NetWire Analysis

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en778
es81
fr44
pl33
de31

Country

us598
ru59
gb34
cn22
de21

Actors

Activities

Interest

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTICVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.05CVE-2007-1192
2JForum Login input validation6.56.5$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2012-5338
3Genymotion Desktop Clipboard information disclosure4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27549
4WordPress WP_Query sql injection6.36.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.46CVE-2022-21661
5PHPGurukul Hospital Management System dashboard.php access control5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2020-35745
6Genetechsolutions Pie-Register wp-login.php cross site scripting4.34.1$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2013-4954
7Microsoft IIS IP/Domain Restriction access control6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.71CVE-2014-4078
8Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.53CVE-2017-0055
9Apple M1 Register s3_5_c15_c10_1 M1RACLES access control8.88.8$5k-$25k$5k-$25kNot DefinedNot Defined0.03CVE-2021-30747
10Kirona Dynamic Resource Scheduling REGISTER.cmd information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.03CVE-2019-17503
11nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined1.60CVE-2020-12440
12Linux Foundation Xen EFLAGS Register SYSENTER input validation6.25.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2013-1917
13D-Link DIR-865L register_send.php improper authentication7.57.1$5k-$25k$5k-$25kProof-of-ConceptNot Defined0.00CVE-2013-3096
14Email Subscribers / Newsletters sql injection8.37.9$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-20361
15WordPress sql injection6.86.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.46CVE-2022-21664
16Online Store Registration Form sent_register.php cross site scripting5.25.2$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2019-8290
17Linux Kernel feat.c __feat_register_sp resource consumption4.44.2$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2019-20096
18Host Web Server phpinfo.php phpinfo information disclosure5.35.2$5k-$25k$0-$5kNot DefinedWorkaround0.11
19Plesk Obsidian Reflected cross site scripting5.25.2$0-$5k$0-$5kNot DefinedNot Defined0.29CVE-2020-11583
20Phplinkdirectory PHP Link Directory conf_users_edit.php cross-site request forgery6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.21CVE-2011-0643

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • Phishing

IOC - Indicator of Compromise (44)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsConfidence
123.254.202.192hwsrv-738718.hostwindsdns.comNetWireHigh
237.0.11.206NetWireHigh
337.46.150.139NetWireHigh
437.139.64.106NetWireHigh
545.144.225.219NetWireHigh
679.134.225.52NetWireHigh
789.249.74.213NetWireHigh
894.103.80.254v702647.hosted-by-vdsina.ruNetWireHigh
9103.150.8.54NetWireHigh
10XXX.XX.XX.XXXxxxxxxHigh
11XXX.XX.XXX.XXXxxxxxxHigh
12XXX.XXX.XX.XXXxxxxxxXxxxxxxxHigh
13XXX.XXX.XXX.XXxxxxxxXxxxxxxHigh
14XXX.XX.XXX.XXxxxx.xx-xxx-xx-xxx.xxxXxxxxxxHigh
15XXX.XX.XXX.XXXxxx.xx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxxxHigh
16XXX.XXX.XXX.XXXXxxxxxxHigh
17XXX.XXX.XXX.XXXXxxxxxxHigh
18XXX.XXX.XXX.XXXXxxxxxxHigh
19XXX.XXX.XXX.XXXXxxxxxxHigh
20XXX.XXX.XXX.XXXXxxxxxxHigh
21XXX.XXX.XXX.Xxxxxx.xxxxxxxxxx.xxxXxxxxxxHigh
22XXX.XX.XXX.XXXXxxxxxxHigh
23XXX.XX.XXX.XXXXxxxxxxHigh
24XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxHigh
25XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxHigh
26XXX.XXX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxxxHigh
27XXX.XXX.XX.XXXxxx.xxx.xx.xxx.xxxxxx.xxxxxxxx.xxxXxxxxxxHigh
28XXX.XXX.XX.XXXxxxxxxXxxxxxxxHigh
29XXX.XXX.XX.XXXxxxxxxHigh
30XXX.XXX.XXX.XXXXxxxxxxHigh
31XXX.XXX.XX.XXXxx-xxxx.xxxxxxxxx.xxxXxxxxxxHigh
32XXX.XXX.XX.XXXxx-xxxx.xxxxxxxxx.xxxXxxxxxxHigh
33XXX.XXX.X.XXXxxxxxxxx.xxxxxxx.xxxXxxxxxxHigh
34XXX.XXX.XXX.XXXxx-xxxx-xxxx.xxxx.xxxXxxxxxxHigh
35XXX.XXX.XX.XXxxxxxxxx.xxxx.xxxXxxxxxxHigh
36XXX.XXX.XX.XXxxxxxxxx.xxxx.xxxXxxxxxxHigh
37XXX.XXX.XXX.XXxxxx.xxxxxxxxxx.xxxXxxxxxxHigh
38XXX.X.XX.XXXXxxxxxxHigh
39XXX.X.XX.XXXXxxxxxxHigh
40XXX.XX.XXX.XXXXxxxxxxHigh
41XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxxxHigh
42XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxxxHigh
43XXX.XX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxxHigh
44XXX.XXX.XXX.XXXxxx.xxx.xxxx.xxXxxxxxxHigh

TTP - Tactics, Techniques, Procedures (12)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (339)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorConfidence
1File%PROGRAMDATA%\Razer\Synapse3\Service\binHigh
2File/../../conf/template/uhttpd.jsonHigh
3File/admin/contenttempHigh
4File/admin/modules/system/custom_field.phpHigh
5File/admin/web_config.phpHigh
6File/api/crontabMedium
7File/bin/boaMedium
8File/cgi-bin/qcmap_authHigh
9File/cgi-bin/wapopenHigh
10File/cgi-mod/lookup.cgiHigh
11File/cms/print.phpHigh
12File/DataHandler/AM/AM_Handler.ashxHigh
13File/dev/dri/card1High
14File/etc/sudoersMedium
15File/exportLow
16File/forum/away.phpHigh
17File/iissamplesMedium
18File/index.phpMedium
19File/index.php?controller=calendar&format=raw&cat[0]=SQLi&task=eventsHigh
20File/loginLow
21File/osm/REGISTER.cmdHigh
22File/product.phpMedium
23File/public/plugins/High
24File/rom-0Low
25File/servlet/webaccHigh
26File/uncpath/Medium
27File/usr/bin/pkexecHigh
28File/usr/sbin/suexecHigh
29File/webconsole/ControllerHigh
30File/webman/info.cgiHigh
31File/wp-admin/admin-ajax.phpHigh
32File14all.cgi/14all-1.1.cgi/traffic.cgi/mrtg.cgiHigh
33FileAAclAuthz.javaHigh
34FileABuffer.cppMedium
35FileActionsAndOperationsHigh
36Fileadclick.phpMedium
37Fileadmin.phpMedium
38Fileadmin.php?page=languagesHigh
39Fileadmin/conf_users_edit.phpHigh
40Filexxxxx/xxxxxxxxx.xxxHigh
41Filexxxxxxxxxx.xxxHigh
42Filexxxxxxxxxxxx/xxxxx/xxxx/High
43Filexxxxx\xx\xxxxx.xxxHigh
44Filexxxxxxxx_xxxxxxxx_xxxxxxx.xxxHigh
45Filexxxxxxx/xxxxxx/xxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxHigh
46Filexxxxxxxxx.xxxHigh
47Filexxxx.xxx?xxxx=../xxxxx-xxxxx/xxxxxxxx&xxxx=xxxxxx-xxxxxHigh
48Filexxxxxxxxxxxxxxxx.xxxxHigh
49Filexxx/xxxxx/xxxxxxxxxx/xxxxxxxxxxxxxxx.xxxHigh
50Filexxx/xxxxxxxxx/xxxxxxx/xxxxxx-xxxxxx.xxxHigh
51Filexxx:.xxxMedium
52Filexxxx-xxxx.xMedium
53Filexxxxxxx/xxxxxxxxx/xxxxxxxx.xxHigh
54Filexxx_xxxxxxx.xHigh
55Filexxxxxxxx.xxxMedium
56Filexxxxxxxx_xxx.xxx.xxxHigh
57Filexxxxx.xxxMedium
58Filexxxxxxx/xxxxxxx/xxxxxxx.xxxx?xxxxHigh
59Filexxxx_xx.xxMedium
60Filexxxxxxxxxxxxxxxxxx.xxxHigh
61Filexxxxxx.xxxMedium
62Filexxxxxx/xxxxx/xxxxx.xxxHigh
63Filexxxxxxxx.xxxMedium
64Filexxxxxxxx_xxxx.xxxHigh
65Filexxx/xxxxxxx.xxHigh
66Filexxxxxxxxx.xxxHigh
67Filexxxxx/xxxxxxx.xxxHigh
68Filexxxxx.xxxMedium
69Filexxx.xxxLow
70Filexxxxxxxxxx/xxxxxxx.xxxxHigh
71Filexxxxxxxxxxxxxxx.xxxHigh
72Filexxxxxx/xxxxxxxxx.xHigh
73Filexxxxxxxx/xxxxHigh
74Filexxxxxx/xxxx.xxxHigh
75Filexxxxxxxxxx/xxxx.xxxHigh
76Filexxxxxxxxx.xxx.xxxHigh
77Filexx.xxxLow
78Filexxxxx/xxxxx.xxxHigh
79Filexxxx/xxxxxxxxxxxxxxx.xxxHigh
80Filexxxx_xxxxx.xxxHigh
81Filexxxxxxx.xxxMedium
82Filexxxxxx_xxxxxxx.xxxHigh
83Filexxxxxxx.xxMedium
84Filexxx_xxxxx.xxxHigh
85Filexxxxxxx/xxxxxxxxx/xxx_xxxxx.xHigh
86Filexxxxxxx/xxxx/xxxx/xxxx_xxxxxxxxxx.xHigh
87Filexxxxxxx/xxx/xxxx/xxxx.xHigh
88Filexxxxxxx/xxx/xxx/xxxx_xxx.xHigh
89Filexxxxxxx-xxxxxxx/xxxx/xxxxxx/xxxxxxxx/xxx/xxxxxxxxx/xxxxxx.xxHigh
90Filexxxxxxxx.xxMedium
91Filexxx/xxxx/xxxx.xHigh
92Filexxxxxxx.xxxMedium
93Filexx/xx-xx.xMedium
94Filexxxxxxxxx_xxx_xxxx.xxxHigh
95Filexxxx.xxxMedium
96Filexxxx_xxxxxx.xxxHigh
97Filexxxx/xxxxxxx.xHigh
98Filexxxx/xxxx/xxxxxx/xxxxxxxxxxxxxxxxx.xxxxHigh
99Filexxx/xxxx.xMedium
100Filexxxxxxxx/xxx_xxxxxxxxxx.xxxHigh
101Filexxxxxxxx/xxxx_xxxxxxxx/xxxxxxxx_xxxxxxx.xxxHigh
102Filexxxxxxxx/xxxxxx.xxxHigh
103Filexxxxxxxx/xxxxxxxxxx/xxxxx-xx-xxxxxxxxx-xxxxxxxx.xxxHigh
104Filexxxxx.xxxMedium
105Filexxxxx.xxxxMedium
106Filexxxxx.xxxMedium
107Filexxxxx.xxx?xxx=xxxx&xxx=xxxxxxxxHigh
108Filexxxxxxxx?xxxxxxxxxxxxxHigh
109Filexxxxxxxx/xx/xxxx.xxHigh
110Filexxxxxxxx/xxxxx.xHigh
111Filexxxx_xxxx.xxxHigh
112Filexxxxxxxx.xMedium
113Filexxx.xxxLow
114Filexxxxxx/xxxx/xxxxxxx/xxx/xxxxxxx-xxxxx.xHigh
115Filexxxxxx/xxxx/xxxxxxx/xxxx/xxx/xxxxxxx/xxxx.xHigh
116Filexxxxxx/xxxx/xxxxxxx/xxxxx/xxxxx/xxxxxxx/xxxxxx.xHigh
117Filexxxxxxxxxx/xxxxxx.xHigh
118Filexxxxxxxxxx/xxxx.xHigh
119Filexxxxx/xxxxxxxx.xHigh
120Filexxxxxx.xxMedium
121Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxHigh
122Filexxxx/xxxxxxx/xxxxxxxxx_xxxxxx.xxHigh
123Filexxxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxHigh
124Filexxxxx.xxxMedium
125Filexxxxx.xxxxMedium
126Filexxxxxxxxx.xMedium
127Filexxxx.xxxxMedium
128Filexxx.xxxLow
129Filexxxxxxx.xxxMedium
130Filexxxxxxx/xxx/xxx_xxxxxxx.xHigh
131Filexxxxxxx-xxxxxxx.xxxHigh
132Filexxx/xxxxxxxxx/xxxx.xHigh
133Filexxx/xxxx/xxx-xxxxx.xHigh
134Filexxx/xxxx/xxxx.xHigh
135Filexxx/xxxx/xxxxxx.xHigh
136Filexxx/xxx_xxxxx/xx_xxxxx.xHigh
137Filexxx_xxxx_xxx_xxxxxxxxxx.xHigh
138Filexxx-xxxx-xxxMedium
139Filexxx_xxxx.xxxMedium
140Filexxxxxxx.xxxMedium
141Filexxx_xx.xMedium
142Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxHigh
143Filexxxxxxxxxxx_xxx.xxHigh
144Filexxxxxxx.xxxMedium
145Filexxxxxxx/xxxxxxxxx_xxx/xxxxx/xxxxx.xxxHigh
146Filexxxx.xxxMedium
147Filexxxxxxx.xxxMedium
148Filexxxxxxx_xxxxxxx.xxxHigh
149Filexxxxxxx_xxxx.xxxHigh
150Filexxxxxxxxxxxx.xxxxHigh
151Filexxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]High
152Filexxxxx.xxxMedium
153Filexxxxx-xxxx/xxxxx-xxxxx-xxxx.xxxHigh
154Filexxxxxxxx.xxxMedium
155Filexxxxxxxx.xxMedium
156Filexxxxxxxx_xxxx.xxxHigh
157Filexxxxxxx.xxxMedium
158Filexxxxxx/xxxxx/xxxxx.xHigh
159Filexxxxxxxxxx.xxxx.xxxHigh
160Filexx_xxx.xxMedium
161Filexxxxxx_xxxx.xxxHigh
162Filexxxx.xxxMedium
163Filexxxxxx.xxMedium
164Filexxxxxx.xxxMedium
165Filexxxxxx.xxxMedium
166Filexxxxxx/xxxxxxxx.xxxHigh
167Filexxxx_xxxxxxxx.xxxHigh
168Filexxxx-xxxxxx.xHigh
169Filexxxxxxxx_xxxx.xxxHigh
170Filexxxx_xxxxxxx_xxxxxxxx.xxxHigh
171Filexxxx-xxx.xxxMedium
172Filexxxxxxx.xxxMedium
173Filexxxxxxx/xxxx/xxxx.xxx.xxxHigh
174Filexxxxxx_xxxxxx.xxxHigh
175Filexxxx.xxxMedium
176Filexxxxxx-xxxxxxxxxx-xxxxx\xxxxxxxxx\xxxxx-xxx.xxxHigh
177Filexxx/xxxx.xMedium
178Filexxxxxxx.xxx.xx.xxxxxxxxxxx.xxxHigh
179Filexxxxxxxxx/xxxxx/xxxx/xxx_xxxxxxx/xxxxxxx/xxxxxxx.xxxHigh
180Filexxxxxx/xxxxx/xxxxx/xxxxx.xxxxHigh
181Filexxxx-xxxxxxxx.xxxHigh
182Filexxxx-xxxx_xxxx_xxxxxxx.xxxHigh
183Filexx_xxxxx.xxxMedium
184Filexxxxxx.xxxMedium
185Filexxxxxx/xxxxx/xxxxx/xxxxxxx/xxxxxx.xxxHigh
186Filexxxxxxxx.xxxMedium
187Filexxxx/xxxxxxx/xxxxxxxxxxxxxxxxxxx.xxxHigh
188Filexxxx/xxxxxxxx.xxxHigh
189Filexxxxx/xxxxxxxx.xxxHigh
190Filexxxx/xxx/xxxx-xxxxx.xxxHigh
191Filexxxx/xxxxxxxx/xxxxxxxx.xxxxHigh
192Filexxxx.xxxMedium
193Filexxxxxxxx.xxxMedium
194Filexx-xxxxx/xxxxx-xxxx.xxxHigh
195Filexx-xxxxx/xxxxx.xxxHigh
196Filexx-xxxxx/xxxxxxx-xxxxxxx.xxxHigh
197Filexx-xxxxx/xxxxx-xxxxxx.xxxHigh
198Filexx-xxxxxxxx/xxxxx-xx-xxxxxx-xxxxxx.xxxHigh
199Filexx-xxxxxxxx/xxxx.xxxHigh
200Filexx-xxxxx.xxxMedium
201Filexx-xxxxxxxx.xxxHigh
202Filexx-xxxxxxxxxxxx.xxxHigh
203Filexx-xxxx-xxxxxx-xxxxxx.xxxHigh
204Filexx-xxxxxxxxx.xxxHigh
205Filexxx/xxxxxxxx/xxxxxxxx.xxxHigh
206Filexxxxxxxxxxxxxxx.xxxHigh
207File~/xxxxxx-xxxxx-xxxxxxx.xxxHigh
208File~/xxxx-xxxxxxxxxxx.xxxHigh
209Libraryxxxxxxxxxxxxxxxxx.xxxHigh
210Libraryxxx/xxxx_xxxxxx/xxxxx.xxHigh
211Libraryxxxxx.xxxMedium
212Libraryxxxx.xxxMedium
213Libraryxxxxxxxx.xxxMedium
214ArgumentxxxxxLow
215ArgumentxxxxxxxLow
216Argumentxxxxxx-xxxxxxxxHigh
217Argumentxxx_xxxxMedium
218ArgumentxxxxxxLow
219ArgumentxxxxxxxLow
220ArgumentxxxLow
221ArgumentxxxxxLow
222Argumentxxxx_xxxxMedium
223Argumentxxxxxx_xxxxMedium
224ArgumentxxxLow
225ArgumentxxxxxLow
226Argumentxxx_xxLow
227Argumentxxxx_xxxxxMedium
228ArgumentxxxLow
229ArgumentxxxLow
230Argumentxx_xxxxxxxMedium
231Argumentxxxx_xxLow
232ArgumentxxxxLow
233ArgumentxxxxxxxLow
234Argumentxxxxxxx_xxMedium
235Argumentxxxx/xxxxMedium
236Argumentxxxx_xxxxMedium
237Argumentxxxx_xxxMedium
238ArgumentxxxxxxLow
239Argumentxxxxxx_xxMedium
240Argumentxxx_xxxx/xxx_xxxxxxxHigh
241ArgumentxxxLow
242ArgumentxxxxxLow
243Argumentxxxxxxx=xxxxxxxxHigh
244ArgumentxxxxLow
245ArgumentxxxxxxxxxxMedium
246ArgumentxxxxxxxLow
247ArgumentxxxxxxxxxxxxxxHigh
248ArgumentxxLow
249ArgumentxxxxLow
250ArgumentxxxxLow
251Argumentxxxx/xxxxxx/xxxHigh
252ArgumentxxLow
253Argumentxxxxx xxxxMedium
254Argumentxxxxx.xxx?xxxxxx=xxx_xxxxxxx/xxxx=xxxxxxx/xx=x/xxxxxxxx=xxxxxHigh
255ArgumentxxLow
256Argumentxxxx.xxxxxxxMedium
257ArgumentxxxxxxLow
258Argumentxxxx_xxLow
259ArgumentxxxxxxxLow
260ArgumentxxxxLow
261ArgumentxxxxxxxxMedium
262ArgumentxxxxxxxxxMedium
263Argumentxxxxxx_xxMedium
264ArgumentxxxxxLow
265Argumentxxx=x/xxxxxx=x.High
266ArgumentxxxxxxxxMedium
267Argumentxxxxxxxxx_xxxxxxxx_xxxxHigh
268ArgumentxxxLow
269ArgumentxxxxxLow
270ArgumentxxxxLow
271ArgumentxxxxLow
272Argumentxx_xxxLow
273ArgumentxxLow
274Argumentxxx_xxxxxxMedium
275ArgumentxxxxxxxLow
276ArgumentxxxxxxxxxxxxxxHigh
277ArgumentxxxxxxLow
278Argumentxxxx/xxxxxxxxHigh
279ArgumentxxxxxLow
280ArgumentxxxxxxxxxxxxMedium
281ArgumentxxxxxxLow
282ArgumentxxxxxxxxMedium
283ArgumentxxxxxxxxMedium
284ArgumentxxxxLow
285ArgumentxxxxxxxLow
286Argumentxxxxx_xxxx_xxxxHigh
287Argumentxxxxxxxx-xxxxxHigh
288Argumentxxxx_xxLow
289ArgumentxxxLow
290ArgumentxxxxxxxxMedium
291ArgumentxxxxxxxLow
292ArgumentxxxxxxxxxxMedium
293ArgumentxxxxxxxxxMedium
294Argumentxxxx_xxxMedium
295ArgumentxxxLow
296Argumentxxxxxx/xxxxxx_xxxxxxHigh
297ArgumentxxxxxxxxxMedium
298ArgumentxxxxxxxxxxxxMedium
299ArgumentxxxxxxxxxMedium
300ArgumentxxxLow
301Argumentxxxx_xxLow
302ArgumentxxxxxxLow
303Argumentxx_xxLow
304Argumentxxxx xxxxxMedium
305ArgumentxxxLow
306ArgumentxxxxxLow
307ArgumentxxxxxLow
308ArgumentxxxLow
309ArgumentxxxxLow
310ArgumentxxxLow
311ArgumentxxxLow
312ArgumentxxxxLow
313ArgumentxxxxxxLow
314ArgumentxxxxxxLow
315ArgumentxxxxxxLow
316ArgumentxxxxxxLow
317Argumentxxxxxxxxx/xxxxxxxxHigh
318ArgumentxxxxxxxxMedium
319Argumentxxxx_xxxxxMedium
320Argumentxxx[xxxx_xx]Medium
321Argumentxxxx/xx/xxxx/xxxHigh
322Argumentxxx_xxxxxx_xxxxxxxHigh
323Argumentxxxxxxxxx_xxxxHigh
324Argumentxx_xxxxxxxxxxxx_xxxxHigh
325Argumentx-xxxxLow
326ArgumentxxxxxxxxxxxxxxxxxxxxHigh
327ArgumentxxxxxxLow
328ArgumentxxxxxxLow
329Argument_xxxxxx[xxxx_xxxx]High
330Argument_xxx_xxxxxxxxxxx_High
331Input Value.%xx.../.%xx.../High
332Input Value../Low
333Input Value../..Low
334Input ValuexxxxxxLow
335PatternxxxxxxxxxxxMedium
336Network PortxxxxLow
337Network Portxxxx xxxxMedium
338Network Portxxx/xxxx (xx-xxx)High
339Network Portxxx xxxxxx xxxxHigh

References (12)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!