TG-3390 Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en930
zh26
de22
it8
fr6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us458
cn54
es18
ru12
ir8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Apple Mac OS X42
Oracle Java SE18
Google Chrome16
Google Android16
Microsoft Windows14

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.040.04187CVE-2007-1192
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix1.200.04187CVE-2010-0966
3Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.860.25090CVE-2017-0055
4jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.050.04499CVE-2019-7550
5HP Storage Data Protector memory corruption10.010.0$25k-$100k$0-$5kHighNot Defined0.010.90299CVE-2014-2623
6Microsoft IIS IP/Domain Restriction access control6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.860.29797CVE-2014-4078
7Dell EMC iDRAC9 Web Interface improper authentication8.58.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.010.01055CVE-2019-3706
8nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined8.020.00000CVE-2020-12440
9Basti2web Book Panel books.php sql injection7.37.0$0-$5k$0-$5kHighOfficial Fix0.060.00986CVE-2009-4889
10Lars Ellingsen Guestserver guestbook.cgi cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.270.01055CVE-2005-4222
11Esoftpro Online Guestbook Pro ogp_show.php sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.050.01055CVE-2009-4935
12Siemens DCA Vantage Analyzer Onboard Database hard-coded password5.45.2$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00885CVE-2020-7590
13Microsoft Windows cmd.exe privileges management7.36.6$25k-$100k$0-$5kProof-of-ConceptNot Defined0.030.00000
14Cisco IOS XR SNMP Module memory corruption4.34.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.080.01055CVE-2013-1234
15FFmpeg log.c format_line numeric error9.89.4$0-$5k$0-$5kNot DefinedOfficial Fix0.010.01136CVE-2013-3671
16FFmpeg indeo3.c decode_cell Local Privilege Escalation5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.020.00000
17Avast Antivirus Login Password Manager insufficiently protected credentials4.04.0$0-$5k$0-$5kNot DefinedNot Defined0.000.00885CVE-2020-15024
18Apple iCloud ImageIO memory corruption6.36.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.01363CVE-2020-9879
19FreeRDP ntlm_read_ntlm_v2_client_challenge out-of-bounds3.73.5$0-$5k$0-$5kNot DefinedNot Defined0.080.00890CVE-2020-11086
20OpenSSH Readonly Mode sftp-server.c process_open permission5.35.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.160.01537CVE-2017-15906

Campaigns (3)

These are the campaigns that can be associated with the actor:

IOC - Indicator of Compromise (44)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
143.242.35.13TG-3390Gh0st RATverifiedHigh
243.242.35.16TG-3390Gh0st RATverifiedHigh
345.114.9.174TG-3390Bronze UnionverifiedHigh
449.143.192.221TG-3390verifiedHigh
549.143.205.30TG-3390verifiedHigh
666.63.178.142unassigned.quadranet.comTG-3390verifiedHigh
767.215.232.179ed-cricalf.latention.comTG-3390verifiedHigh
867.215.232.181ninths.latention.comTG-3390verifiedHigh
967.215.232.18267.215.232.182.static.quadranet.comTG-3390verifiedHigh
10XX.XX.XXX.XXXxx.xx.xxx.xxx.xxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
11XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
12XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
13XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
14XX.XX.XXX.XXXxxx-xxx-xx-xx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
15XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
16XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
17XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
18XX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXx-xxxxverifiedHigh
19XX.XX.XX.XXxxxx.xxxXx-xxxxXxxxxx XxxxxverifiedHigh
20XXX.XX.X.XXXxxxxxxx.xxxxxx.xx.xxxxxxxx.xxxXx-xxxxverifiedHigh
21XXX.XX.X.XXxxxxxxx.xxxxxx.xx.xxxxxxxx.xxxXx-xxxxverifiedHigh
22XXX.XX.XXX.XXXXx-xxxxXxxxxxxx XxxxxverifiedHigh
23XXX.XX.XX.XXXx-xxxxXxxxx XxxverifiedHigh
24XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
25XXX.XXX.XX.XXXXx-xxxxverifiedHigh
26XXX.XXX.XX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
27XXX.XX.XX.XXXXx-xxxxXxxxxxxx XxxxxverifiedHigh
28XXX.XX.XX.XXXxxxxxxx.xxxxx.xxxxXx-xxxxXxxxxxxx XxxxxverifiedHigh
29XXX.XXX.XXX.XXXXx-xxxxverifiedHigh
30XXX.XXX.XX.XXx.x.xxxxx.xxXx-xxxxverifiedHigh
31XXX.XXX.XX.XXx.x.xxxxx.xxXx-xxxxverifiedHigh
32XXX.XXX.XX.XXx.x.xxxxx.xxXx-xxxxverifiedHigh
33XXX.XX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
34XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
35XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
36XXX.XXX.XXX.XXxx-xxx-xxx-xxx.xxxxxx.xxxxxxx.xxxx.xxxXx-xxxxverifiedHigh
37XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
38XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
39XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
40XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
41XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
42XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
43XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh
44XXX.XXX.XXX.XXXXx-xxxxXxxxxx XxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (25)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-21, CWE-22, CWE-23Pathname TraversalpredictiveHigh
2T1040CWE-294, CWE-319Authentication Bypass by Capture-replaypredictiveHigh
3T1055CWE-74InjectionpredictiveHigh
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveHigh
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
6TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
8TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveHigh
9TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
10TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
11TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
12TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
13TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
14TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
15TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveHigh
16TXXXXCWE-XXXXxxxxxxxx Xxxxxxx Xx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
17TXXXX.XXXCWE-XXXXxxxxxxxx XxxxxxxxxpredictiveHigh
18TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
19TXXXX.XXXCWE-XXXXxxxxxxx Xx Xxx Xxxxxxx Xx X Xxxxxxxx XxxxxxxxpredictiveHigh
20TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
21TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHigh
22TXXXXCWE-XXX, CWE-XXXXxxxxxxxxxxxxpredictiveHigh
23TXXXX.XXXCWE-XXXxxxxxxxxxxxxpredictiveHigh
24TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh
25TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveHigh

IOA - Indicator of Attack (314)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/+CSCOE+/logon.htmlpredictiveHigh
2File/cgi-bin/live_api.cgipredictiveHigh
3File/cgi-bin/wapopenpredictiveHigh
4File/etc/ajenti/config.ymlpredictiveHigh
5File/etc/shadowpredictiveMedium
6File/getcfg.phppredictiveMedium
7File/goform/telnetpredictiveHigh
8File/infusions/shoutbox_panel/shoutbox_admin.phppredictiveHigh
9File/modules/profile/index.phppredictiveHigh
10File/opt/zimbra/jetty/webapps/zimbra/publicpredictiveHigh
11File/oscommerce/admin/currencies.phppredictiveHigh
12File/proc/pid/syscallpredictiveHigh
13File/rom-0predictiveLow
14File/session/list/allActiveSessionpredictiveHigh
15File/syslog_rulespredictiveHigh
16File/tmp/phpglibccheckpredictiveHigh
17File/uncpath/predictiveMedium
18File/uploadpredictiveLow
19File/users/{id}predictiveMedium
20File/usr/bin/pkexecpredictiveHigh
21File/var/tmp/sess_*predictiveHigh
22File/var/WEB-GUI/cgi-bin/telnet.cgipredictiveHigh
23File/videopredictiveLow
24Fileaction.phppredictiveMedium
25Fileactionphp/download.File.phppredictiveHigh
26FileActivityManagerService.javapredictiveHigh
27Fileadaptmap_reg.cpredictiveHigh
28Fileadd_comment.phppredictiveHigh
29Fileadmin.cgipredictiveMedium
30Fileadmin.php?action=filespredictiveHigh
31Fileadmin/admin.phppredictiveHigh
32Fileadmin/content.phppredictiveHigh
33Fileadmin/index.php?id=users/action=edit/user_id=1predictiveHigh
34Fileadmin_gallery.php3predictiveHigh
35Fileaffich.phppredictiveMedium
36Fileagent/Core/Controller/SendRequest.cpppredictiveHigh
37Filexxxxx_xxxxxx.xxxpredictiveHigh
38Filexxx/xxxxxxxxx/xxxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
39Filexxx/xxxx_xxxx/xxxx_xxxxxxxxxxx.xxxpredictiveHigh
40Filexxx/xxxxxx/xxxxxxx/xxxxx/xxxxxxx_xxxxx.xxxxx.xxxpredictiveHigh
41Filexxx/xxxxxxxxx_xxxxxxxxx/xxxxxxxxx_xxxxxxxx_xxxx.xxxpredictiveHigh
42Filexxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
43Filexxxxxx/xxxxxxxxx.xxpredictiveHigh
44Filexxxxxx/xxxxxx.xxpredictiveHigh
45Filexxxxxxxxx-xxxxxxx-xxxxxxx.xxxpredictiveHigh
46Filexxxxxxxxxxxx.xxxpredictiveHigh
47Filexxx/xxxx_xxxxxx.xxxpredictiveHigh
48Filexxxxxxxxxx/xxxxxxxx/xxxx/xpredictiveHigh
49Filexxxxx.xxxpredictiveMedium
50Filexxxxxx.xxxpredictiveMedium
51Filexxxx_xxx.xxxpredictiveMedium
52Filexxx.xxxpredictiveLow
53Filexxx-xxxx.xxxpredictiveMedium
54Filexx_xxx.xxpredictiveMedium
55Filexxx-xxx/xxxxxxxxxpredictiveHigh
56Filexxx-xxx/xx_xxxxxx_xxxxxx.xxxpredictiveHigh
57Filexxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
58Filexxxxx.xxxxxxxxxxxx.xxxpredictiveHigh
59Filexxxxxxx/xxxx_xxxxx.xxxpredictiveHigh
60Filexxx.xxxpredictiveLow
61Filexxxxxxx_xxx.xxxpredictiveHigh
62Filexxxxxxx.xpredictiveMedium
63Filexxxx/xxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
64Filexxxx/xxxxxxx/xxxxxxxxx_xxxx_xxx.xxpredictiveHigh
65Filexxx-xxx/xxxxxxxxxxxxx.xxxpredictiveHigh
66Filexx_xxxx.xpredictiveMedium
67Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
68Filexxxxxx.xxxpredictiveMedium
69Filexxxxxxxx-xxxx.xxxpredictiveHigh
70Filexxxxxxxx?xxxx=xxxxxpredictiveHigh
71Filexxxxxxx/xxxx/xxxxxxx.xpredictiveHigh
72Filexxxxx_xxx.xpredictiveMedium
73Filex/xxxxxx/xxxxxxxx.xxxpredictiveHigh
74Filexxxx-xxxxxxxx-xxxxxx.xxxpredictiveHigh
75Filexxxxxxxx.xxxpredictiveMedium
76Filexxxxxx/xxxxxx/xxxxxx.xxxpredictiveHigh
77Filexxxxxxx-xxxxxxx/xxxx/xxxxxx/xxxxxxxx/xxx/xxxxxxxxx/xxxxxx.xxpredictiveHigh
78Filexxxxx.xxxpredictiveMedium
79Filexx_xxxxx.xxxpredictiveMedium
80Filexxxxx.xxxpredictiveMedium
81Filexxx/xxxx/xxxx_xxxxxx.xpredictiveHigh
82Filexxx/xxxxxxxx/xxx.xpredictiveHigh
83Filexxxx.xxxpredictiveMedium
84Filexxxxxxxxxx/xxx.xxpredictiveHigh
85Filexxxxxxxxx/xx/xxxxxxxxxxxx.xxxpredictiveHigh
86Filexx/xxxx/xxx.xpredictiveHigh
87Filexxx/xxx-xxxxx.xpredictiveHigh
88Filexxxxxxxxxxxxxx.xxxpredictiveHigh
89Filexxx.xxxpredictiveLow
90Filexxxxxxxxx.xxxpredictiveHigh
91Filexxxxxxxxx.xxpredictiveMedium
92Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveHigh
93Filexxxx-xxxxxxx.xpredictiveHigh
94Filexxxxxx/xxxxxxpredictiveHigh
95Filexxxxxx_xx.xpredictiveMedium
96Filexxxx_xxxx.xpredictiveMedium
97Filexx/xxx/xxxxx.xpredictiveHigh
98Filexxxxx_xxxxx_xxxx_xxxxxx_xxxx_x_xx_x.xpredictiveHigh
99Filexxxxx-xxxxxxxxxx.xpredictiveHigh
100Filexxx/xxxxxx.xxxpredictiveHigh
101Filexxxxxxxx/xxxxx-xxxx-xxxxxxx.xxxpredictiveHigh
102Filexxxxx.xxxpredictiveMedium
103Filexxxxx.xxx?xxx=xxxx&xxx=xxxxxxxxpredictiveHigh
104Filexxxxxxxx.xxxpredictiveMedium
105Filexxxx_xxxx.xxxpredictiveHigh
106Filexxxx_xxx.xpredictiveMedium
107Filexxxx.xpredictiveLow
108Filexxxxxxxxxx/xxx/xxxxxx_xxxx.xxxpredictiveHigh
109Filexxx/xxxxxxxxxx/xxxxxxxxx.xxpredictiveHigh
110Filexxxxxxxxxx/xxxxxx.xpredictiveHigh
111Filexxxxxxxxx/xxx.xpredictiveHigh
112Filexxxxxx.xpredictiveMedium
113Filexxxxxxxxx/xxxxxx.xxx.xxxpredictiveHigh
114Filexxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
115Filexxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
116Filexxxxx.xxxxpredictiveMedium
117Filexxxxx.xxxpredictiveMedium
118Filexxx.xpredictiveLow
119Filexxxxx_xxxxxxxxxx_xxxx.xpredictiveHigh
120Filexxxxxxxx.xxxpredictiveMedium
121Filexxxxxxx/xxxxxx_xxxxxxx/{xx}predictiveHigh
122Filexx-xxxxx/xxxx-xxxx.xxxpredictiveHigh
123Filexxxxxxxx/xx/xxxxxxx/xxxxxxxxxxxx.xpredictiveHigh
124Filexxxxx/__xxxx_xxxx.xxxpredictiveHigh
125Filexxxxxx.xxxxxxx_xx_xx.xxpredictiveHigh
126Filexxx/xxxx/xxxx_xxxxxx.xpredictiveHigh
127Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
128Filexxx_xxxx.xpredictiveMedium
129Filexxxxxxxxxxx.xxxpredictiveHigh
130Filexxx_xxxx.xxxpredictiveMedium
131Filexxx/xxxxxx/xxxxxxxx/xxxxx/xxxxxxxxx.xxxxpredictiveHigh
132Filexxxxxx.xxxpredictiveMedium
133Filexxxxxx/xxxxxxx-xxx-xxxpredictiveHigh
134Filexxx/xxx-xxxxx.xpredictiveHigh
135Filexxx.xxxpredictiveLow
136Filexxxxx.xxxpredictiveMedium
137Filexxxxxxxxxxxxx.xxxpredictiveHigh
138Filexxxxxxxxxxx_xxxxxxxxxxxx.xxpredictiveHigh
139Filexxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]predictiveHigh
140Filexxxxxxxxxxx.xxxpredictiveHigh
141Filexxxx.xxxpredictiveMedium
142Filexxxxx.xxxpredictiveMedium
143Filexxxxx.xxxpredictiveMedium
144Filexxxxxxxx.xxxpredictiveMedium
145Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
146Filexxxxxxxxxxxx.xxxpredictiveHigh
147Filexxxxxxxx_xxxx.xxxpredictiveHigh
148Filexxxxx.xxxpredictiveMedium
149Filexx_xxxx.xpredictiveMedium
150Filexxxx/xxxxxxxxxxxxxx/xxxx_xxxxxxx.xpredictiveHigh
151Filexxxxxxxxxx.xxxpredictiveHigh
152Filexxxx_xxxxxxxxx.xxxpredictiveHigh
153Filexxxxxx/xxxxxxxxxxxxx.xxxxpredictiveHigh
154Filexxxx-xxxxxx.xpredictiveHigh
155Filexxxx.xpredictiveLow
156Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
157Filexxxxx_xxxxx.xxxpredictiveHigh
158Filexxxxx.xxxpredictiveMedium
159Filexxxxxxxxx.xxxpredictiveHigh
160Filexxxxx.xpredictiveLow
161Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
162Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
163Filexxx_xxx.xpredictiveMedium
164Filexxxx_xxx_xxxx.xxxpredictiveHigh
165Filexxxx-xxxxxxx.xxxpredictiveHigh
166Filexxxxx/xxxxxxxx.xxxpredictiveHigh
167Filexxxxx_xxxxx.xxxxpredictiveHigh
168Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
169Filexxx/xxxxxx/xxxx/xx/xx_xxxx.xpredictiveHigh
170Filexxxxxxxxx.xxpredictiveMedium
171Filexxxxxxx/xxxxxx/xxxxx/xxxxxxx/xxx/xxx.xxxpredictiveHigh
172Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
173Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
174Filexx-xxxxxxxx/xx/xxxxxxxxxxxxpredictiveHigh
175Filexx-xxxxx.xxxpredictiveMedium
176Filexxx/xx_xxx.xxxpredictiveHigh
177File\xxxxxxx\xxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
178File~/xxx-xxx-xxxxxx.xxxpredictiveHigh
179Libraryxxxxxxxx/xxxxxxx/xxxxxxxx/xxx/xxxx/xxxx/xxxxxx/xxx/xxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxx/xxxxxx/xxxxxxxx_xxxxxxxxxxxxxxxx.xxxxpredictiveHigh
180Libraryxxxxxx[xxxxxx_xxxxpredictiveHigh
181Libraryxxxxxx.xxxpredictiveMedium
182Libraryxxxxxx.xxxpredictiveMedium
183Libraryxxx/xxxxxxxx.xpredictiveHigh
184Libraryxxx/x.xpredictiveLow
185Libraryxxx/xxxxxxx/xxxxx.xxpredictiveHigh
186Libraryxxxxxx.xxxpredictiveMedium
187Libraryxxxxxxxxxx.xxxpredictiveHigh
188Libraryxxxxxx.xxxpredictiveMedium
189Libraryxxxxxxxx.xxxpredictiveMedium
190Libraryxxx/xx_xxx.xpredictiveMedium
191Libraryxxxxxx.xxxpredictiveMedium
192Libraryxx-xxxxxxx/xxxxxxx/xx-xxxx-xxxxxxx/xxx/xxxxx/predictiveHigh
193Argument$xxxxxxxpredictiveMedium
194ArgumentxxxxxxxxxxxxpredictiveMedium
195ArgumentxxxxpredictiveLow
196ArgumentxxxpredictiveLow
197Argumentxxxxx_xxxpredictiveMedium
198Argumentxxxxxx_xxxxpredictiveMedium
199ArgumentxxxxxxxxxxxxxxpredictiveHigh
200ArgumentxxxxpredictiveLow
201ArgumentxxxxxxxxpredictiveMedium
202ArgumentxxxxxpredictiveLow
203ArgumentxxxxxxpredictiveLow
204Argumentxxxxxxxx xxxx/xxx xxxx/xxxxx xxxx/xxxxxxx/xxxx/xxxxx/xxxxxx/xxxxx xx xxxxx/xxx xxxx/xxx xxxxxx/xxxx xxxx/xxx/xxxxx/xxxxxpredictiveHigh
205ArgumentxxxpredictiveLow
206ArgumentxxxxxxxxxxpredictiveMedium
207ArgumentxxxxxpredictiveLow
208Argumentxxx_xxpredictiveLow
209ArgumentxxxxxxxxpredictiveMedium
210Argumentxxxx_xxpredictiveLow
211ArgumentxxxxxxxpredictiveLow
212Argumentxxxxxx/xxxxxxxpredictiveHigh
213Argumentxxxxxx[xxxxxx_xxxx]predictiveHigh
214ArgumentxxxxxxxpredictiveLow
215Argumentxxxxxx_xxpredictiveMedium
216ArgumentxxxxxxxxxxpredictiveMedium
217ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
218ArgumentxxxxxxxxxxpredictiveMedium
219Argumentxxxx_xxxpredictiveMedium
220Argumentxxxxxxx_xxxxpredictiveMedium
221ArgumentxxxxxpredictiveLow
222Argumentxxx_xxxxpredictiveMedium
223Argumentxxxxxxxx_xxxxpredictiveHigh
224ArgumentxxxpredictiveLow
225Argumentxxx_xxxxpredictiveMedium
226ArgumentxxxxxxxpredictiveLow
227ArgumentxxxxxxpredictiveLow
228ArgumentxxxxxxxpredictiveLow
229ArgumentxxxxxxxxpredictiveMedium
230ArgumentxxxxxpredictiveLow
231Argumentxxxxx_xxpredictiveMedium
232ArgumentxxxxxxxxpredictiveMedium
233ArgumentxxxxpredictiveLow
234ArgumentxxxxxxxxxxpredictiveMedium
235ArgumentxxxxxxxxpredictiveMedium
236Argumentxxxxx_xxxpredictiveMedium
237Argumentxxxx/xxpredictiveLow
238Argumentxxx=xxxpredictiveLow
239Argumentxxxx xxxxpredictiveMedium
240ArgumentxxxxxxpredictiveLow
241Argumentx_xxxxxxxxpredictiveMedium
242Argumentxxx-xxx-xxxxpredictiveMedium
243ArgumentxxxxpredictiveLow
244Argumentxxx_xxxxxxxxxpredictiveHigh
245Argumentxxx_xxxxxxpredictiveMedium
246ArgumentxxxxpredictiveLow
247ArgumentxxpredictiveLow
248Argumentxx/xxxxxxxxx_xxpredictiveHigh
249Argumentxxxxx_xxxx/xxxxxx/xxxxxpredictiveHigh
250ArgumentxxxxxpredictiveLow
251Argumentxxxx_xxpredictiveLow
252ArgumentxxxxxpredictiveLow
253ArgumentxxxxpredictiveLow
254ArgumentxxxpredictiveLow
255ArgumentxxxxpredictiveLow
256ArgumentxxxxxxpredictiveLow
257ArgumentxxxxxxxxxxpredictiveMedium
258Argumentxxxxxxxxxxxx_xxxxxxpredictiveHigh
259Argumentxxxx_xxxxpredictiveMedium
260ArgumentxxxxxxxxxpredictiveMedium
261Argumentxxxx/xxxxxxxxxx xxxxx/xxxxxpredictiveHigh
262Argumentxxxx_xxxxxxpredictiveMedium
263ArgumentxxxxxpredictiveLow
264ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
265ArgumentxxpredictiveLow
266ArgumentxxxxpredictiveLow
267ArgumentxxxxpredictiveLow
268ArgumentxxxxxxxxpredictiveMedium
269ArgumentxxxxxxxxpredictiveMedium
270ArgumentxxxxxxxxxpredictiveMedium
271Argumentxxxxx_xxxx_xxxxpredictiveHigh
272ArgumentxxxxxxxxpredictiveMedium
273ArgumentxxxxxpredictiveLow
274ArgumentxxxxxxxxpredictiveMedium
275Argumentxxxxxx/xxxxxpredictiveMedium
276ArgumentxxxxxxpredictiveLow
277ArgumentxxxxxxxxpredictiveMedium
278ArgumentxxxxxxxxxxpredictiveMedium
279ArgumentxxxpredictiveLow
280ArgumentxxxxpredictiveLow
281Argumentxxx_xxxxx_xxxxxpredictiveHigh
282ArgumentxxxxxxxxxpredictiveMedium
283ArgumentxxxxxxxxxxxxxxxxxpredictiveHigh
284ArgumentxxxxxxxpredictiveLow
285ArgumentxxxxxxxxxpredictiveMedium
286Argumentxxxxx_xxxxxpredictiveMedium
287ArgumentxxxxpredictiveLow
288Argumentxxxxxxxx_xxpredictiveMedium
289Argumentxxxxx_xxxpredictiveMedium
290ArgumentxxxpredictiveLow
291ArgumentxxxxxxxxxpredictiveMedium
292ArgumentxxxxxxxxxxxpredictiveMedium
293ArgumentxxxxpredictiveLow
294ArgumentxxxxxxxxpredictiveMedium
295Argumentxxxxxxxx/xxxxpredictiveHigh
296Argumentxxxx_xxxxx/xxxx_xxxx/xxpredictiveHigh
297Argumentxxx_xxxxpredictiveMedium
298ArgumentxxxpredictiveLow
299ArgumentxxxxxpredictiveLow
300Input Value%xx%xx%xxxxxxxx%xxxxxxx%xxxxxxxxxx.xxxxxx%xx%xx/xxxxxx%xx%xxxxx%xxxxxxx=%xxxpredictiveHigh
301Input Value../predictiveLow
302Input Value../..predictiveLow
303Input Value./xxx/predictiveLow
304Input Value/xx *predictiveLow
305Input Valuex\"><xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
306Input Value<xxxxxx>xxxxx(xxxxxxxx.xxxxxx);</xxxxxx>predictiveHigh
307Input Valuexxxx -x xxxxxxxx=xxxxxx.xxxxxxx xxxx://xxx.xxx.x.x/xxxxxx.xxxpredictiveHigh
308Input Valuexxxxxxxx.+xxxpredictiveHigh
309Input Value…/.predictiveLow
310Network Portxxx/xxxpredictiveLow
311Network Portxxx/xxxpredictiveLow
312Network Portxxx/xxxxpredictiveMedium
313Network Portxxx/xxxxxpredictiveMedium
314Network Portxxx xxxxxx xxxxpredictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!