Iran Unknown Analysis
IOB - Indicator of Behavior (1000)
Timeline
The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.
Activities
Interest
Timeline
The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.
Vulnerabilities
These are the vulnerabilities that we have identified as researched, approached, or attacked.
Campaigns (2)
These are the campaigns that can be associated with the actor:
- Albanian Government
- Xxxxxx Xxxxx Xxxxxx
IOC - Indicator of Compromise (2309)
These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.
TTP - Tactics, Techniques, Procedures (21)
Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.
IOA - Indicator of Attack (422)
These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.
| ID | Class | Indicator | Type | Confidence |
|---|---|---|---|---|
| 1 | File | /add-normal-ticket.php | predictive | High |
| 2 | File | /add_deductions.php | predictive | High |
| 3 | File | /admin/all-applications.php | predictive | High |
| 4 | File | /admin/assets/plugins/DataTables/media/unit_testing/templates/empty_table.php | predictive | High |
| 5 | File | /admin/bookList?page=1&limit=10 | predictive | High |
| 6 | File | /admin/bwdates-report-details.php | predictive | High |
| 7 | File | /admin/bwdates-request-report-details.php | predictive | High |
| 8 | File | /admin/chatroom.php | predictive | High |
| 9 | File | /admin/create_product.php | predictive | High |
| 10 | File | /admin/edit-products.php | predictive | High |
| 11 | File | /admin/enrollment-details.php | predictive | High |
| 12 | File | /admin/forms/option_lists/edit.php | predictive | High |
| 13 | File | /admin/getallarticleinfo | predictive | High |
| 14 | File | /admin/get_price.php | predictive | High |
| 15 | File | /Admin/Http/Controllers/FileManagerController.php | predictive | High |
| 16 | File | /admin/index.php | predictive | High |
| 17 | File | /admin/index2.html | predictive | High |
| 18 | File | /admin/login.php | predictive | High |
| 19 | File | /admin/normal-search.php | predictive | High |
| 20 | File | /admin/print.php | predictive | High |
| 21 | File | /admin/profile.php | predictive | High |
| 22 | File | /admin/salary_slip.php | predictive | High |
| 23 | File | /admin/template/update | predictive | High |
| 24 | File | /admin/user-search.php | predictive | High |
| 25 | File | /adminPage/main/upload | predictive | High |
| 26 | File | /adminpanel/admin/query/addCourseExe.php | predictive | High |
| 27 | File | /api/mjkj-chat/chat/ai/delete/chat | predictive | High |
| 28 | File | /api/ping | predictive | Medium |
| 29 | File | /api/sys/set_passwd | predictive | High |
| 30 | File | /Api/TinyMce/UploadAjaxAPI.ashx | predictive | High |
| 31 | File | /api/wizard/setsyncpppoecfg | predictive | High |
| 32 | File | /app/controller/Api.php | predictive | High |
| 33 | File | /auth.asp | predictive | Medium |
| 34 | File | /auth/register | predictive | High |
| 35 | File | /backend/admin/his_admin_add_lab_equipment.php | predictive | High |
| 36 | File | /boafrm/formFilter | predictive | High |
| 37 | File | /boafrm/formSysCmd | predictive | High |
| 38 | File | /BRS_top.html | predictive | High |
| 39 | File | /catalog/compare | predictive | High |
| 40 | File | /cgi-bin/cstecgi.cgi | predictive | High |
| 41 | File | /cgi-bin/hd_config.cgi | predictive | High |
| 42 | File | /cgi-bin/mainfunction.cgi | predictive | High |
| 43 | File | /cgi-bin/mainfunction.cgi/apmcfgupload | predictive | High |
| 44 | File | /change-password.php | predictive | High |
| 45 | File | /classes/Master.php?f=save_course | predictive | High |
| 46 | File | /classes/Master.php?f=save_position | predictive | High |
| 47 | File | /config/config.properties | predictive | High |
| 48 | File | /coreframe/app/guestbook/myissue.php | predictive | High |
| 49 | File | /cupseasylive/locationcreate.php | predictive | High |
| 50 | File | /dash/update.php | predictive | High |
| 51 | File | /dashboard/admin/submit_payments.php | predictive | High |
| 52 | File | /department.php | predictive | High |
| 53 | File | /xxxxxx.xxx?xxx=xxx&xxx=___x_x_x_x_x_x_x_xxx___ | predictive | High |
| 54 | File | /xxxx-xxxxxxxx.xxx | predictive | High |
| 55 | File | /xxxx/xxxxxxxxxxx_xxxxxxxxx?xxxxxxxxxxxx=xxxx | predictive | High |
| 56 | File | /xxxxxxxx/xxx-xxxx.xxx | predictive | High |
| 57 | File | /xxxxxxxx/xxxxxx-xxxxxxx.xxx | predictive | High |
| 58 | File | /xxxxxxx.xxx | predictive | Medium |
| 59 | File | /xxxxxxxxxx/xxxxxxxxxx/xxxxx.xxx/xxxxxx/xxxxx-xxxxxxxx/xxxxxxxx | predictive | High |
| 60 | File | /xxxxxxx/xxxxxxx_xxxxx.xxx | predictive | High |
| 61 | File | /xxxxxxx/xxxxxxxxx_xxxxxx.xxx | predictive | High |
| 62 | File | /xxxxxxxx.xxx | predictive | High |
| 63 | File | /xxxxx/xxxx.xxx | predictive | High |
| 64 | File | /xxxxxx/xxx | predictive | Medium |
| 65 | File | /xxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 66 | File | /xxxxxx/xxxxxxxxxxxxxx | predictive | High |
| 67 | File | /xxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 68 | File | /xxxxxx/xxxxxx | predictive | High |
| 69 | File | /xxxxxx/xx_xxxxxxxxxxxxxxxxxxxxx | predictive | High |
| 70 | File | /xxxxxx/xxxxxxxxxxxxx | predictive | High |
| 71 | File | /xxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 72 | File | /xxxxxx/xxxxxxxxxxxxx | predictive | High |
| 73 | File | /xxxxxx/xxx_xxxxxxxxxxx | predictive | High |
| 74 | File | /xxxxxx/xxx | predictive | Medium |
| 75 | File | /xxxxxx_xxxxxx.xxx | predictive | High |
| 76 | File | /xxxx/xxxxxx.xxx | predictive | High |
| 77 | File | /xxxxx/ | predictive | Low |
| 78 | File | /xxxxxx/xxxxxxx | predictive | High |
| 79 | File | /xxxx/xxxx_xxxx.xxx | predictive | High |
| 80 | File | /xxxxxxxxxxxx.xxx | predictive | High |
| 81 | File | /xxxxx.xxx | predictive | Medium |
| 82 | File | /xxxxx.xxx?xx-xxxxxxxx-xxxx-x | predictive | High |
| 83 | File | /xxxxx.xxx?xxxx=xxxxxxx | predictive | High |
| 84 | File | /xxxxx/xxxx/xxxx | predictive | High |
| 85 | File | /xxxx/xxxxxxx.xxxx | predictive | High |
| 86 | File | /xxxxxxxxx/xxxxxxxxxxx.xxx | predictive | High |
| 87 | File | /xxxxxxxxx/xxxx/xxxxxx/xxxxxx | predictive | High |
| 88 | File | /xxxxx.xxx | predictive | Medium |
| 89 | File | /xxxxxxxxx.xxx | predictive | High |
| 90 | File | /xxxx.xxx | predictive | Medium |
| 91 | File | /xxxxxx_xx.xxx | predictive | High |
| 92 | File | /xxxxxx/xx.xxx?xxxxxx=xx | predictive | High |
| 93 | File | /xxxx/xx/xxxx/xxxx | predictive | High |
| 94 | File | /xxxxxx/xxxx_xxxxx/xxxx/xxxxx.xxx | predictive | High |
| 95 | File | /xxxxxxxxxxxxx.xx | predictive | High |
| 96 | File | /xxxx/xxxxxx/xxxxxxx/xxxxxx-xxxxxxxxxx-x.xx.x/xxxx/xxxxxxx/xxxxx.xxx | predictive | High |
| 97 | File | /xxxxx/xxxxx_xxx.xxx | predictive | High |
| 98 | File | /xxx/xxxxxxxxx/xxx_xxxx.xxx | predictive | High |
| 99 | File | /xxx/xxxxxxx_xxxxxx/xxxx_xxxx.xxx | predictive | High |
| 100 | File | /xxxxxxxxxx/xxxxx/xxxxx.xxx | predictive | High |
| 101 | File | /xxx/xxxxxxxxxxxx.xxx | predictive | High |
| 102 | File | /xxxxxx/xxxxxxxx/xxxxx.xxx | predictive | High |
| 103 | File | /xxxxxxx.xxx | predictive | Medium |
| 104 | File | /xxxxxxx.xxx | predictive | Medium |
| 105 | File | /xxxxxxxx/xxxx_xxxxxxx.xxx | predictive | High |
| 106 | File | /xxxxxxxx/xxxxxxxx/xxxxxxxxxxx.xxx | predictive | High |
| 107 | File | /xxxxxx-xxxxxx-xxxxxx.xxx | predictive | High |
| 108 | File | /xxxxxx.xxx | predictive | Medium |
| 109 | File | /xxxxxx.xxx | predictive | Medium |
| 110 | File | /xxxxxxxxxx.xxx | predictive | High |
| 111 | File | /xxxx.xxx | predictive | Medium |
| 112 | File | /xxxxxx | predictive | Low |
| 113 | File | /xxxxxxxx/xxxxxx | predictive | High |
| 114 | File | /xxxxxxxxx/xxxxxxxxxxxxx.xxx | predictive | High |
| 115 | File | /xxxxxx_xx_xxxxxxx.xxx | predictive | High |
| 116 | File | /xxxxxx/ | predictive | Medium |
| 117 | File | /xxxx_xxxxx_xxxxxxxx_xxxxxx.xxx | predictive | High |
| 118 | File | /xxxxxxx-xxxxxxx.xxx | predictive | High |
| 119 | File | /xxxxxxxx_xxxxx/xxxxx/?xxxx=xxxxxxxxxxx/xxxxxx_xxxxxxxx | predictive | High |
| 120 | File | /xxx_xxxx/xxxxxxxxxxxxx | predictive | High |
| 121 | File | /xxxxx/xxxxxxxxxxxxxxxxx.xxx | predictive | High |
| 122 | File | /xxxxx/xxxxx.xxx?x=xxxxx/xxxxxxxxxxx/xxxxxxx&xxxxx=xx&xx=x | predictive | High |
| 123 | File | xxxxxxx.xxx | predictive | Medium |
| 124 | File | xxxxxxx.xxx | predictive | Medium |
| 125 | File | xxxxx.xxx | predictive | Medium |
| 126 | File | xxxxx/xxxxx_xxxxx.xxx | predictive | High |
| 127 | File | xxxxx/xxxxx/xxxxxxxxxxxx.xxx | predictive | High |
| 128 | File | xxxxx/xxxxx.xxx | predictive | High |
| 129 | File | xxxxx/xxxxx.xxx | predictive | High |
| 130 | File | xxxxx/xxxxxx-xxxxxxxxxxx.xxx | predictive | High |
| 131 | File | xxxxx/xxxxxx-xxxxxxxxx.xxx | predictive | High |
| 132 | File | xxxxx/xxxxxxx/xxxxxxxxx/xxxxxxx/xxxxx_xxxxxx.xxx | predictive | High |
| 133 | File | xxxxx/xxxx-xxxxx.xxx | predictive | High |
| 134 | File | xxxxx/xxxxxxxx/xxxx_xxxxxxx.xxx | predictive | High |
| 135 | File | xxxxx/xxxxxxxxxxxxx/xxxxxx_xxxxxx.xxx | predictive | High |
| 136 | File | xxxxx\xxxxxxxxx\xxxx_xxxxxxx.xxx | predictive | High |
| 137 | File | xxxxx\xxxxxxx\xxxxx.xxx#xxxx_xxxx | predictive | High |
| 138 | File | xxxxx_xxxxx.xxx | predictive | High |
| 139 | File | xxxxx_xxxxxxxx.xxx | predictive | High |
| 140 | File | xxxxxxxxxxxxxx.xxx | predictive | High |
| 141 | File | xxxxx_xxxxxx.xxx | predictive | High |
| 142 | File | xxx/xxxxxxxx/xxxxxx | predictive | High |
| 143 | File | xxxxxx | predictive | Low |
| 144 | File | xxx/xxxxxxxxxxx/xxxx_xxxxxxxxxx.xx | predictive | High |
| 145 | File | xxx/xxxxxxxxxx/xxxxxx/xxxxxxxxxx/xxxxxx_xxxxxxxx_xxx_xxxxx_xxxxxxxxx.xx | predictive | High |
| 146 | File | xxxxxx/xxxx/xxxx.xxx | predictive | High |
| 147 | File | xxxxxxx.xx | predictive | Medium |
| 148 | File | xxxxxxx/xxxxx.xxx?xx=x | predictive | High |
| 149 | File | xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 150 | File | xxxxxxxxxx.xxx | predictive | High |
| 151 | File | xxxxxxxx-xxxx-xxxxx.xxx | predictive | High |
| 152 | File | xxxx/xxxxxxxxxx.xxx?xxxxxx=xxx | predictive | High |
| 153 | File | xx_xxxxxxxxxxxxxxx.x | predictive | High |
| 154 | File | xxx-xxx/xxxxxxx.xx | predictive | High |
| 155 | File | xxxxxxxxxxxxxx.xxx | predictive | High |
| 156 | File | xxxxxxx/xxxxx-xxxxxxxxxxx-xxx-xxxxxxxxx.xxx | predictive | High |
| 157 | File | xxxxx.xxx | predictive | Medium |
| 158 | File | xxx | predictive | Low |
| 159 | File | xxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx/xxxx_xxxxx.xxxx | predictive | High |
| 160 | File | xxx.xxx | predictive | Low |
| 161 | File | xxx/xx/xxxxx/xxx/xxxxxxxxxxxxx.xxxx | predictive | High |
| 162 | File | xxx\xxxx\xxx\xxx\xxxxxxxxxxxxx\xxxxxxxxxxxxxxx\xxxxxxxxxx\xxxxxxxxxxxxxxxxxxx.xxxxx | predictive | High |
| 163 | File | xxxxxx.xxx | predictive | Medium |
| 164 | File | xxxxxxx_xx_xxxxxx.xxx | predictive | High |
| 165 | File | xxxxx\xxxx\xxxxxxxxxxx\xxxxx\xxx.xxx | predictive | High |
| 166 | File | xxxx/xxxxx.xx | predictive | High |
| 167 | File | xxxxxxx.xxx | predictive | Medium |
| 168 | File | xxxx.xxx | predictive | Medium |
| 169 | File | xxxxx.xxx | predictive | Medium |
| 170 | File | xx/xxxxx/xxxxxx_xxxxx.xxx | predictive | High |
| 171 | File | xxxx/xxxxxxxxxx/xxxxxx-xxxxxx.x | predictive | High |
| 172 | File | xxxxx/xxxx.x | predictive | Medium |
| 173 | File | xxxx.xxx | predictive | Medium |
| 174 | File | xxxxxxxx.xxx | predictive | Medium |
| 175 | File | xx/xxxx/xxxxxxx_xxxxxx.x | predictive | High |
| 176 | File | xx/xxxxx | predictive | Medium |
| 177 | File | xxxxx.xxx | predictive | Medium |
| 178 | File | xxxxxxx/xxxxxx/xxxxxx/xxxxxx.xxx | predictive | High |
| 179 | File | xxxx.xxx | predictive | Medium |
| 180 | File | xxxxxx/xxxx/xx/xxxxxxx/xxxxxx.xxx.xxx | predictive | High |
| 181 | File | xxxx/xxxxxxxx/xxxxxxx/xxxxx/xxxx/xxxxxxxxx.xxx | predictive | High |
| 182 | File | xxx/xxxxxx.xxx | predictive | High |
| 183 | File | xxx/xxxxxxxxxxx/xxxxxxx.xxx | predictive | High |
| 184 | File | xxxxxxxx/xxxxxxxx.xxx | predictive | High |
| 185 | File | xxxxx.xxxx | predictive | Medium |
| 186 | File | xxxxx.xxx | predictive | Medium |
| 187 | File | xxxx.xxx | predictive | Medium |
| 188 | File | xxxxxx.xxx | predictive | Medium |
| 189 | File | xxxx.xxx | predictive | Medium |
| 190 | File | xxxxx_xxxxxx.xxx | predictive | High |
| 191 | File | xxxxx.xxx | predictive | Medium |
| 192 | File | xxxx.x | predictive | Low |
| 193 | File | xxxx.xxx | predictive | Medium |
| 194 | File | xxxxxx_xxxx.xxx | predictive | High |
| 195 | File | xxx_xxxx.xxx | predictive | Medium |
| 196 | File | xxx/xxxx/xxxxxx.x | predictive | High |
| 197 | File | xxx_xxxx.xxx | predictive | Medium |
| 198 | File | xxx-xxxxxxxxxxx/xxx/xxxxxx/xxx/xxxxxxxxxx.xx | predictive | High |
| 199 | File | xxxx.xxx | predictive | Medium |
| 200 | File | xxxxxxxxxxxxxxxxx.xxx | predictive | High |
| 201 | File | xxxxx.xxx | predictive | Medium |
| 202 | File | xxxxxxx_xxxx.xxx | predictive | High |
| 203 | File | xxxx.xxxx | predictive | Medium |
| 204 | File | xxxxx.xxx | predictive | Medium |
| 205 | File | xxxxx.xxx | predictive | Medium |
| 206 | File | xxxxxxxx.xxx | predictive | Medium |
| 207 | File | xxxxxxxx.xxx | predictive | Medium |
| 208 | File | xxxxxxxxx | predictive | Medium |
| 209 | File | xxxxxxx_xxxxxx_xxxxxxxxxxx.xxx | predictive | High |
| 210 | File | xxxxxx.xxx | predictive | Medium |
| 211 | File | xxxxxxxxxxxxx.xxxx | predictive | High |
| 212 | File | xxxxxx_xxxx.xxx | predictive | High |
| 213 | File | xxxxxxxx.xxx | predictive | Medium |
| 214 | File | xxxxxxxx_xxxxxxxxx.xxx | predictive | High |
| 215 | File | xxxx_xxxxxx.xxx | predictive | High |
| 216 | File | xxxx_xxxx.xxx | predictive | High |
| 217 | File | xxx/xxxxxxx/xxxxxxx/xxxxxxxxxx.xxx | predictive | High |
| 218 | File | xxx/xxx/xxx/xxxxxx/xxxxxxxxxx.xxxx | predictive | High |
| 219 | File | xxx/xxxx/xxxx/xxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 220 | File | xxx/xxxx/xxxx/xxx/xxxx/xxxxxx/xxxxxxxxxx/xxxxxxxxxxxxxx. xxxx | predictive | High |
| 221 | File | xxx/xxxx.xx | predictive | Medium |
| 222 | File | xxxxxxx-xxxxxxxx.xxx | predictive | High |
| 223 | File | xxxxxxx-xxxxxxx.xxx | predictive | High |
| 224 | File | xxxxxxx_xxxxxxxx.xxx | predictive | High |
| 225 | File | xxx/xxxx/xxxxxxxxxxx/xxxxx/xxxxx.xxx | predictive | High |
| 226 | File | xxxxxx/xxxxx/xxxxx/xxx_xxxx.xxx | predictive | High |
| 227 | File | xxxx-xxxxxxxx.xxx | predictive | High |
| 228 | File | xxxx-xxxxx.xxx | predictive | High |
| 229 | File | xxxx-xxxxxxxx.xxx | predictive | High |
| 230 | File | xxxxx | predictive | Low |
| 231 | File | xxxxxxx_xxxxxx.xxx | predictive | High |
| 232 | File | xxxxxxxxx.xxx | predictive | High |
| 233 | File | xxxx-xxxxx.xxx | predictive | High |
| 234 | File | xxxxx/xxxxx.xxx | predictive | High |
| 235 | File | xxxxx/xxxxxxxx-xxxxxxxxx.xxx | predictive | High |
| 236 | File | xxxxxxxxx_xxxx.xxx | predictive | High |
| 237 | File | xxxxxx\xxxxxx\xxxxxxxxx-xxxxxx-xxxxxxx\xxx\xxxxxxx\xxxxxxx.xxx | predictive | High |
| 238 | File | xxxx_xxxx.xxx | predictive | High |
| 239 | File | xxxxxxx.xxx | predictive | Medium |
| 240 | File | xxxx.xx | predictive | Low |
| 241 | File | xxxxxxxxxxxx-xxxxxxxx.xxx | predictive | High |
| 242 | File | xxxxxxxxxxxx-xxxxxx.xxx | predictive | High |
| 243 | File | xx-xxxxxxxx/xxxxx-xx-xxxxx.xxx | predictive | High |
| 244 | File | xxxx.xx | predictive | Low |
| 245 | File | xxxxxxxx/xxxxxx/xxxxxxxxx/xxxxxxx/xxxxxxxxx/xx/xxxxxxxxxxxxxxx.xx | predictive | High |
| 246 | Library | /xxxx/xxxx/xxxxx.x | predictive | High |
| 247 | Library | xxx/xxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxx.xxx | predictive | High |
| 248 | Library | xxxxxx.xx.x | predictive | Medium |
| 249 | Library | xxxxxxxx.xxx | predictive | Medium |
| 250 | Library | xxxxxxxxxxx.xxx | predictive | High |
| 251 | Library | xxxxxxxxxxxx.xxx | predictive | High |
| 252 | Library | xxxxxxxxxxx.xxx | predictive | High |
| 253 | Library | xxxxx.xxx | predictive | Medium |
| 254 | Argument | xx | predictive | Low |
| 255 | Argument | xxxxx | predictive | Low |
| 256 | Argument | xxx | predictive | Low |
| 257 | Argument | x_xxxx/x_xxx/x_xxxxxxx | predictive | High |
| 258 | Argument | xxxxxxxx | predictive | Medium |
| 259 | Argument | xxxxxxxx | predictive | Medium |
| 260 | Argument | xxx | predictive | Low |
| 261 | Argument | xxxxx | predictive | Low |
| 262 | Argument | xxxxxxxxxxx | predictive | Medium |
| 263 | Argument | xxxxx | predictive | Low |
| 264 | Argument | xxxxxxxx | predictive | Medium |
| 265 | Argument | xxxxxxx | predictive | Low |
| 266 | Argument | xxxxxxxx | predictive | Medium |
| 267 | Argument | xxxxxxxxxx | predictive | Medium |
| 268 | Argument | xxxxxxxx xxxx/xxxxxxxx xxxxxxxxxxx | predictive | High |
| 269 | Argument | xxxxxxxx_xxxxx | predictive | High |
| 270 | Argument | xxxxxxxxxx | predictive | Medium |
| 271 | Argument | xxx | predictive | Low |
| 272 | Argument | xxxxxxxxx | predictive | Medium |
| 273 | Argument | xxxxxxx | predictive | Low |
| 274 | Argument | xxxxxxxxx | predictive | Medium |
| 275 | Argument | xxxxxx | predictive | Low |
| 276 | Argument | xxxxxx_xxxxxxx[xxxx][xxxxxxx][] | predictive | High |
| 277 | Argument | xxxxxxxxx[x] | predictive | Medium |
| 278 | Argument | xxxxxxx/xxxx | predictive | Medium |
| 279 | Argument | xxxxxx_xxxx | predictive | Medium |
| 280 | Argument | xxxxxxx | predictive | Low |
| 281 | Argument | xxxx_xx | predictive | Low |
| 282 | Argument | xxx | predictive | Low |
| 283 | Argument | xxxxxx_xxx | predictive | Medium |
| 284 | Argument | xxxxxxxxxx xxxx | predictive | High |
| 285 | Argument | xxxx | predictive | Low |
| 286 | Argument | xxxx | predictive | Low |
| 287 | Argument | xxxxxxx | predictive | Low |
| 288 | Argument | xxxxxxxxxxx | predictive | Medium |
| 289 | Argument | xxxxxxxx | predictive | Medium |
| 290 | Argument | xxxxxxx | predictive | Low |
| 291 | Argument | xxxxxxxx | predictive | Medium |
| 292 | Argument | xxxx_xxxxxxxxx_xxxxx_xxxxx | predictive | High |
| 293 | Argument | xxxxx | predictive | Low |
| 294 | Argument | xxxxx | predictive | Low |
| 295 | Argument | xxxxx/xxxxx xxxxxx | predictive | High |
| 296 | Argument | xxxxx | predictive | Low |
| 297 | Argument | xxx_xxxx/xxx_xxxx/xxx_xxxxxx/xxx_xxxx/xxx_xxxx/xxx_xxxxxx/xxx_xxx | predictive | High |
| 298 | Argument | xxxxx_xxx | predictive | Medium |
| 299 | Argument | xxxxxxxx_xx | predictive | Medium |
| 300 | Argument | xxxxx/xxxxx | predictive | Medium |
| 301 | Argument | xxxx | predictive | Low |
| 302 | Argument | xxxx | predictive | Low |
| 303 | Argument | xxxxxxxx | predictive | Medium |
| 304 | Argument | xxxxxxxx | predictive | Medium |
| 305 | Argument | xxxxxxxxxx | predictive | Medium |
| 306 | Argument | xxxx_xxxxxx | predictive | Medium |
| 307 | Argument | xxxxxxxxxxxxxxxxxx | predictive | High |
| 308 | Argument | xxxxx | predictive | Low |
| 309 | Argument | xxxxxxxx/xxxxxx | predictive | High |
| 310 | Argument | xxxxxxxx/xxxxxxx/xxxxxxxxxxxx | predictive | High |
| 311 | Argument | x_xxxxxx_xxx | predictive | Medium |
| 312 | Argument | xx_xxxxxx | predictive | Medium |
| 313 | Argument | xxxxxx | predictive | Low |
| 314 | Argument | xxxxxxxxxx | predictive | Medium |
| 315 | Argument | xxxxxx | predictive | Low |
| 316 | Argument | xxxx | predictive | Low |
| 317 | Argument | xxxx | predictive | Low |
| 318 | Argument | xxxxxxxx | predictive | Medium |
| 319 | Argument | xxxxxxxxxx | predictive | Medium |
| 320 | Argument | xxxx_xx/xxxxxx_xxxx/xxxxxx_xxxx/xxxxxx_xx | predictive | High |
| 321 | Argument | xxxx | predictive | Low |
| 322 | Argument | xx | predictive | Low |
| 323 | Argument | xx | predictive | Low |
| 324 | Argument | xxx/xxx | predictive | Low |
| 325 | Argument | xxxxx | predictive | Low |
| 326 | Argument | xxxxx/xxxxxx_xx | predictive | High |
| 327 | Argument | xxxx | predictive | Low |
| 328 | Argument | xxxx | predictive | Low |
| 329 | Argument | xxxxxxxx | predictive | Medium |
| 330 | Argument | xxxx xxxx/xxxxx xxxx/xxxxxx xxxx | predictive | High |
| 331 | Argument | xxxxxxxxxx | predictive | Medium |
| 332 | Argument | xxx | predictive | Low |
| 333 | Argument | xx | predictive | Low |
| 334 | Argument | xxx | predictive | Low |
| 335 | Argument | xxxxxxxxxx | predictive | Medium |
| 336 | Argument | xxx/xxx | predictive | Low |
| 337 | Argument | xxxxxxx | predictive | Low |
| 338 | Argument | xxxxxxxxx | predictive | Medium |
| 339 | Argument | xx_xxxxxx_xxxxxxxxxxxx | predictive | High |
| 340 | Argument | xxxxxx | predictive | Low |
| 341 | Argument | x_xx | predictive | Low |
| 342 | Argument | xxxx | predictive | Low |
| 343 | Argument | xxxx | predictive | Low |
| 344 | Argument | xxxx/xxxxxxxx | predictive | High |
| 345 | Argument | xxx_xxxx | predictive | Medium |
| 346 | Argument | xxxx_xxxx | predictive | Medium |
| 347 | Argument | xxxxxxx | predictive | Low |
| 348 | Argument | xxxxxxx/xxxxxxxxxx/xxxxxx/xxxxxx | predictive | High |
| 349 | Argument | xxxxxx | predictive | Low |
| 350 | Argument | xxxxxxx | predictive | Low |
| 351 | Argument | xxxx | predictive | Low |
| 352 | Argument | xxxx_xxxx_xxxxx | predictive | High |
| 353 | Argument | xxxxxxxx | predictive | Medium |
| 354 | Argument | xxxxxxxxx | predictive | Medium |
| 355 | Argument | xxxx | predictive | Low |
| 356 | Argument | xxxxx_xxxx_xxxx | predictive | High |
| 357 | Argument | xxx | predictive | Low |
| 358 | Argument | xxx/xx/xx/xx/xx/xx/xx/xx | predictive | High |
| 359 | Argument | xxx | predictive | Low |
| 360 | Argument | xxxx_xx | predictive | Low |
| 361 | Argument | xxxx_xxxxx | predictive | Medium |
| 362 | Argument | xxxxx_xxx | predictive | Medium |
| 363 | Argument | xxxxxxx | predictive | Low |
| 364 | Argument | xxxxx | predictive | Low |
| 365 | Argument | xxx | predictive | Low |
| 366 | Argument | xxxxx_xxx | predictive | Medium |
| 367 | Argument | xxxxxxxx | predictive | Medium |
| 368 | Argument | xxxxxxxxxxx | predictive | Medium |
| 369 | Argument | xxxxxxx_xxx | predictive | Medium |
| 370 | Argument | xxxx_xxxx | predictive | Medium |
| 371 | Argument | xxx_xx | predictive | Low |
| 372 | Argument | xxxxxxx_xxxxxx_xxxxxxxxxxx.xxx | predictive | High |
| 373 | Argument | xxxxx_xx | predictive | Medium |
| 374 | Argument | xxxxxxx | predictive | Low |
| 375 | Argument | xxxxxx | predictive | Low |
| 376 | Argument | xxxxxxxxxx | predictive | Medium |
| 377 | Argument | xxxxxxxxxx | predictive | Medium |
| 378 | Argument | xxxxxx_xxxxxx | predictive | High |
| 379 | Argument | xxxxxx | predictive | Low |
| 380 | Argument | xxxxxxx | predictive | Low |
| 381 | Argument | xxxx | predictive | Low |
| 382 | Argument | xxxxxxxx_xx | predictive | Medium |
| 383 | Argument | xxxxxxxx_xxxxxxx_xxxxxxx/xxxxxxxx_xxxxxx_xxxxxxx | predictive | High |
| 384 | Argument | xxxx | predictive | Low |
| 385 | Argument | xxxx | predictive | Low |
| 386 | Argument | xxxxxx | predictive | Low |
| 387 | Argument | xxx | predictive | Low |
| 388 | Argument | xxxxxx | predictive | Low |
| 389 | Argument | xxxxxx($xxx) | predictive | Medium |
| 390 | Argument | xxx | predictive | Low |
| 391 | Argument | xxxxxxxxxxx/xxxxxxxxxxx/xxxxxxxxxxx | predictive | High |
| 392 | Argument | xxxxxxxx | predictive | Medium |
| 393 | Argument | xxxxx | predictive | Low |
| 394 | Argument | xxxxx | predictive | Low |
| 395 | Argument | xxx_xx | predictive | Low |
| 396 | Argument | xxxxxxxxxx_xxxxxxxx/xxxxxx_xxxxxxxx/xxxxxx_xxxxxxxx | predictive | High |
| 397 | Argument | xxxxxxxxx | predictive | Medium |
| 398 | Argument | xxxxx | predictive | Low |
| 399 | Argument | xxxxxx | predictive | Low |
| 400 | Argument | xxxxxxxx_xxxx_xxxxxxxxx | predictive | High |
| 401 | Argument | xxx | predictive | Low |
| 402 | Argument | xxxx | predictive | Low |
| 403 | Argument | xxxxxx | predictive | Low |
| 404 | Argument | xxxxxxxx | predictive | Medium |
| 405 | Argument | xxxxxxxx | predictive | Medium |
| 406 | Argument | xxxx_xxxxx | predictive | Medium |
| 407 | Argument | xxxxxxxx | predictive | Medium |
| 408 | Argument | xxx_xxx | predictive | Low |
| 409 | Argument | x-xxxxxxxxx-xxx | predictive | High |
| 410 | Argument | x-xxxxxxxxxx-xxxxxxxxxx | predictive | High |
| 411 | Argument | _xxxxxx | predictive | Low |
| 412 | Input Value | ' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxx | predictive | High |
| 413 | Input Value | /../xxx/xxxxxx- | predictive | High |
| 414 | Input Value | /../xxx/xxxxxxxx | predictive | High |
| 415 | Input Value | /../xxx/xxxxxxxx- | predictive | High |
| 416 | Input Value | xxxxxxx"><xxxxxx>xxxxx(x)</xxxxxx>xxxxx | predictive | High |
| 417 | Input Value | <xxxxxx>xxxxx(xxxxxxxx.xxxxxx)</xxxxxx> | predictive | High |
| 418 | Input Value | <xxx%xxxxxxxx=xxxxx(xxxxxxxx.xxxxxx)> | predictive | High |
| 419 | Input Value | ><xxxxxx>xxxxx(x)</xxxxxx> | predictive | High |
| 420 | Input Value | x:\xxxxx\xxxx\xxx\xxx\xxxxxxxxxx.xxx | predictive | High |
| 421 | Input Value | xxxxxx%xx+xx+%xxx%xx+%xx+%xxx%xx+--+- | predictive | High |
| 422 | Network Port | xxx/xxxxx | predictive | Medium |
References (14)
The following list contains external sources which discuss the actor and the associated activities:
- https://github.com/blackorbird/APT_REPORT/blob/master/International%20Strategic/Iran/Bitdefender-PR-Whitepaper-EyeSpyVPN-creat625-en-EN.pdf
- https://github.com/blackorbird/APT_REPORT/blob/master/International%20Strategic/Iran/Raport-analize-Teknikat-Taktikat-Procedurat-per-sulmuesit-Iraniane.pdf
- xxxxx://xxxxxx.xxx/xxxxxxxxxxx/xxx_xxxxxx/xxxx/xxxxxx/xxxxxxxxxx/xxxxxxxx-xxxxxxx-xxx-xxxxx-%xx%xx%xxxxxxxxxxxx%xx%xx%xx-xxxx-xxxxxxxx-xx-xxxxx-xxxxxxx.xxx
- xxxxx://xxxxxx.xxx/xxxxxxx/xxxxxxxxx-xxxxxx/xxxx/xxxxxx/xxxxxxxx_xxxxxxx/xxxxxxx_xx.xxxxxx
- xxxxx://xxxxxx.xxx/xxxxxxx/xxxxxxxxx-xxxxxx/xxxx/xxxxxx/xxxxxxxxxxx_xxxxxxx/xxxxxxxxxxx_xxxxxxx_xx.xxxxxx
- xxxxx://xxxxxx.xxx/xxxxxxx/xxxxxxxxx-xxxxxx/xxxx/xxxxxx/xxxxxx_xxxxxxx/xx_xxxxxxx_xx.xxxxxx
- xxxxx://xxxxxx.xxx/xxxxxxx/xxxxxxxxx-xxxxxx/xxxx/xxxxxx/xxxx_xxxxxxx/xxxx_xxxxxxx_xx.xxxxxx
- xxxxx://xxxxxx.xxx/xxxxx/xxxxx_xxxxxx_xxxxxxxxxxxx/xxxx/xxxx/xxxxxx/x/xxxx%xxxxxxxxx
- xxxxx://xxxxxx.xxxxxxxxxxxxxxxx.xxx/xxxxxxx-xxxxxxxxx-xxxxxxxxxxx-xxxxx-xxxxxx/
- xxxxx://xx-xxxx.xxxx.xxx/xxxx/xxxxxx/xxxx-xxxx
- xxxxx://xxx.xxxx.xxx/xxxx-xxxxxx/xxxxxxxxxxxxx-xxxxxxxxxx/xxxx-xxxx
- xxxxx://xxx.xxxx.xxx/xxxx-xxxxxx/xxxxxxxxxxxxx-xxxxxxxxxx/xxxx-xxxx
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxx/xxxxxx/xxxx-xxxx
- xxxxx://xxx.xxxxxxxxx.xxx/xxxxxxxx/xxxx/xxxx/xx/xx/xxxxxxxxx-xxxxxxxxxxxx-xxxxxxx-xxxxxxx-xxxxxxx-xxx-xxxxxxxx-xxxxxxxxxx/