OceanLotus Analysis

IOB - Indicator of Behavior (169)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

es92
en54
ja8
de6
pt6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us166
ru2
gb2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

PHP12
Microsoft Windows4
Microsoft IIS4
SourceCodester Vehicle Service Management System4
GetSimple CMS2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Smartscript Domain Trader catalog.php cross site scripting4.34.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00186CVE-2008-0688
2WordPress Password Reset wp-login.php mail password recovery6.15.8$5k-$25k$0-$5kProof-of-ConceptNot Defined0.100.02827CVE-2017-8295
3PhotoPost PHP Pro showproduct.php sql injection9.89.4$0-$5k$0-$5kNot DefinedOfficial Fix0.020.00276CVE-2004-0250
4Web-provence Sl Site Error Message page.php cross site scripting6.36.0$0-$5k$0-$5kProof-of-ConceptUnavailable0.000.00946CVE-2006-2013
5IMGallery galeria.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.000.00093CVE-2008-2337
6Redirect Warning Plugin external.php redirect5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.000.00054CVE-2022-28353
7s0nic Paranews news.php cross site scripting4.34.2$0-$5k$0-$5kHighUnavailable0.020.00195CVE-2008-4349
8PHP Date Extension parse_date.c php_parse_date information disclosure5.35.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000.00000CVE-2017-11146
9xiaohuanxiong Books.php sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000.00172CVE-2022-26268
10Apple macOS Sudo out-of-bounds write6.56.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.070.97085CVE-2021-3156
11Microsoft IIS FastCGI memory corruption7.37.0$25k-$100k$0-$5kNot DefinedOfficial Fix0.020.28264CVE-2010-2730
12Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.040.00568CVE-2017-0055
13TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.740.01009CVE-2006-6168
14SourceCodester Service Provider Management System manage_user.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.030.00077CVE-2023-2348
15Mail Subscribe List Plugin index.php cross site scripting4.44.3$0-$5k$0-$5kNot DefinedOfficial Fix0.060.00076CVE-2013-10026
16Pre News Manager news_detail.php sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.030.00000
17Alex News-Engine newscomments.php sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptUnavailable0.000.00966CVE-2006-2879
18Papoo kontakt.php sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.00000
19Vastal phpVID browse_videos.php cross site scripting4.34.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00783CVE-2013-5312
20limit-login-attempts-reloaded Plugin cross site scripting3.53.5$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00053CVE-2020-35589

Campaigns (2)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (123)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
137.59.198.130APT32OceanLotus12/15/2020verifiedHigh
237.59.198.131APT32OceanLotus12/15/2020verifiedHigh
343.251.100.20OceanLotus10/12/2022verifiedHigh
443.254.217.67OceanLotus10/12/2022verifiedHigh
545.9.239.3445.9.239.34.deltahost-ptrOceanLotus03/04/2022verifiedHigh
645.9.239.4545.9.239.45.deltahost-ptrOceanLotus03/04/2022verifiedHigh
745.9.239.7745.9.239.77.deltahost-ptrOceanLotus03/04/2022verifiedHigh
845.9.239.11045.9.239.110.deltahost-ptrOceanLotus03/04/2022verifiedHigh
945.9.239.13945.9.239.139.deltahost-ptrOceanLotus03/04/2022verifiedHigh
1045.32.100.17945.32.100.179.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1145.32.105.45APT32OceanLotus12/15/2020verifiedHigh
1245.32.114.4945.32.114.49.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1345.76.147.20145.76.147.201.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1445.76.179.2845.76.179.28.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1545.76.179.15145.76.179.151.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1645.77.39.10145.77.39.101.vultr.comAPT32OceanLotus12/15/2020verifiedMedium
1745.114.117.164folien.reisnart.comAPT32OceanLotus12/15/2020verifiedHigh
1846.183.220.81ip-220-81.dataclub.infoOceanLotus12/22/2020verifiedHigh
1946.183.220.82ip-220-82.dataclub.infoOceanLotus12/22/2020verifiedHigh
2046.183.221.188ip-221-188.dataclub.infoOceanLotus03/04/2022verifiedHigh
2146.183.221.189ip-221-189.dataclub.infoOceanLotus03/04/2022verifiedHigh
2246.183.221.190ip-221-190.dataclub.infoOceanLotus03/04/2022verifiedHigh
2346.183.222.82ip-222-82.dataclub.infoOceanLotus12/22/2020verifiedHigh
2446.183.222.83ip-222-83.dataclub.infoOceanLotus12/22/2020verifiedHigh
2546.183.222.84ip-222-84.dataclub.infoOceanLotus12/22/2020verifiedHigh
26XX.XXX.XXX.XXXxx-xxx-xxx.xxxxxxxx.xxxxXxxxxxxxxx05/31/2021verifiedHigh
27XX.XXX.XXX.XXXxx-xxx-xxx.xxxxxxxx.xxxxXxxxxxxxxx05/31/2021verifiedHigh
28XX.XXX.XXX.XXXxxxxxx-xx.xxxxxxxxxxxxxxxx.xxxXxxxxxxxxx12/24/2020verifiedHigh
29XX.XX.XXX.Xxxxxxx.xxxxxxx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
30XX.XX.XXX.XXxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
31XX.XX.XXX.XXxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
32XX.XX.XXX.XXxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
33XX.XX.XXX.XXxxxx.xxxxx-xxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
34XX.XX.XXX.XXxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
35XX.XX.XXX.XXXxxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
36XX.XX.XXX.XXXxxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
37XX.XX.XXX.XXXxxxxxxxxxxxxx.xxxx.xx.xxxxxxxxxxxx.xxxXxxxxxxxxx12/24/2020verifiedHigh
38XX.XXX.XXX.XXXxxx.xxxxxxxxxxxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
39XX.XXX.XXX.XXXXxxxxxxxxx12/22/2020verifiedHigh
40XX.XXX.XX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
41XX.XXX.XX.XXXXxxxxxxxxx12/22/2020verifiedHigh
42XX.XXX.XX.XXXxxxxxxxxx.xxxxxxx.xxx.xx.xxx.xx.xx-xxxx.xxxxXxxxxxxxxx12/22/2020verifiedHigh
43XX.XXX.XXX.XXXxx-xxx-xxx-xxx-xx.xxx.xxXxxxxxxxxx03/04/2022verifiedHigh
44XX.XX.XXX.XXXxxxxx.xxxxxxxxx.xxXxxxxxxxxx12/22/2020verifiedHigh
45XX.XX.XXX.XXXxxxxx.xxxxxxxxx.xxXxxxxxxxxx12/22/2020verifiedHigh
46XX.XX.XX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
47XX.XX.XX.XXXxxxxxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
48XX.XXX.XX.XXXxx.xxx.xx.xxx.xxxxxxxxx-xxxXxxxxxxxxx12/24/2020verifiedHigh
49XXX.XX.XX.XXXxxxxxxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
50XXX.XX.XX.XXXxxxxxxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
51XXX.XXX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
52XXX.XXX.XXX.XXXxxxxxxxx.xxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
53XXX.XXX.XX.XXXXxxxxxxxxx10/12/2022verifiedHigh
54XXX.XXX.XX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
55XXX.XXX.XXX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
56XXX.XXX.XXX.XXXXxxxxxxxxx12/22/2020verifiedHigh
57XXX.XXX.XXX.XXxxxxxx.xxxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
58XXX.XXX.XXX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
59XXX.XX.XXX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
60XXX.XX.XXX.XXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
61XXX.XX.XXX.XXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
62XXX.XX.XXX.XXXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
63XXX.XX.XX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
64XXX.XX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
65XXX.XX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
66XXX.XX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
67XXX.XX.XXX.XXXXxxxxxxxxx12/22/2020verifiedHigh
68XXX.XX.XXX.XXXXxxxxxxxxx12/22/2020verifiedHigh
69XXX.XX.XXX.XXXxxxxx.xx-xxx-xx-xxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
70XXX.XX.XXX.XXXXxxxxxxxxx12/22/2020verifiedHigh
71XXX.XX.X.XXXxxxxxxxxx12/22/2020verifiedHigh
72XXX.XX.XXX.XXxxxxxxxxx.xxxxxxx.xxxxxxxxx.xxXxxxxxxxxx12/22/2020verifiedHigh
73XXX.XX.XXX.XXXxxxxxxxxx.xxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
74XXX.XX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
75XXX.XX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
76XXX.XX.XXX.XXXxxxxxxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
77XXX.XXX.XX.XXxx.xx-xxx-xxx-xx.xxXxxxxxxxxx12/22/2020verifiedHigh
78XXX.XXX.XXX.XXXXxxxxxxxxx12/24/2020verifiedHigh
79XXX.XX.XX.XXXxxxxxxxxx12/24/2020verifiedHigh
80XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxxxxxx-xxxXxxxxxxxxx03/04/2022verifiedHigh
81XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
82XXX.XXX.XX.XXXxxxxxxxxx12/22/2020verifiedHigh
83XXX.XXX.XX.XXxxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
84XXX.XXX.XX.XXxxxx-xxx-xxxxx-x.xxxxxxxxxxxxx.xxxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
85XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
86XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
87XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
88XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
89XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
90XXX.XXX.XX.XXXXxxxxxxxxx12/22/2020verifiedHigh
91XXX.XXX.XX.XXXXxxxxxxxxx12/22/2020verifiedHigh
92XXX.XXX.XX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
93XXX.XXX.XX.XXXXxxxxxxxxx12/22/2020verifiedHigh
94XXX.XXX.XXX.XXXxxxxxxx.xxxx.xxxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
95XXX.XXX.XXX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
96XXX.XXX.XXX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
97XXX.XXX.XXX.XXxxxxxxx.xxxxxxxxxxx.xxxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
98XXX.XXX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
99XXX.XXX.XXX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
100XXX.XXX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
101XXX.XXX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
102XXX.XXX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
103XXX.XX.X.XXxx-x-xx.xxxxxxxx.xxxxXxxxxxxxxx03/04/2022verifiedHigh
104XXX.XX.X.XXxx-x-xx.xxxxxxxx.xxxxXxxxxxxxxx12/24/2020verifiedHigh
105XXX.XXX.XXX.XXxxxxxx.xxxxxxxxxxxxx.xxxXxxxxXxxxxxxxxx12/15/2020verifiedHigh
106XXX.XX.XXX.XXXXxxxxxxxxx05/31/2021verifiedHigh
107XXX.XX.XXX.XXXXxxxxxxxxx05/31/2021verifiedHigh
108XXX.XXX.XXX.XXxxxxx.xxxxxxxxxxxxx.xxxXxxxxxxxxx12/24/2020verifiedHigh
109XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxxxxx-xxxXxxxxxxxxx12/24/2020verifiedHigh
110XXX.XX.XXX.XXXxxxxxx.xxXxxxxxxxxx12/22/2020verifiedHigh
111XXX.XX.XXX.XXXxxxxx.xx-xxx-xx-xxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
112XXX.XX.XXX.XXxxxx.xx-xxx-xx-xxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
113XXX.XX.XXX.XXXxxxxx.xx-xxx-xx-xxx.xxxXxxxxxxxxx12/22/2020verifiedHigh
114XXX.XXX.XX.XXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
115XXX.XXX.XX.XXXxxxxXxxxxxxxxx12/15/2020verifiedHigh
116XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
117XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
118XXX.XXX.XX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
119XXX.XXX.XX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
120XXX.XXX.XX.XXXxxx-xxxxxx.xxxxx.xxxxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
121XXX.XXX.XXX.XXXxxxx.xxxxxxx.xxxXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
122XXX.XX.XXX.XXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh
123XXX.XX.XXX.XXXXxxxxxxxxxXxxxxxxxxxxx05/31/2021verifiedHigh

TTP - Tactics, Techniques, Procedures (10)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (177)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.jsppredictiveLow
2File/admin/categories/view_category.phppredictiveHigh
3File/admin/edit.phppredictiveHigh
4File/admin/inventory/manage_stock.phppredictiveHigh
5File/admin/user/manage_user.phppredictiveHigh
6File/app/controller/Books.phppredictiveHigh
7File/checkpredictiveLow
8File/classes/Master.phppredictiveHigh
9File/classes/Master.php?f=save_sub_categorypredictiveHigh
10File/ecshop/admin/template.phppredictiveHigh
11File/includes/session.phppredictiveHigh
12File/kajona/image.phppredictiveHigh
13File/op/op.LockDocument.phppredictiveHigh
14File/openvpn/pageswitch.htmpredictiveHigh
15File/page.phppredictiveMedium
16File/php-inventory-management-system/categories.phppredictiveHigh
17File/php/ajax.phppredictiveHigh
18File/post.phppredictiveMedium
19File/uncpath/predictiveMedium
20File/wp-admin/admin-ajax.phppredictiveHigh
21Fileadd-family-member.phppredictiveHigh
22Fileadmin/ajax.attachment.phppredictiveHigh
23Fileadmin/languages.phppredictiveHigh
24Fileadmin/manage-categories.phppredictiveHigh
25Filexxxxx/xxx/xxxxxxx/xxx/xxxx.xxxpredictiveHigh
26Filexxxx.xxxpredictiveMedium
27Filexxx_xxxxxxx.xxxpredictiveHigh
28Filexxx/xxxxx/xxxxxxx/xxxx-xxx-xxxxxxx-xxxxxx.xxxpredictiveHigh
29Filexxxxxxxxxxx/xxxxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
30Filexxxxxxxxxxx/xxxxxxxxxxx/xxxxx.xxxpredictiveHigh
31Filexxxxxxxxxxx\xxxxx\xxxxxxxxxx\xxxxxx.xxxpredictiveHigh
32Filexxxxxxx.xxxpredictiveMedium
33Filexxxxxxxx.xxxpredictiveMedium
34Filexxx_xxxxxxxx.xxxpredictiveHigh
35Filexxxxxx/xxxxxxxx.xxxxpredictiveHigh
36Filexxxxxx_xxxxxx.xxxpredictiveHigh
37Filexxxxxxxx.xxxpredictiveMedium
38Filexxxxxxx.xxxpredictiveMedium
39Filexxxxxxx.xxxpredictiveMedium
40Filexxxxxxxxxx.xxxpredictiveHigh
41Filexxxxxxxx.xxxpredictiveMedium
42Filexxx-xxx/xxxxxxx?xxxxxxx=xxxx/xxxxx.xxxxpredictiveHigh
43Filexxxxxxxx/xxxxxxxxxx.xxxxpredictiveHigh
44Filexxxxxxx.xxxpredictiveMedium
45Filexxxxxxxx.xxxpredictiveMedium
46Filexxxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
47Filexxxxxxxx.xxxpredictiveMedium
48Filexxxxxxxxxx/xxxxxx-xxxxxxxxxxpredictiveHigh
49Filexxxxx.xxxpredictiveMedium
50Filexxx/xxxx/xxx/xxxxx_xxxx.xpredictiveHigh
51Filexxx/xxxx/xxxx.xpredictiveHigh
52Filexxx/xxxxxxxx/xxxx_xxxxx.xpredictiveHigh
53Filexxxxxxxx.xxxpredictiveMedium
54Filexxxxx/xxx/xxxx.xxxpredictiveHigh
55Filexxxxx/xxxxxx.xxxpredictiveHigh
56Filexxxxxxx.xxxpredictiveMedium
57Filexxxxxxx.xxxpredictiveMedium
58Filexxxxxxx.xxxpredictiveMedium
59Filexxxxxxxxx.xxxpredictiveHigh
60Filexxxxxxxxxxxxxx.xxxpredictiveHigh
61Filexxxxx.xxxpredictiveMedium
62Filexxxxxxxx/xxxxx-xxxxxxxxxx-xxxx.xxxpredictiveHigh
63Filexxxxxxxx/xxxxxxxx.xxxpredictiveHigh
64Filexxxxx.xxxpredictiveMedium
65Filexxxxx.xxxpredictiveMedium
66Filexx_xxxx.xxxpredictiveMedium
67Filexxxxxxx.xxxpredictiveMedium
68Filexxxx.xxxpredictiveMedium
69Filexxxxx.xxxpredictiveMedium
70Filexxxxx.xxxxpredictiveMedium
71Filexxxxx.xxxpredictiveMedium
72Filexxxxxx.xxxpredictiveMedium
73Filexxxx.xxxpredictiveMedium
74Filexxxx.xxxpredictiveMedium
75Filexxxx.xxxpredictiveMedium
76Filexxxxxxxxxxxx.xxxpredictiveHigh
77Filexxxx_xxxxxx.xxxpredictiveHigh
78Filexxxxxxxx/xxxxx.xxx?x=xxxxxxxxxxpredictiveHigh
79Filexxxx.xxxpredictiveMedium
80Filexxx/xxxxxxxx.xxxpredictiveHigh
81Filexxxxxxx.xxxxx.xxxpredictiveHigh
82Filexxxxxxx/xxxxxxxx/xxxxx/xxxxxxxx.xxxpredictiveHigh
83Filexxxx_xxxxxxxx.xxxpredictiveHigh
84Filexxxxx.xxxpredictiveMedium
85Filexxxxxxx_xxxx.xxxpredictiveHigh
86Filexxxx/xxx/xxx_xxxx.xpredictiveHigh
87Filexxxx_xxxxxxx.xpredictiveHigh
88Filexxxxxx.xxxpredictiveMedium
89Filexxxxx/xxxxxxxxxxxx/xxxxxxx/xxx.xxxxpredictiveHigh
90Filexxxxxxxxxxx.xxxpredictiveHigh
91Filexxxxxx.xxxpredictiveMedium
92Filexxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
93Filexxx.xxxpredictiveLow
94Filexxx/xxxxxxx.xxxpredictiveHigh
95Filexxxxxxxxxxx.xpredictiveHigh
96Filexxxx.xxxxpredictiveMedium
97Filexxxx-xxxxxxxx.xxxpredictiveHigh
98Filexxx.xxxpredictiveLow
99Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
100Filexxxxxxxxxxx.xxxpredictiveHigh
101Filexxxx_xxxxxxx.xxxpredictiveHigh
102Filexx-xxxxx/xxxxxxx-xxxxxxx.xxx?xxxx=xxxxx-xxxxx-xxxxxxxxpredictiveHigh
103Filexx-xxxxx.xxxpredictiveMedium
104File~/xxxx-xxxxxxx.xxxpredictiveHigh
105Library/xxxxxxxxx/xxxx.xxxpredictiveHigh
106Libraryxxxxxxx.xxxpredictiveMedium
107Libraryxxx/xxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
108Argument$_xxxxxx['xxxxx_xxxxxx']predictiveHigh
109Argumentxxxxx_xxxxx_xxxpredictiveHigh
110ArgumentxxxxxxxxxpredictiveMedium
111ArgumentxxxxxxxpredictiveLow
112ArgumentxxxpredictiveLow
113Argumentxxxxxxxxxx xxxxpredictiveHigh
114ArgumentxxxxxxxxxxpredictiveMedium
115Argumentxxxxxxxx_xxpredictiveMedium
116ArgumentxxxpredictiveLow
117ArgumentxxxxxpredictiveLow
118ArgumentxxxpredictiveLow
119ArgumentxxxxxxxpredictiveLow
120Argumentxxxxxxx_xxxxxx/xxxxxxx_xxxxxxxpredictiveHigh
121Argumentxxxxx$xxx$xxxxxxxxxxxpredictiveHigh
122ArgumentxxxxxpredictiveLow
123ArgumentxxxxpredictiveLow
124ArgumentxxxxxxxxpredictiveMedium
125ArgumentxxxpredictiveLow
126ArgumentxxxxpredictiveLow
127ArgumentxxpredictiveLow
128Argumentxx/xxxxpredictiveLow
129ArgumentxxxxxpredictiveLow
130Argumentxx_xxxxxxxxpredictiveMedium
131Argumentxx_xxxxpredictiveLow
132Argumentxx_xxxxpredictiveLow
133ArgumentxxxxxpredictiveLow
134ArgumentxxxxxxpredictiveLow
135ArgumentxxxxxxxxpredictiveMedium
136ArgumentxxxxpredictiveLow
137Argumentxxxxxx xxxxpredictiveMedium
138ArgumentxxxpredictiveLow
139ArgumentxxxxxxxpredictiveLow
140ArgumentxxxxxxpredictiveLow
141Argumentxxxx_xxpredictiveLow
142Argumentxx_xxxxxxxxxxxpredictiveHigh
143ArgumentxxxxpredictiveLow
144ArgumentxxxxxxpredictiveLow
145ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
146ArgumentxxxxxxxxpredictiveMedium
147Argumentxxxxxxxx/xxxx/xxxxx/xxxx/xxxxxxxxx/xxxxxxxxxxxx/xxpredictiveHigh
148ArgumentxxxxxxxxxpredictiveMedium
149ArgumentxxxpredictiveLow
150ArgumentxxxxxxxpredictiveLow
151Argumentxxxx-xxxxxxxpredictiveMedium
152ArgumentxxxxxxpredictiveLow
153Argumentxxxxxxx_xx/xxxx_xxpredictiveHigh
154ArgumentxxxxxxxxpredictiveMedium
155ArgumentxxxxxxxxxpredictiveMedium
156Argumentxxx_xxxpredictiveLow
157ArgumentxxxxxxxxxxxpredictiveMedium
158ArgumentxxxxxxxpredictiveLow
159Argumentxxx_xxxx/xxx_xxxxxpredictiveHigh
160ArgumentxxxxxpredictiveLow
161ArgumentxxxxxxpredictiveLow
162ArgumentxxxxxxpredictiveLow
163Argumentxxx_xxxxxxxxpredictiveMedium
164Argumentxxx_xxxxxpredictiveMedium
165ArgumentxxxpredictiveLow
166Argumentxxxxxxxx/xxxpredictiveMedium
167ArgumentxxxxxxxxpredictiveMedium
168ArgumentxxxpredictiveLow
169ArgumentxxxxpredictiveLow
170Argumentxxxx/xxxxxxxx/xxxxxxxxx/xxxxx/xxxx/xxxx/xx/xxx/xxxxxxxxxx/xxxxxx/xxxxxx/xxxxxx/xx/xxxxxxxx/xxxxx/xx/xxx_xxxx/xxx_xxxx/xxx_xxxxx/xx_xxxxxxxxxxxx/xxxxx_xxxxxxxxxx/xxxxxxx_xxxxxxx/xxxxxxxx_xxxxx/xxxxxxx_xxxxx/xxxxxxx_xxxxxx/xxxxxxx_xxxx_xxxxxx/xxxxxxx_xxxxxxxxx/xxx_xxx/xx_xxxxxx_xxxx/xxxxxxx_xxxxx/xxxxxx/xxxxx/xxxpredictiveHigh
171Argument\xxx\predictiveLow
172Input Value'/x'predictiveLow
173Input Value-xpredictiveLow
174Input Value/xxxxx/xxxxxx/xxxxxx/....//....//....//xxxxxxxx.xxxpredictiveHigh
175Input Value<xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
176Input Valuexxxx../predictiveLow
177Network Portxxx/xx (xxx xxxxxxxx)predictiveHigh

References (9)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!