxxxxxxxxxxxpredictiveHigh
126Filexxxx.xxxpredictiveMedium
127Filexxxx_xxxxxxx.xxx.xxxpredictiveHigh
128Filexxxxxxxxx.xxxpredictiveHigh
129Filexxxxxx_xxxx_xxxxxx.xxxpredictiveHigh
130Filexxxx.xxxpredictiveMedium
131Filexxxx.xpredictiveLow
132Filexxxx_xxxx.xpredictiveMedium
133Filexxxxxx_xxxxxxx.xxxxpredictiveHigh
134Filexxx/xxxxxx.xxxpredictiveHigh
135Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
136Filexxxxx.xxxpredictiveMedium
137Filexxxxx.xxxxpredictiveMedium
138Filexxxxx.xxxpredictiveMedium
139Filexxxxxxxx.xxxpredictiveMedium
140Filexxxxxxx.xpredictiveMedium
141Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
142Filexxxxxxxxxxxxx.xxxpredictiveHigh
143Filexxxxx.xpredictiveLow
144Filexxx/xxxxxx.xxxpredictiveHigh
145Filexxxx.xpredictiveLow
146Filexxx/xxxxxxxxxx/xxx/xxxxxxxxxx/xxxxxxxxx.xxpredictiveHigh
147Filexxxxxxxxxx/xxxxxxxxxxxxx.xpredictiveHigh
148Filexxxxxxx/xxxx.xpredictiveHigh
149Filexxxxxxx.xxpredictiveMedium
150Filexxxxx.xxxpredictiveMedium
151Filexxxxx.xxxpredictiveMedium
152Filexxxxx.xxxxpredictiveMedium
153Filexxxxxxxxxx/xx.xpredictiveHigh
154Filexxxx.xxxpredictiveMedium
155Filexxxxxxxx.xxxpredictiveMedium
156Filexxxx/xxxxxxxxxx.xxxpredictiveHigh
157Filexxxxxx.xxxpredictiveMedium
158Filexxxxx.xxx.xxxpredictiveHigh
159Filexxx_xxxxx.xxxx/xxx_xxxxxxxx.xxxxpredictiveHigh
160Filexxx/xxxxxxxxx/xxx_xxxxxxxxx.xpredictiveHigh
161Filexxx/xxx/xx_xxx.xpredictiveHigh
162Filexxxxxx.xxxpredictiveMedium
163Filexxxxxxxxxxx.xxxpredictiveHigh
164Filexxx/xx/xxx/xxxxxxxxxxpredictiveHigh
165Filexx/xxxxxxx/xxxxxxxx/xxx-xxxxxx.xpredictiveHigh
166Filexx/xxxxxxx/xxxxxxxx/xxx.xpredictiveHigh
167Filexxxxx.xxxpredictiveMedium
168Filexxxxxxxx-xxxxxxxx.xxxpredictiveHigh
169Filexxxxxxxxxxx.xxxxpredictiveHigh
170Filexxxxxxx.xxxpredictiveMedium
171Filexxxxxxx-xxxxxx.xxxpredictiveHigh
172Filexxxxxx/xxxxxxxxxx/xxx/xxxx.xxxpredictiveHigh
173Filexxxxxx/xx_xxxxxx_xxxxxx/xxxxx/xxxxx.xxxpredictiveHigh
174Filexxxxxxx/xxx/xxxxxxx/xxxxxx/xxxx-xxxxxxxxxx/<xxxxxx>/xx.xxxpredictiveHigh
175Filexxxxxxx.xxxpredictiveMedium
176Filexxxxxxxxxx.xxxpredictiveHigh
177Filexxxxxxxxxxxx.xxxpredictiveHigh
178Filexxxxxx_xxxx-xxxpredictiveHigh
179Filexxxxxxx.xxpredictiveMedium
180Filexxx.xxxpredictiveLow
181Filexx_xxx.xxpredictiveMedium
182Filexxxxxx.xxpredictiveMedium
183Filexxxxxxx/xxxxxxxxxxpredictiveHigh
184Filexxxxxx.xxxpredictiveMedium
185Filexxxxxx-xxxxx.xxxpredictiveHigh
186Filexxxxxxx.xxxpredictiveMedium
187Filexxxx_xxxxxxx.xxxpredictiveHigh
188Filexx_xxxxx_xxxx.xxxpredictiveHigh
189Filexxx.xxxxpredictiveMedium
190Filexxxxxxx.xxxpredictiveMedium
191Filexxxxxxx.xxxpredictiveMedium
192Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
193Filexxx/xxxx/xxxx/xx/xxxxx/xxxxx/xxxx/xxxxxxxxxxxx.xxxxpredictiveHigh
194Filexxx/xxxx/xxxx/xxx/xxxxxxxxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
195Filexxxxxxx_xxxx.xxxpredictiveHigh
196Filexxxxxx_xxxxxx_xxxxx.xxxpredictiveHigh
197Filexxxxxxxx.xxxpredictiveMedium
198Filexxxx-xxxxx.xxxpredictiveHigh
199Filexxxx-xxxxx.xxxpredictiveHigh
200Filexxxx-xxxxxxxx.xxxpredictiveHigh
201Filexxxxx/xxxxx/xxxxxxxxx/xxxxxx.xxxpredictiveHigh
202Filexxxxx_xxx_xxxxxxx.xxxpredictiveHigh
203Filexxxxx.xxxpredictiveMedium
204Filexxxxxxxx-xxx.xxxpredictiveHigh
205Filexx/xxxxxx/xxxxxxxxxxxpredictiveHigh
206Filexx/x.x.xx.xxxxxx/xxxxxxx/xx/xxxxx.xx.xxxxxxxxxpredictiveHigh
207Filexxx.xxxpredictiveLow
208Filexxxxxx.xxxpredictiveMedium
209Filexxxxxx/xxxxx.xxx/xxxx/xxxxpredictiveHigh
210Filexxxxxx_xxxxxxxx.xxxpredictiveHigh
211Filexxxx.xxxxpredictiveMedium
212Filexxxxxxxx/xxxxxxxxpredictiveHigh
213Filexxxxx/xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
214Filexxxx_xxxxx.xxxpredictiveHigh
215Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
216Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
217Filexx/xxxxxxxxx/xxpredictiveHigh
218Filexxxxxx.xxxpredictiveMedium
219Filexxx_xxxxx.xxxxpredictiveHigh
220Filexxxxx.xxxxxx.xxxxxxx.xxxpredictiveHigh
221Filexxxxxx/xxxxxxx/xxxxxxxx/xxxx/xxxxxxx.xxxpredictiveHigh
222Filexxxxxx\xxxxxx\xxxxxxxxx-xxxxxx-xxxxxxx\xxx\xxxxxxx\xxxxxxxxxxxxx.xxxpredictiveHigh
223Filexxxxxx/xxxxxx.xxxxpredictiveHigh
224Filexxxx_xxxxxxx.xxxpredictiveHigh
225Filexxxxxx.xxxpredictiveMedium
226Filexxxxxxxx.xxxpredictiveMedium
227Filexxxxxx.xxxpredictiveMedium
228Filexx.xxxxxx/xxxxxxx/predictiveHigh
229Filexx-xxxxxxx/xxxxxxx/xxxx-xx-xxxx/predictiveHigh
230Filexx-xxxx.xxxpredictiveMedium
231Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
232Filexx-xxxxxxxxxxx.xxxpredictiveHigh
233Filexx-xxxxxxxxx.xxxpredictiveHigh
234File\xx_xxxx\xxx\xxxxxxxx\xxxxxxxx_xxxxxxx.xxpredictiveHigh
235File{{xxxxxxxx}}/xxxxxpredictiveHigh
236Libraryxx/xxx/xxxx_xxxxxx.xxxpredictiveHigh
237Libraryx:/xxxxxxx xxxxx/xxxxx/xxxxxxx.xxxpredictiveHigh
238Libraryxxxxxx_xxxxxxxx.xxxpredictiveHigh
239Libraryxxxxxxx-xxxxxx.xxxpredictiveHigh
240Libraryxxxxxxx/xxxxxxxxx/xxxxxx.xpredictiveHigh
241Libraryxxx/xxxx.xpredictiveMedium
242Libraryxxx/xx/xxxxx/xxxxxxxxxx/xxxx.xxpredictiveHigh
243Libraryxxx/xxxx/xxxxxxxxxxxxxx_xxxxxxx.xxpredictiveHigh
244Libraryxxx/xxx.xpredictiveMedium
245Libraryxxxxxx.xxxpredictiveMedium
246Libraryxxxxx.xxxpredictiveMedium
247Libraryxxxxxxx.xxxpredictiveMedium
248Libraryxxxxxx.xxxpredictiveMedium
249Argument.xxxxxxxxpredictiveMedium
250Argumentxx/xxpredictiveLow
251ArgumentxxxxxxpredictiveLow
252ArgumentxxxxxpredictiveLow
253ArgumentxxxxpredictiveLow
254ArgumentxxxxxxxxxxxxxpredictiveHigh
255ArgumentxxxxxxxxxxpredictiveMedium
256ArgumentxxxxxxxxxxxxxxpredictiveHigh
257ArgumentxxxxxxxxpredictiveMedium
258ArgumentxxxxxxxxpredictiveMedium
259Argumentxxxx_xxxpredictiveMedium
260ArgumentxxxxxxpredictiveLow
261ArgumentxxxxxxxpredictiveLow
262ArgumentxxxxxxxxxxpredictiveMedium
263ArgumentxxxpredictiveLow
264Argumentxxxxx_xxxxpredictiveMedium
265ArgumentxxxxxxxpredictiveLow
266Argumentxxxxxxx xxxx/xxxxxxxxxxxpredictiveHigh
267ArgumentxxxxxxpredictiveLow
268ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
269ArgumentxxxxxxxxxxxxpredictiveMedium
270Argumentxxxx_xxpredictiveLow
271ArgumentxxxxxpredictiveLow
272Argumentxxxxxxxxx_xxxxxx/xxxxxxxxx_xxxxxxpredictiveHigh
273ArgumentxxxxxxxxxpredictiveMedium
274ArgumentxxxxxxxpredictiveLow
275ArgumentxxxxxxpredictiveLow
276ArgumentxxxxxxxxxxxxpredictiveMedium
277ArgumentxxxxxxxxxxxxxxxpredictiveHigh
278ArgumentxxxxxpredictiveLow
279ArgumentxxxpredictiveLow
280ArgumentxxxxpredictiveLow
281ArgumentxxxxpredictiveLow
282ArgumentxxxxxxxxpredictiveMedium
283Argumentxxxxxxxx/xxxxxxx/xxxxxpredictiveHigh
284ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
285Argumentxxxxxxxxx/xxxxxxxx/xxxxxxxxpredictiveHigh
286Argumentxx_xxxxpredictiveLow
287ArgumentxxxxxxxpredictiveLow
288ArgumentxxxxxpredictiveLow
289Argumentxx_xxpredictiveLow
290Argumentxx=xxxxxx)predictiveMedium
291ArgumentxxxxxxxpredictiveLow
292Argumentxxxx_xxxxpredictiveMedium
293ArgumentxxxxpredictiveLow
294ArgumentxxpredictiveLow
295ArgumentxxpredictiveLow
296ArgumentxxpredictiveLow
297ArgumentxxxxxxxxxpredictiveMedium
298ArgumentxxxpredictiveLow
299Argumentxxx_xxxxxxxxpredictiveMedium
300ArgumentxxxxxpredictiveLow
301ArgumentxxxxxxxpredictiveLow
302ArgumentxxxxxxxxxxxxxxpredictiveHigh
303Argumentxxxxxxxxx/xxxxxpredictiveHigh
304ArgumentxxxxxxxpredictiveLow
305ArgumentxxxxxxxxpredictiveMedium
306ArgumentxxxxpredictiveLow
307ArgumentxxxxpredictiveLow
308ArgumentxxxxxpredictiveLow
309ArgumentxxxxxxxxxxpredictiveMedium
310ArgumentxxxxxxxxxpredictiveMedium
311Argumentxxx_xxxxxxx_xxxpredictiveHigh
312Argumentxxxxx_xxxxxx_xxx/xxxxx_xxxx_xxxxxxxxpredictiveHigh
313ArgumentxxxxpredictiveLow
314Argumentxxxxxxxxxx/xxxxxxx/xxxxxxxxxxxxxpredictiveHigh
315Argumentxxx_xxxpredictiveLow
316ArgumentxxxxxxxxxpredictiveMedium
317Argumentxx_xxpredictiveLow
318Argumentxxxxxx/xxxxx/xxxxpredictiveHigh
319ArgumentxxpredictiveLow
320ArgumentxxxxxxxxxxxpredictiveMedium
321ArgumentxxxxpredictiveLow
322ArgumentxxxxxxxxpredictiveMedium
323Argumentxxxxx_xxxx_xxxxpredictiveHigh
324ArgumentxxxxxxxxxxxpredictiveMedium
325Argumentxxxxxx[xxxx].xxxpredictiveHigh
326Argumentxxx_xxxxxxxxpredictiveMedium
327ArgumentxxxxxxxxxxxxpredictiveMedium
328Argumentxxxx_xxxx_xxxxpredictiveHigh
329Argumentxxx/xxxxpredictiveMedium
330ArgumentxxxxxxxxxxxxxxxpredictiveHigh
331ArgumentxxxxxxxpredictiveLow
332Argumentxxxxxxx_xx[xxxxx]predictiveHigh
333ArgumentxxxxxxxxxxxxpredictiveMedium
334ArgumentxxxxpredictiveLow
335Argumentxxxx_xxxpredictiveMedium
336ArgumentxxxxxxxxxxxxpredictiveMedium
337ArgumentxxxxxxxxxpredictiveMedium
338ArgumentxxxxxxxxxxpredictiveMedium
339Argumentxxxxxxxx_xxxxxx_xxxxxpredictiveHigh
340Argumentxxxx_xxxxpredictiveMedium
341Argumentxxxxxx_xxpredictiveMedium
342ArgumentxxxpredictiveLow
343ArgumentxxxxxxxxxxxpredictiveMedium
344Argumentxxxxxxxx_xxxxxxx_xxxxxxx/xxxxxxxx_xxxxxx_xxxxxxxpredictiveHigh
345Argumentxxxx/xxxxxx/xxxxxxx/xxxxxxxxxxpredictiveHigh
346ArgumentxxxxxxpredictiveLow
347Argumentxxxxxxx[]predictiveMedium
348Argumentxxx_xxxxxpredictiveMedium
349ArgumentxxxxxxpredictiveLow
350Argumentxx_xxpredictiveLow
351ArgumentxxxxxxxxxxxxxxxpredictiveHigh
352Argumentxxxxxxxxxx_xxxx_xxxxxxpredictiveHigh
353ArgumentxxpredictiveLow
354ArgumentxxxxxxpredictiveLow
355ArgumentxxxpredictiveLow
356ArgumentxxxxxxxxpredictiveMedium
357ArgumentxxxxxxxxpredictiveMedium
358Argumentxxxxxxxx/xxxxpredictiveHigh
359Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
360ArgumentxxxxxxxxxpredictiveMedium
361Argumentxxx_xxxxpredictiveMedium
362ArgumentxxxxpredictiveLow
363ArgumentxxpredictiveLow
364ArgumentxxxpredictiveLow
365ArgumentxxxxxxpredictiveLow
366Argumentx-xxxxxxxxx-xxxpredictiveHigh
367Argumentx-xxxxxxxxx-xxxxpredictiveHigh
368ArgumentxxpredictiveLow
369ArgumentxxxpredictiveLow
370ArgumentxxxxpredictiveLow
371Input Value"><xxxxxx xxx="xxxxx://xx.xxx/xxxxxxxxxx"></xxxxxx>predictiveHigh
372Input Value%xxpredictiveLow
373Input Value%xxxxxxxx%xxxxxxx%xxxxxxxx.xxxxxxxxxxxx%xxxxx,%xxxxx,%xxxxx%xx%xx%xx/xxxxxx%xxpredictiveHigh
374Input Value../../../xxx/xxxxxxpredictiveHigh
375Input Value/%xxpredictiveLow
376Input Valuex%xx"()%xx%xx<xxx><xxxxxx>xxxxx(xxxxxxxx.xxxxxx)</xxxxxx>predictiveHigh
377Input Value<xxxxxx>xxxxx('xxxxxxxx.xxxxxx='+xxxxxxxx.xxxxxx)</xxxxxx>.xxxxxpredictiveHigh
378Input Value<xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
379Input Value<xxxxx/xxx=x xxxxxxx=xxxxx(xxxxxxxx.xxxxxx)>predictiveHigh
380Input ValuexxxxxxpredictiveLow
381Pattern|xx|predictiveLow
382Network Portxxx/xxx (xxx)predictiveHigh
383Network Portxxx/xxxxpredictiveMedium
384Network Portxxx xxxxxx xxxxpredictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!