Magic Hound Analysis

IOB - Indicator of Behavior (553)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en524
es10
de8
fr4
it2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us418
ir46
cn2
fr2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

WordPress14
libsixel6
Microsoft Edge6
nginx6
Apache Tomcat6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.040.04187CVE-2007-1192
2Hikvision Product Message command injection5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.040.93002CVE-2021-36260
3Google Chrome WebRTC heap-based overflow6.36.0$25k-$100k$5k-$25kHighOfficial Fix0.000.01319CVE-2022-2294
4SourceCodester Canteen Management System food.php query cross site scripting4.44.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.00885CVE-2022-4091
5DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.420.04187CVE-2010-0966
6MINMAX newsDia.php sql injection6.35.8$0-$5k$0-$5kNot DefinedNot Defined0.020.00885CVE-2020-36535
7SourceCodester Canteen Management System POST Request ajax_invoice.php query sql injection6.66.5$0-$5k$0-$5kProof-of-ConceptNot Defined0.030.09029CVE-2022-4222
8SourceCodester Event Registration System cross site scripting3.63.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.080.02561CVE-2022-4233
9SourceCodester Apartment Visitor Management System action-visitor.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.080.00885CVE-2022-2772
10HTC One/Sense Mail Client certificate validation4.84.4$0-$5k$0-$5kProof-of-ConceptNot Defined0.100.00885CVE-2013-10001
11WordPress do_trackbacks sql injection6.35.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.010.02528CVE-2010-4257
12Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.080.25090CVE-2017-0055
13wordpress-gallery-transformation gallery.php sql injection8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.040.00954CVE-2017-1002028
14OpenSSH Authentication Username information disclosure5.34.8$5k-$25k$0-$5kHighOfficial Fix0.120.49183CVE-2016-6210
15Redis XAUTOCLAIM Command integer overflow6.05.9$0-$5k$0-$5kNot DefinedOfficial Fix0.070.05634CVE-2022-35951
16Roku RokuOS Realtek WiFi Chip unknown vulnerability4.64.5$0-$5k$0-$5kNot DefinedNot Defined0.060.00885CVE-2022-27152
17Maran PHP Shop prod.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.010.00986CVE-2008-4879
18Cisco IOS NTP Interface Queue input validation7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.080.01136CVE-2016-1478
19DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.030.06790CVE-2007-1167
20DD-WRT Web Interface cross-site request forgery7.56.9$0-$5k$0-$5kUnprovenNot Defined0.030.02359CVE-2012-6297

Campaigns (3)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (102)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
15.9.244.151static.151.244.9.5.clients.your-server.deMagic HoundSaffron RoseverifiedHigh
25.39.223.227Magic HoundRocket KittenverifiedHigh
35.145.151.1ip-5-145-151-1.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
45.145.151.2ip-5-145-151-2.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
55.145.151.3ip-5-145-151-3.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
65.145.151.4ip-5-145-151-4.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
75.145.151.5ip-5-145-151-5.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
85.145.151.6ip-5-145-151-6.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
95.145.151.7ip-5-145-151-7.hosts.businesscomnetworks.comMagic HoundRocket KittenverifiedHigh
1031.192.105.10Magic HoundRocket KittenverifiedHigh
1145.32.186.3345.32.186.33.vultr.comMagic HoundPupyRATverifiedMedium
1245.56.123.129li941-129.members.linode.comMagic HoundverifiedHigh
1345.58.37.142Magic HoundverifiedHigh
1445.76.128.16545.76.128.165.vultr.comMagic HoundverifiedMedium
1569.87.223.26Magic HoundverifiedHigh
1681.17.28.227Magic HoundSaffron RoseverifiedHigh
1781.17.28.229Magic HoundSaffron RoseverifiedHigh
1881.17.28.231Magic HoundSaffron RoseverifiedHigh
1981.17.28.235Magic HoundSaffron RoseverifiedHigh
2084.11.146.52host-84-11-146-52.customer.teleport-iabg.deMagic HoundRocket KittenverifiedHigh
2184.11.146.53host-84-11-146-53.customer.teleport-iabg.deMagic HoundRocket KittenverifiedHigh
22XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
23XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
24XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
25XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
26XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
27XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
28XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
29XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
30XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
31XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
32XX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxx.xxxxxxxxxx.xx.xxXxxxx XxxxxXxxxxxx XxxxverifiedHigh
33XX.XXX.XX.XXXxxxx XxxxxverifiedHigh
34XX.XXX.XX.XXXxxxx XxxxxXxxxxxxverifiedHigh
35XXX.XXX.XXX.XXXXxxxx XxxxxverifiedHigh
36XXX.XXX.XXX.XXXxxx-xx.xxxxx.xxxXxxxx XxxxxverifiedHigh
37XXX.X.XXX.XXXxxxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
38XXX.X.XXX.XXXxxxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
39XXX.X.XXX.XXXxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
40XXX.X.XXX.XXXxxxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
41XXX.X.XXX.XXXxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
42XXX.X.XXX.XXXxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
43XXX.X.XXX.XXXxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
44XXX.X.XXX.XXXxxxxxxx.xxxxxxxx.xxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
45XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
46XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
47XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
48XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
49XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
50XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
51XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
52XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
53XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
54XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
55XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
56XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
57XXX.X.XXX.XXxx-xxxxxxxxxx.xxxxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
58XXX.X.XXX.XXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
59XXX.X.XXX.XXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
60XXX.X.XXX.XXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
61XXX.X.XXX.XXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
62XXX.X.XXX.XXXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
63XXX.X.XXX.XXXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
64XXX.X.XXX.XXXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
65XXX.X.XXX.XXXxxxxxx.xxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
66XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
67XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
68XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
69XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
70XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
71XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
72XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
73XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
74XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
75XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
76XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
77XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
78XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
79XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
80XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
81XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
82XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
83XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
84XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
85XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
86XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
87XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
88XXX.X.XXX.XXXxxx.xxx.x.xxx.xxxxxxxxxx.xxx.xxxxxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
89XXX.XXX.XX.XXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
90XXX.XXX.XX.XXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
91XXX.XXX.XX.XXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
92XXX.XXX.XX.XXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
93XXX.XXX.XX.XXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
94XXX.XXX.XX.XXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
95XXX.XXX.XX.XXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
96XXX.XXX.XX.XXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
97XXX.XXX.XX.XXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
98XXX.XX.XX.XXXXxxxx XxxxxXxxxxxxverifiedHigh
99XXX.XXX.XXX.XXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
100XXX.XXX.XX.XXXxxxx.xxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
101XXX.XXX.XX.XXXxxxx.xxxxxx.xxxXxxxx XxxxxXxxxxx XxxxxxverifiedHigh
102XXX.XXX.XXX.XXXXxxxx XxxxxXxxxxx XxxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (22)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (220)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.htaccesspredictiveMedium
2File/admin.phppredictiveMedium
3File/admin/book/create/predictiveHigh
4File/Admin/login.phppredictiveHigh
5File/admin/loginc.phppredictiveHigh
6File/admin/students/manage.phppredictiveHigh
7File/auditLogAction.dopredictiveHigh
8File/cgi-bin/wapopenpredictiveHigh
9File/devices/acurite.cpredictiveHigh
10File/DocSystem/Repos/getReposAllUsers.dopredictiveHigh
11File/etc/ajenti/config.ymlpredictiveHigh
12File/event/admin/?page=user/listpredictiveHigh
13File/example/editorpredictiveHigh
14File/foms/place-order.phppredictiveHigh
15File/getcfg.phppredictiveMedium
16File/GetCSSashx/?CP=%2fwebconfigpredictiveHigh
17File/goform/login_processpredictiveHigh
18File/goform/rlmswitchr_processpredictiveHigh
19File/goforms/rlminfopredictiveHigh
20File/newsDia.phppredictiveMedium
21File/pluginpredictiveLow
22File/pms/index.phppredictiveHigh
23File/rating.phppredictiveMedium
24File/scas/admin/predictiveMedium
25File/scas/classes/Users.php?f=save_userpredictiveHigh
26File/services/prefs.phppredictiveHigh
27File/xxx/xxx_xxxxxx.xpredictiveHigh
28File/xxxxxxx/predictiveMedium
29File/xxxxxxxxx-xxxxxxx-xxxxxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
30Filexxxxxx-xxxxxxx.xxxpredictiveHigh
31Filexxxxxxx.xxxpredictiveMedium
32Filexxx_xx_xxxx.xxxpredictiveHigh
33Filexxxxx.xxxpredictiveMedium
34Filexxxxx/xxxxxx/xxxxxxx.xxxpredictiveHigh
35Filexxxxx/xxxxx.xxxpredictiveHigh
36Filexxxxx/xxxxxx.xxxpredictiveHigh
37Filexxxxx_xxxxxxx.xxxpredictiveHigh
38Filexx_xxxxxx.xxxpredictiveHigh
39Filexxxxx/xxxxxxxx/xx-xxx/xx_xxxxxxx.xpredictiveHigh
40Filexxxx_xxxxxxx.xxxpredictiveHigh
41Filexxx/xxxxx/xxxx/xxxxpredictiveHigh
42Filexxxxxxxxxxxxxxx.xxxxpredictiveHigh
43Filexxxx-xxxxxx.xpredictiveHigh
44Filexxxxxxxxx.xxxpredictiveHigh
45Filexxxxxxx.xxpredictiveMedium
46Filexxxxx.xxxpredictiveMedium
47Filexxxxxxxx.xxxpredictiveMedium
48Filexxx-xxx/xxxxxxpredictiveHigh
49Filexxx.xxpredictiveLow
50Filexxxxxx/xxx.xpredictiveMedium
51Filexxxxxx/xxxxxxx/xxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
52Filexxx?xxx=xxxxxpredictiveHigh
53Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
54Filexxxx/xxxxxxxx.xxxx.xxxxxxx.xxxpredictiveHigh
55Filexxxxxx.xxxpredictiveMedium
56Filexxxxx/xxxx/xxxxxxxxpredictiveHigh
57Filexxxxxxx/xxx/xxx-xxx.xpredictiveHigh
58Filexxxxxxx/xxxxxxxxxx/xxx/xxxx/xxxx-xxx.xpredictiveHigh
59Filexxxxxxxxxx.xxxxpredictiveHigh
60Filexxxxx.xxxpredictiveMedium
61Filexxxxxxxx.xpredictiveMedium
62Filexxxx.xxxpredictiveMedium
63Filexxxxx.xxxpredictiveMedium
64Filexxxxxxx.xxxpredictiveMedium
65Filexxxx.xxxpredictiveMedium
66Filexxxxxxx-xxxxxx/xxxxxxxx/xxxxx/xxxx/xxxxxx_xxxx.xxxpredictiveHigh
67Filexxx_xxxx.xxxpredictiveMedium
68Filexxxxxxxxx.xxxpredictiveHigh
69Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
70Filexxxxxxxxxxxx.xxxpredictiveHigh
71Filexxx/xxxxxx.xxxpredictiveHigh
72Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
73Filexxxxxxx/xxxxxxxxx.xxxpredictiveHigh
74Filexxxxx.xxxpredictiveMedium
75Filexxxxx.xxxpredictiveMedium
76Filexxxx_xxxx.xxxpredictiveHigh
77Filexxxxx.xxx.xxx.xxpredictiveHigh
78Filexxxxxxxx/xxx/xxxxxx.xpredictiveHigh
79Filexxxxxxxx/xxx/xxxxx.xpredictiveHigh
80Filexxxxxx.xxxpredictiveMedium
81Filexxxx-xxxxxxxx.xxxpredictiveHigh
82Filexxxxx.xxxpredictiveMedium
83Filexxxxx.xxxpredictiveMedium
84Filexxxxx_xxx.xxxpredictiveHigh
85Filexxxxx_xx.xxxxpredictiveHigh
86Filexx-xxxxx/xxxx-xxxx.xxxpredictiveHigh
87Filexxx_xxxxx.xpredictiveMedium
88Filexxxxxxx.xxxpredictiveMedium
89Filexxx/xxxxxxxxx/xxxxx_xxxx.xpredictiveHigh
90Filexxxx_xxxxxx.xxxpredictiveHigh
91Filexxx/xxxxx.xxxxpredictiveHigh
92Filexxxx.xxxpredictiveMedium
93Filexxxxxxxx.xxxpredictiveMedium
94Filexxxxxxxx_xxxxxxxx.xxxpredictiveHigh
95Filexxxxxxx.xxxpredictiveMedium
96Filexxxxxx_xxxxxxxxxx_xxxxx.xxxpredictiveHigh
97Filexxxx.xxxpredictiveMedium
98Filexxxxxxx.xxxpredictiveMedium
99Filexxxxxx.xxxpredictiveMedium
100Filexxxxxxxxxx.xxxpredictiveHigh
101Filexxxxxxxx.xxxpredictiveMedium
102Filexxx_xxxx_xxxxxxxxx.xxpredictiveHigh
103Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
104Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
105Filexxxxx.xxxpredictiveMedium
106Filexxxx.xxxpredictiveMedium
107Filexxx/xxxxxxx.xpredictiveHigh
108Filexxx/xxxx/xxx/xxxx.xpredictiveHigh
109Filexxx_xxxxx.xpredictiveMedium
110Filexxxxxx_xxxxxxx.xxxpredictiveHigh
111Filexxxxx-xxxxxxxxxxxx.xxxpredictiveHigh
112Filexxxxxx.xxxpredictiveMedium
113Filexxxx/xxx-xxx.xxxpredictiveHigh
114Filexxxxx/xxxxxx.xxxpredictiveHigh
115FilexxxxxxpredictiveLow
116Filexx-xxxxx/xxxxxxxx/xxxxx-xx-xxxxx-xxxx.xxxpredictiveHigh
117Filexx-xxxxx/xxxxx-xxxxxx.xxxpredictiveHigh
118Filexx-xxxxxxxx/xx/xxxxxxxxxxxxpredictiveHigh
119Filexx-xxxxx.xxxpredictiveMedium
120Filexx-xxxxxxxxxxx.xxxpredictiveHigh
121Filexxxxxx.xxxpredictiveMedium
122File\xxxxx\xxxxxxxxxx\xxxxxxxx.xxxpredictiveHigh
123File\xxxxxxx\xxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
124File\xxxx\xxxxxxxxxx\xxxx.xxxpredictiveHigh
125File_xxxxxx.xxxpredictiveMedium
126Library/_xxx_xxx/xxxxx.xxxpredictiveHigh
127Libraryxxx/xx_xxx.xpredictiveMedium
128Libraryxxxxxxxx/xxxxxxx/xxxxx/xxx.xxxpredictiveHigh
129Argument$_xxxxxxx['xxxxxxx']['xxxx']predictiveHigh
130Argumentxxx_xxxxpredictiveMedium
131Argumentxxxxxx/xxxxxxpredictiveHigh
132ArgumentxxxxxxxxpredictiveMedium
133ArgumentxxxxxxpredictiveLow
134Argumentxxx_xxxpredictiveLow
135ArgumentxxxpredictiveLow
136Argumentxxx_xxpredictiveLow
137ArgumentxxxpredictiveLow
138ArgumentxxxpredictiveLow
139Argumentxxxx_xxpredictiveLow
140ArgumentxxxxxxxxxxxxxxxpredictiveHigh
141ArgumentxxxxxxpredictiveLow
142ArgumentxxxxpredictiveLow
143ArgumentxxxpredictiveLow
144ArgumentxxxxpredictiveLow
145Argumentxxxxxx/xxxxxxpredictiveHigh
146ArgumentxxxxpredictiveLow
147ArgumentxxxxxxxxxxpredictiveMedium
148ArgumentxxxxxxpredictiveLow
149Argumentxxxxx xxxx/xxxx xxxxpredictiveHigh
150Argumentx/xx/x/xxxx_xxxxxxxx_xxxxxx/xxxx_xxxxxxpredictiveHigh
151Argumentxxxxx/xxxxxxxxxxxxxxpredictiveHigh
152ArgumentxxxxpredictiveLow
153ArgumentxxxxpredictiveLow
154ArgumentxxxxxxxxxxpredictiveMedium
155ArgumentxxxxpredictiveLow
156Argumentxxxx/xxxxxxxpredictiveMedium
157ArgumentxxxxpredictiveLow
158ArgumentxxpredictiveLow
159ArgumentxxxxxxxxpredictiveMedium
160ArgumentxxxxxxxpredictiveLow
161Argumentxxxx_xxpredictiveLow
162ArgumentxxxxpredictiveLow
163ArgumentxxxpredictiveLow
164Argumentxxx_xxxxpredictiveMedium
165ArgumentxxxpredictiveLow
166Argumentxxxxxx_xxxx_xxxxpredictiveHigh
167Argumentxxxxxx_xxpredictiveMedium
168ArgumentxxxxpredictiveLow
169ArgumentxxxxxxxpredictiveLow
170ArgumentxxxxxxxpredictiveLow
171Argumentxxxxxxx/xxxx/xxxxxxxxpredictiveHigh
172Argumentxxxxx/xxxxxxxpredictiveHigh
173ArgumentxxxxxxpredictiveLow
174ArgumentxxxxpredictiveLow
175ArgumentxxxxpredictiveLow
176ArgumentxxxxxxxxpredictiveMedium
177ArgumentxxxxpredictiveLow
178Argumentxxxx_xxxxpredictiveMedium
179Argumentxxxx_xxpredictiveLow
180Argumentxxxxxxx_xxpredictiveMedium
181Argumentxxxxxxx_xxxxpredictiveMedium
182ArgumentxxxxxxpredictiveLow
183ArgumentxxxxxxxxpredictiveMedium
184ArgumentxxxxxxxpredictiveLow
185ArgumentxxxxxxxxxxpredictiveMedium
186ArgumentxxxxxxpredictiveLow
187ArgumentxxxxxxpredictiveLow
188Argumentxxxxxx/xxxxxx_xxxxxxpredictiveHigh
189Argumentxxxxxxxxxx/xxxxxxxpredictiveHigh
190ArgumentxxxxxxxxpredictiveMedium
191Argumentxxxxxxxx[xxxx xxxxxxx][xxxxxxxxxxxxxxxxxx]predictiveHigh
192ArgumentxxxxpredictiveLow
193ArgumentxxxpredictiveLow
194ArgumentxxxxxxxxxpredictiveMedium
195Argumentxxxxxxxxxxxx/xxxxxxxxxxxxxxxxpredictiveHigh
196ArgumentxxxxxpredictiveLow
197ArgumentxxxxxxxxxxxpredictiveMedium
198ArgumentxxxxxpredictiveLow
199ArgumentxxxpredictiveLow
200ArgumentxxxpredictiveLow
201ArgumentxxxxxxxxpredictiveMedium
202Argumentxxxx_xxpredictiveLow
203Argumentxxxx_xxxxpredictiveMedium
204ArgumentxxxxxpredictiveLow
205Argument\xxx\predictiveLow
206Argument\xxxxxx\predictiveMedium
207Argument_xxxxxpredictiveLow
208Input Value%xx%xx%xxxxx%xxxxx=x%xxxxxxxxx=xxxxx(x)%xxpredictiveHigh
209Input Value../predictiveLow
210Input Value../..predictiveLow
211Input Value.xxxpredictiveLow
212Input Valuexx' xxx xxx_xxxx.xxxxxxx('xxxx://xxxxxxxxx_xxxx/xxxxx')='x' xxxxx xx xxxxx_xxxx)) --predictiveHigh
213Input Value::$xxxxx_xxxxxxxxxxpredictiveHigh
214Input Valuexxxxx' xx 'x'='xpredictiveHigh
215Input Valuexxxx -x xxxxxxxx=xxxxxx.xxxxxxx xxxx://xxx.xxx.x.x/xxxxxx.xxxpredictiveHigh
216Input Valuexxxxxxxxx' xxx 'x'='xpredictiveHigh
217Input Value\xpredictiveLow
218Pattern|xx xx xx|predictiveMedium
219Network Portxxx/xxx (xxx)predictiveHigh
220Network Portxxx xxxxxx xxxxpredictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!