Gamarue Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en876
de72
fr16
ru14
es8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us358
de90
ru38
nl34
br14

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Linux Kernel32
Microsoft Windows22
Qualcomm Snapdragon Auto12
Qualcomm Snapdragon Consumer IOT12
Qualcomm Snapdragon Industrial IOT12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1DT Register Extension sql injection8.57.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.01564CVE-2018-6584
2Zoho ManageEngine Applications Manager register.do information disclosure4.64.6$0-$5k$0-$5kNot DefinedNot Defined0.060.00890CVE-2016-9491
3Google Android qsee_register_log_buff integer underflow8.58.2$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00885CVE-2015-9198
4Google gperftools malloc_extension.cc Register/InitModule resource management6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.000.00885CVE-2018-13420
5Google Android Bluetooth Service btif_hd.cc register_application out-of-bounds5.45.2$25k-$100k$0-$5kNot DefinedOfficial Fix0.040.01005CVE-2018-9544
6ARM Trusted Firmware Register information disclosure6.45.9$0-$5kCalculatingNot DefinedNot Defined0.040.00885CVE-2017-15031
7Kamailio REGISTER Message tmx_pretran.c tmx_check_pretran memory corruption8.58.2$0-$5k$0-$5kNot DefinedOfficial Fix0.040.01018CVE-2018-8828
8PBC bootstrap.c _pbcB_register_fields memory corruption7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.010.00885CVE-2018-12918
9Pie Register Plugin sql injection8.57.7$0-$5kCalculatingProof-of-ConceptOfficial Fix0.040.01564CVE-2018-10969
10Coremail register.jsp Stored cross site scripting4.44.4$0-$5kCalculatingNot DefinedNot Defined0.010.00885CVE-2018-9330
11Intel CPU Lazy FPU Register LazyFP information disclosure4.64.5$5k-$25k$0-$5kNot DefinedWorkaround0.010.01864CVE-2018-3665
12Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.610.25090CVE-2017-0055
13OpenEMR register.php improper authentication8.27.2$0-$5kCalculatingNot DefinedOfficial Fix0.030.10212CVE-2018-15152
14Microsoft Windows Netlogon Zerologon privileges management8.48.0$25k-$100k$0-$5kHighOfficial Fix0.000.95011CVE-2020-1472
15Microsoft .NET Core Hash Collision input validation7.06.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.050.08761CVE-2018-0875
16TIBCO JasperReports Server REST API improper authorization8.58.2$0-$5k$0-$5kNot DefinedOfficial Fix0.030.01018CVE-2018-18815
17Apple iOS/iPadOS Kernel race condition5.35.1$5k-$25k$0-$5kHighOfficial Fix0.020.00950CVE-2021-1782
18AbanteCart language.php sql injection7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.010.00885CVE-2016-10755
19Trend Micro Security 2020 privileges management5.85.8$5k-$25k$5k-$25kNot DefinedNot Defined0.000.00885CVE-2020-25775
20Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192

IOC - Indicator of Compromise (96)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
15.35.249.46redirect.haribo.comGamarueverifiedHigh
25.154.191.57GamarueverifiedHigh
35.159.57.195www-riedle.transfermarkt.deGamarueverifiedHigh
420.186.50.83GamarueverifiedHigh
537.187.0.40ns3108067.ip-37-187-0.euGamarueverifiedHigh
640.70.224.146GamarueverifiedHigh
740.81.11.194GamarueverifiedHigh
840.91.94.203GamarueverifiedHigh
945.8.124.25free.gbnhost.comGamarueverifiedHigh
1045.122.138.6GamarueverifiedHigh
1145.128.204.36GamarueverifiedHigh
1245.128.207.237GamarueverifiedHigh
1346.45.169.10646-45-169-106.turkrdns.comGamarueverifiedHigh
1446.249.38.155GamarueverifiedHigh
1546.254.21.69h13.ihc.ruGamarueverifiedHigh
1650.116.23.211www.eqnic.netGamarueverifiedHigh
1751.195.53.221ip221.ip-51-195-53.euGamarueverifiedHigh
1852.137.90.34GamarueverifiedHigh
1952.230.217.195GamarueverifiedHigh
2052.249.24.103GamarueverifiedHigh
21XX.XX.XXX.XXXXxxxxxxverifiedHigh
22XX.XXX.XXX.XXXXxxxxxxverifiedHigh
23XX.XX.XX.XXXXxxxxxxverifiedHigh
24XX.XXX.XX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxxxverifiedHigh
25XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxx.xxxxx.xxxXxxxxxxverifiedHigh
26XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxx.xxxxx.xxxXxxxxxxverifiedHigh
27XX.XX.XXX.XXxxxxxxxx-xx-xxxxxxxxxx.xxxXxxxxxxverifiedHigh
28XX.XX.XXX.XXXxxxx.xxxxxxxxx.xxXxxxxxxverifiedHigh
29XX.XXX.XX.XXXxxxxx.xxxxx.xxxXxxxxxxverifiedHigh
30XX.XXX.XXX.XXxxxxx.xxxxxxx.xxxxxxxxxx.xxXxxxxxxverifiedHigh
31XX.XX.XXX.XXXxxx.xxx-xxx.xxxXxxxxxxverifiedHigh
32XX.XX.XXX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxxxverifiedHigh
33XX.XXX.XXX.XXXxxxx.xxxxxxxxxx.xxxxXxxxxxxverifiedHigh
34XX.XXX.XXX.XXXxxxx-xx.xxxxx.xxxxxxxxx.xxxXxxxxxxverifiedHigh
35XX.XX.X.XXXxxxxxxverifiedHigh
36XX.XX.XXX.XXXxxxxxx-xx-xx-xxx-xxx.xxxxx.x.xxxxxxxxxx.xxxXxxxxxxverifiedHigh
37XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxx.xxxxxxxxxxx.xxxXxxxxxxverifiedHigh
38XXX.XX.XX.XXXxxxxxxverifiedHigh
39XXX.XX.XX.XXXxxxxxxverifiedHigh
40XXX.XX.XXX.XXXXxxxxxxverifiedHigh
41XXX.XX.XXX.XXXXxxxxxxverifiedHigh
42XXX.XX.XXX.XXXXxxxxxxverifiedHigh
43XXX.XX.XXX.XXXXxxxxxxverifiedHigh
44XXX.XX.XX.XXXXxxxxxxverifiedHigh
45XXX.XX.XXX.XXXXxxxxxxverifiedHigh
46XXX.XX.XX.XXXxxxxxxverifiedHigh
47XXX.XX.XX.XXXXxxxxxxverifiedHigh
48XXX.XX.XXX.XXXXxxxxxxverifiedHigh
49XXX.XX.XXX.XXXXxxxxxxverifiedHigh
50XXX.XXX.XXX.XXXxxxxxxverifiedHigh
51XXX.XXX.XX.XXXXxxxxxxverifiedHigh
52XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xx.xxxxxxxx.xxxXxxxxxxverifiedHigh
53XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xx.xxxxxxxx.xxxXxxxxxxverifiedHigh
54XXX.XXX.XX.XXXXxxxxxxverifiedHigh
55XXX.XXX.XXX.XXXxxx.xxxxxxxx.xxxXxxxxxxverifiedHigh
56XXX.XX.X.XXXxxxxxxverifiedHigh
57XXX.XXX.XX.XXxxxxxxxxxxx.xxxxxx.xxxXxxxxxxverifiedHigh
58XXX.XXX.XXX.XXXxxxxxx.xxxxxxxxx.xxxXxxxxxxverifiedHigh
59XXX.XXX.XXX.XXXXxxxxxxverifiedHigh
60XXX.XXX.X.Xxxx.xxxxx.xx-xxxxxx.xxXxxxxxxverifiedHigh
61XXX.XXX.XX.XXxxxxxxx.xxxXxxxxxxverifiedHigh
62XXX.XXX.XX.XXXXxxxxxxverifiedHigh
63XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxXxxxxxxverifiedHigh
64XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxxxxxxxxxxx.xxxXxxxxxxverifiedHigh
65XXX.XX.XXX.XXXXxxxxxxverifiedHigh
66XXX.XXX.X.Xxxxxxxxx-xx-xx.xxxxx.xxxXxxxxxxverifiedHigh
67XXX.XXX.XXX.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxxxverifiedHigh
68XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxverifiedHigh
69XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxverifiedHigh
70XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxverifiedHigh
71XXX.XXX.XXX.XXXXxxxxxxverifiedHigh
72XXX.XX.XXX.XXXXxxxxxxverifiedHigh
73XXX.XX.XXX.XXXxx.xxxxxx.xxxXxxxxxxverifiedHigh
74XXX.XXX.XXX.XXXxxxxxxxx.xxxxxx.xxXxxxxxxverifiedHigh
75XXX.XXX.XXX.Xxxx-xxx-xxx-x.xxxxxxxx.xxxxxxxxxxxx.xxxXxxxxxxverifiedHigh
76XXX.XX.XX.XXXxxx-xxxxxx.xxxxxx-xx-xxxxx.xxxXxxxxxxverifiedHigh
77XXX.XX.XXX.XXXxxxx.xxxxxxx.xxxXxxxxxxverifiedHigh
78XXX.XXX.XX.XXXxxxxxxxxxxxxxx.xxxxXxxxxxxverifiedHigh
79XXX.XXX.XX.XXXXxxxxxxverifiedHigh
80XXX.XXX.XXX.XXXXxxxxxxverifiedHigh
81XXX.XX.XXX.XXXXxxxxxxverifiedHigh
82XXX.XXX.XXX.XXXxxxxxxverifiedHigh
83XXX.XXX.XX.XXXxxxxxxxxxx.xxxXxxxxxxverifiedHigh
84XXX.XX.XX.XXXXxxxxxxverifiedHigh
85XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxxxverifiedHigh
86XXX.XXX.XX.XXXxxxxxx.xxx.xxxxxx.xxxXxxxxxxverifiedHigh
87XXX.XXX.X.XXxxx.xxx.x.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxverifiedHigh
88XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxxxverifiedHigh
89XXX.XXX.XX.XXXxxxxxx-xxxxxxx.xxxXxxxxxxverifiedHigh
90XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxxxverifiedHigh
91XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxxxverifiedHigh
92XXX.XX.XXX.XXXxxxxxxverifiedHigh
93XXX.X.XXX.XXXxxxxxxx.xxxxXxxxxxxverifiedHigh
94XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxxxverifiedHigh
95XXX.XXX.XXX.XXxxxx.xxxxxx.xxXxxxxxxverifiedHigh
96XXX.XX.X.XXxxx-xx-x-xx.xxxxxx-xx-xxxxxxxxxxx.xxxXxxxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-21, CWE-22Pathname TraversalpredictiveHigh
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CWE-74InjectionpredictiveHigh
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHigh
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6T1068CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXX.XXXCWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHigh
10TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
11TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
12TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
13TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
14TXXXXCWE-XXXXxxxxxxx Xx Xxxx Xxxxxxx Xxxxxxxxx XxxxxpredictiveHigh
15TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHigh
16TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
17TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
18TXXXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveHigh
19TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
20TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
21TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHigh
22TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHigh
23TXXXX.XXXCWE-XXXxxxxxxxxxxxxpredictiveHigh
24TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
25TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh
26TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (291)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File%PROGRAMDATA%\OpenVPN Connect\drivers\tap\amd64\win10predictiveHigh
2File%PROGRAMDATA%\Razer\Synapse3\Service\binpredictiveHigh
3File/+CSCOE+/logon.htmlpredictiveHigh
4File/admin/config.php?display=disa&view=formpredictiveHigh
5File/admin/settings/sites/newpredictiveHigh
6File/ajax/networking/get_netcfg.phppredictiveHigh
7File/app/admin/nat/item-add-submit.phppredictiveHigh
8File/cgi-bin/wapopenpredictiveHigh
9File/config/netconf.cmdpredictiveHigh
10File/etc/config/image_signpredictiveHigh
11File/folder/listpredictiveMedium
12File/forms/nslookupHandlerpredictiveHigh
13File/group/commentpredictiveHigh
14File/lookin/infopredictiveMedium
15File/plugins/servlet/jira-blockers/predictiveHigh
16File/ptipupgrade.cgipredictiveHigh
17File/register.dopredictiveMedium
18File/sessions/sess_<sessionid>predictiveHigh
19File/themes/<php_file_name>predictiveHigh
20File/tmp/speedtest_urls.xmlpredictiveHigh
21File/uncpath/predictiveMedium
22File/uploadpredictiveLow
23File/var/log/nginxpredictiveHigh
24File/wbg/core/_includes/authorization.inc.phppredictiveHigh
25File/wp-admin/admin.phppredictiveHigh
26File/wp-content/plugins/updraftplus/admin.phppredictiveHigh
27Fileaccount.asppredictiveMedium
28Fileadclick.phppredictiveMedium
29Fileadmin-ajax.phppredictiveHigh
30Fileadmin.phppredictiveMedium
31Fileadmin/?n=tags&c=index&a=doSaveTagspredictiveHigh
32Fileadmin/controller/pages/localisation/language.phppredictiveHigh
33Filexxxxx/xx/predictiveMedium
34Filexxxxxxx/xxxxxxxxxx.xxx&xx=xxxxxxx&xxxxpredictiveHigh
35Filexxxxxxxxxxxxx/xxxxx.xxx?xxxxxx=xxx_xxxx&xxxx=xxxxxxxxpredictiveHigh
36Filexxxx.xxxpredictiveMedium
37Filexxxx_xxx_xxxxxxxx.xxxpredictiveHigh
38Filexxxx/xxxxxxx/xxxxxx/xxxx_xxxxxx.xpredictiveHigh
39Filexxxxxxx_xxxxxx.xpredictiveHigh
40Filexxxxxxx.xxxpredictiveMedium
41Filexxxxxx/xxxx.xxxpredictiveHigh
42Filexxxxxxxxxxxxxx/xxxxxpredictiveHigh
43Filexxxxx/xxx.xpredictiveMedium
44Filexxxx_xxxx_xx.xxpredictiveHigh
45Filexxxxx.xxxpredictiveMedium
46Filexxxxxxxxx.xpredictiveMedium
47Filexxxxxx/xxx.xpredictiveMedium
48Filexxxx_xx.xxpredictiveMedium
49Filex:\xxxxxxxxpredictiveMedium
50Filexxxxxxxx.xxxpredictiveMedium
51Filexxx-xxx/xxxxxxxxxxxx.xxxpredictiveHigh
52Filexxx-xxx/xxxx-xxxpredictiveHigh
53Filexxxxxxxxxxxxxx.xxxpredictiveHigh
54Filexxxxxx.xxxpredictiveMedium
55Filexxx.xxxpredictiveLow
56Filexxx/xxxxxxxx/xxxx/xxxxxxxx.xxpredictiveHigh
57Filexxx.xxxpredictiveLow
58Filexxxxxx/xxxx.xpredictiveHigh
59Filexxxxxxx.xxxpredictiveMedium
60Filexxxxxxxxxx/xxx.xxpredictiveHigh
61Filexxxxxx.xxxpredictiveMedium
62Filexxxxxxxxx.xxxxxxx.xxxpredictiveHigh
63Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
64Filexxxxx.xpredictiveLow
65Filexxx.xxxpredictiveLow
66Filexxxxxx.xxxpredictiveMedium
67Filexxxxxxxxxxxx.xxxpredictiveHigh
68Filexxxxxxxxx.xxxpredictiveHigh
69Filexxxxx.xpredictiveLow
70Filexxxx.xxxpredictiveMedium
71Filexxxxxx.xxxpredictiveMedium
72Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
73Filexxxxxxx/xxx/xxxxxxxx.xpredictiveHigh
74Filexxxxxxx/xxxx/xxxxx/xxxxx_xxxx.xpredictiveHigh
75Filexxxxxxx/xxx/xxxxxxx/xxxx_xxx.xpredictiveHigh
76Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxxx/xxxxx_xxx.xpredictiveHigh
77Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxx/xxxxx_xxxxxxx.xpredictiveHigh
78Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxx_xxx.xpredictiveHigh
79Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxxx/xxx/xxxxxxx/xxx_xxxxxxx.xpredictiveHigh
80Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxxx_xxxxxx.xpredictiveHigh
81Filexxxxxxx/xxx/xxxxxxx.xpredictiveHigh
82Filexxxxxxx/xxx/xxx/xxxxx.xpredictiveHigh
83Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxx_xxxxx.xpredictiveHigh
84Filexxxxxxxxx.xpredictiveMedium
85Filexxxx.xxxpredictiveMedium
86Filexxxxx.xxpredictiveMedium
87Filexxxxx/_xxx/predictiveMedium
88Filexxxxxx.xxxpredictiveMedium
89Filexxxxxxxxx.xxxpredictiveHigh
90Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
91Filexx/xxxx/xxxx.xpredictiveHigh
92Filexx/xxxx/xxxxxxx.xpredictiveHigh
93Filexx/xxxx/xxxxx.xpredictiveHigh
94Filexx/xxxxxxx/xxxxxx.xpredictiveHigh
95Filexx/xxxxxx/xxxxxxx.xpredictiveHigh
96Filexxxx-xxxxx.xpredictiveMedium
97Filexxxxxxxxx.xxxpredictiveHigh
98Filexxxxxxxxxxxxx.xxxpredictiveHigh
99Filexx/xxxxxxx/xxxxxxxxxxxxx.xpredictiveHigh
100Filexxxxxx_xxx_xxxx_xxxxx_xx_xxxxx.xpredictiveHigh
101Filexxx/xxxx.xxxxx.xxxpredictiveHigh
102Filexxx/xxxxxxxx.xxxxxxxx.xxxpredictiveHigh
103Filexxx/xxxxxx.xxxpredictiveHigh
104Filexxxxx.xxxxpredictiveMedium
105Filexxxxx.xxxpredictiveMedium
106Filexxxxxxx/xxxxxxxxxxxxx.xxxxpredictiveHigh
107Filexxxxxxxxx/xxxx-xxxxxxxxxx.xxxpredictiveHigh
108Filexxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxx/predictiveHigh
109Filexx/xxxxxxxxx.xpredictiveHigh
110Filexx/xxxxxxx.xpredictiveMedium
111Filexx/xxxxxxx.xpredictiveMedium
112Filexxxxxxx_xxxxxxx/xxxx.xxxpredictiveHigh
113Filexxxxxxxxx.xxpredictiveMedium
114Filexxxx/xxxx/xxx_xxxx.xpredictiveHigh
115Filexxxxxxxxx/xxxxxxx.xxx.xxxpredictiveHigh
116Filexxxxx.xxxpredictiveMedium
117Filexxxxxxxx/xxxxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
118Filexxxxxx_xxxxxxxxx.xxpredictiveHigh
119Filexxxxxx.xxxpredictiveMedium
120Filexxxxxx.xxxpredictiveMedium
121Filexx/xxxxx/xxxxx.xpredictiveHigh
122Filexx/xxx.xpredictiveMedium
123Filexx/xxxxxxx.xpredictiveMedium
124Filexx/xxxxxxx.xpredictiveMedium
125Filexx/xxxxxx.xpredictiveMedium
126Filexxxxxxxx.xxxpredictiveMedium
127Filexxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
128Filexxxxxx.xxxpredictiveMedium
129Filexxxxxxx/xx/xxxxx/xxxxxxx.xpredictiveHigh
130Filexxxxxxx/xxxxxxxxx/xxx/xxx.xxxpredictiveHigh
131Filexxxxxxx/xxx/xxx_xxxxxxx.xpredictiveHigh
132Filexxxxxxx/xxxxx.xpredictiveHigh
133Filexxxxxx-xxxxxx/xxxxx/xxxxxxxxx/xxxxxxx/xxx_xxxxx.xxxpredictiveHigh
134Filexxx/xxxxxxxxx/xxxxx_xxxx.xpredictiveHigh
135Filexxx/xxx/xxxxx/xxxxxxxxx.xpredictiveHigh
136Filexxx/xxxx/xxxxxxx.xpredictiveHigh
137Filexxx/xxxx/xxx_xxxxxxxxx.xpredictiveHigh
138Filexxx/xxx/xxxxxxx.xpredictiveHigh
139Filexxx/xxxx/xx_xxxx.xpredictiveHigh
140Filexxx/xxx_xxxxx/xx_xxxxx.xpredictiveHigh
141Filexxx_xxxxxxxx.xpredictiveHigh
142Filexxxxxxxx.xxxpredictiveMedium
143Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
144Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
145Filexxxxxxxx/xxxxxx-xxxxx/xxxxxxxxxxx/xxxx.xxpredictiveHigh
146Filexxx_xxxxx.xxpredictiveMedium
147Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
148Filexxxxxxx.xxxxx.xxxpredictiveHigh
149Filexxxxxx/xxxxxxx/xxxxxxxx.xxxpredictiveHigh
150Filexxxxx.xxxpredictiveMedium
151Filexxxx.xxxpredictiveMedium
152Filexxxxxxxx/xxxxxx.xpredictiveHigh
153Filexxxxxxxx.xxxpredictiveMedium
154Filexxxxxxxx.xxxpredictiveMedium
155Filexxxxxxxx.xpredictiveMedium
156Filexxxxxxx.xxxpredictiveMedium
157Filexxxxxx.xxxxpredictiveMedium
158Filexx_xxx_xxxx.xxpredictiveHigh
159Filexxxxxx.xxpredictiveMedium
160Filexxxxxx.xxxpredictiveMedium
161Filexxxxxx.xpredictiveMedium
162Filexxxxx/xxxxxx/xxxx/xxxxxxx/xxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
163Filexxxxxxxxxx.xxxpredictiveHigh
164Filexxxxxxx/xxxxx.xxxxxxx.xxxpredictiveHigh
165Filexxxxx_xxxxx.xxxpredictiveHigh
166Filexxxxxxxxxxxxxx.xxxpredictiveHigh
167Filexxx/xxpredictiveLow
168Filexxxx.xxxpredictiveMedium
169Filexxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
170Filexxxxx/xxx/xxx/xxx_xxxx.xpredictiveHigh
171Filexxxxx/xxx/xxx/xxxxxx.xpredictiveHigh
172Filexxxxx/xxx/xxx/xxxx.xpredictiveHigh
173Filexxxxx/xxxx-xxxxxx.xpredictiveHigh
174Filexxxxx/xxxx-xxxxxx/xxxxxx.xxxpredictiveHigh
175Filexxxxxxxx/xxxxxxxxpredictiveHigh
176Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
177Filexxxx.xxxpredictiveMedium
178Filexxxxx_xxxxxxxx.xpredictiveHigh
179Filexxxxxxxx/xxxxxxx/xxxxxxxxxxxpredictiveHigh
180Filexxxxxxxxxxx.xxxpredictiveHigh
181Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
182Filexx-xxxxx/xxxx-xxx.xxxpredictiveHigh
183Filexx-xxxxxxxxx.xxxpredictiveHigh
184Filexx-xxxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
185Filexx-xxxxxxxx/xxxx.xxxpredictiveHigh
186Filexxx_xxxx.xpredictiveMedium
187Filexxx/xxx.xpredictiveMedium
188Filexxxxx/xxxxx.xxxpredictiveHigh
189File\xxx\xxxxxxxx\xxxxxx\xxxxxx.xxxpredictiveHigh
190File~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
191Library/xxx/xxx/xxx/xxxx/xxxxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
192Libraryxxxxxxxxxxxxx.xxxpredictiveHigh
193Libraryxxxxxx[xxxxxx_xxxxpredictiveHigh
194Libraryxxxxxxxx.xxxpredictiveMedium
195Libraryxxx/xxxxxx/xxxxxxxxx/xxx_xxxxxxx.xpredictiveHigh
196Libraryxxxxx.xxxpredictiveMedium
197Libraryxxxxxxxxxx.xxxpredictiveHigh
198Libraryxxx/xxxxxxx/xxxx.xpredictiveHigh
199Libraryxxxxxx.xx.xpredictiveMedium
200Libraryxxxxx/xxxxxxxx/xxxx/xxxx/xxxx_xxxxxxx.xpredictiveHigh
201Argument$_xxxxxx['xxxxxx_xxxx']predictiveHigh
202ArgumentxxxpredictiveLow
203ArgumentxxxpredictiveLow
204ArgumentxxxxxxxpredictiveLow
205ArgumentxxxxxxxxxpredictiveMedium
206ArgumentxxxxxxxxpredictiveMedium
207ArgumentxxxxxxpredictiveLow
208ArgumentxxxxxxxxxxpredictiveMedium
209Argumentxxxxxxxxxx_xxxxpredictiveHigh
210Argumentxxx_xxxpredictiveLow
211ArgumentxxxpredictiveLow
212Argumentxxx_xxpredictiveLow
213Argumentxxx_xxpredictiveLow
214Argumentxx_xxpredictiveLow
215Argumentxxxxxxxxxxx_xxxxpredictiveHigh
216Argumentxxxxxx[xxxxxx_xxxx]predictiveHigh
217Argumentxxxxxxx-xxxxxxpredictiveHigh
218ArgumentxxxxxpredictiveLow
219Argumentxxxx_xxpredictiveLow
220ArgumentxxxxxxxxxxxpredictiveMedium
221ArgumentxxxpredictiveLow
222ArgumentxxxxxxxxpredictiveMedium
223ArgumentxxxxxpredictiveLow
224ArgumentxxxxxxxxxpredictiveMedium
225Argumentxxxxxxxxx_xxxxxxpredictiveHigh
226ArgumentxxxxpredictiveLow
227ArgumentxxxxxxxxxxpredictiveMedium
228ArgumentxxxxxxxxpredictiveMedium
229ArgumentxxxxxxxxpredictiveMedium
230Argumentxxxxxx_xxxxxxxxxpredictiveHigh
231ArgumentxxxxxpredictiveLow
232ArgumentxxxxpredictiveLow
233Argumentxxxxxx_xxxxxx_xxxxxpredictiveHigh
234Argumentxx_xxpredictiveLow
235ArgumentxxxxxxpredictiveLow
236ArgumentxxxxpredictiveLow
237ArgumentxxxxpredictiveLow
238Argumentxx_xxxx_xx/xx_xxxx_xxpredictiveHigh
239ArgumentxxpredictiveLow
240ArgumentxxxxxpredictiveLow
241ArgumentxxxxxpredictiveLow
242Argumentxxxxxxx_xxxxpredictiveMedium
243ArgumentxxxxxxxxxxxpredictiveMedium
244ArgumentxxxxxxxxpredictiveMedium
245Argumentxxxx_xxpredictiveLow
246ArgumentxxxxpredictiveLow
247ArgumentxxxxpredictiveLow
248Argumentxxxxxx?xxxxxxpredictiveHigh
249ArgumentxxxxxxxxxxxxxpredictiveHigh
250Argumentxx_xxxxx/xxx_xxxx_xxxpredictiveHigh
251ArgumentxxxpredictiveLow
252Argumentxxxxxxxxx xxxxxxpredictiveHigh
253Argumentxxxxxx_xxxxxxxxpredictiveHigh
254Argumentxxxx_xxpredictiveLow
255ArgumentxxxxxxxxxxxxxxpredictiveHigh
256ArgumentxxpredictiveLow
257ArgumentxxxpredictiveLow
258ArgumentxxxxxxxxpredictiveMedium
259ArgumentxxxxxxxxpredictiveMedium
260Argumentxxxxxxxx_xxxxxpredictiveHigh
261ArgumentxxxxxxpredictiveLow
262Argumentx_xxxxpredictiveLow
263ArgumentxxxxxxxxpredictiveMedium
264Argumentxxx_xxxxpredictiveMedium
265ArgumentxxxxxxpredictiveLow
266ArgumentxxxxxxxxxxxxxxpredictiveHigh
267ArgumentxxxxxxxxxpredictiveMedium
268ArgumentxxxxpredictiveLow
269Argumentxxxxxx_xxxxxxxxpredictiveHigh
270ArgumentxxxxxxpredictiveLow
271Argumentxx_xxx[xxxxxx]predictiveHigh
272ArgumentxxxxpredictiveLow
273ArgumentxxxxxxxxxxpredictiveMedium
274Argumentxxxx-xxxxxpredictiveMedium
275ArgumentxxxxxxxxpredictiveMedium
276Argumentxxxx_xxxxxxxxx/xxxx_xxxxxxxxpredictiveHigh
277Argumentxxx_xxxxxpredictiveMedium
278Argument\xxxxxx\predictiveMedium
279Argument__xxxxxxxxxxxpredictiveHigh
280Input Value%xxxxxxxx%xxxxxxx%xxx%xx%xx%xxxxxxxx%xxpredictiveHigh
281Input Value..predictiveLow
282Input Value../predictiveLow
283Input Value../..predictiveLow
284Input Value.._predictiveLow
285Input Value./../../../predictiveMedium
286Input Value/../predictiveLow
287Input Value//xxx//xxxxxxx.xxxpredictiveHigh
288Input Value/xxx/xxxxxxpredictiveMedium
289Input Value?<!xxxxxx?predictiveMedium
290Input Valuexxx "><xxx xxx="" xxxxxxx="xxxxx(xxxxxxxx.xxxxxx)">predictiveHigh
291Input Value|xxx${xxx}predictiveMedium

References (13)

The following list contains external sources which discuss the actor and the associated activities:

Interested in the pricing of exploits?

See the underground prices here!