Wild Neutron Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en884
zh44
de20
ar16
es10

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

nl994
om4
us2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows94
Linux Kernel32
Google Android20
WordPress18
F5 BIG-IP18

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined1.360.00000CVE-2020-12440
2Huawei ACXXXX/SXXXX SSH Packet input validation7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.020.01055CVE-2014-8572
3Microsoft Windows WPAD access control8.07.9$25k-$100k$0-$5kHighOfficial Fix0.000.34346CVE-2016-3213
4Microsoft Windows Graphics Remote Code Execution7.06.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.070.01648CVE-2021-34530
5Microsoft Windows Event Tracing Privilege Escalation7.36.3$25k-$100k$5k-$25kUnprovenOfficial Fix0.010.01150CVE-2021-34487
6Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.090.25090CVE-2017-0055
7Cisco Secure Email and Web Manager Web-based Management Interface improper authentication9.89.6$25k-$100k$5k-$25kNot DefinedOfficial Fix0.020.01055CVE-2022-20798
8nginx Log File link following7.87.4$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.020.05028CVE-2016-1247
9Apache HTTP Server mod_rewrite redirect6.76.7$25k-$100k$5k-$25kNot DefinedNot Defined0.110.07767CVE-2020-1927
10Microsoft .NET Core/Visual Studio denial of service6.45.5$5k-$25k$0-$5kUnprovenOfficial Fix0.010.02427CVE-2021-26423
11Microsoft Windows TCP/IP Stack Privilege Escalation9.98.6$100k and more$5k-$25kUnprovenOfficial Fix0.050.01728CVE-2021-26424
12Microsoft Windows Event Tracing Privilege Escalation8.37.3$100k and more$5k-$25kUnprovenOfficial Fix0.040.01150CVE-2021-26425
13Microsoft Windows Bluetooth Driver Privilege Escalation8.37.3$100k and more$5k-$25kUnprovenOfficial Fix0.020.01150CVE-2021-34537
14Microsoft Dynamics 365 Privilege Escalation8.57.4$25k-$100k$0-$5kUnprovenOfficial Fix0.020.01967CVE-2021-34524
15Microsoft Windows Storage Spaces Controller Local Privilege Escalation7.86.8$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.01150CVE-2021-34536
16Microsoft Windows Graphics Remote Code Execution7.06.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.01648CVE-2021-34533
17Microsoft Windows Services for NFS ONCRPC XDR Driver information disclosure6.45.5$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.02427CVE-2021-36926
18Microsoft ASP.NET Core/Visual Studio information disclosure4.94.3$5k-$25k$0-$5kUnprovenOfficial Fix0.000.01150CVE-2021-34532
19Microsoft Windows Services for NFS ONCRPC XDR Driver information disclosure6.45.5$25k-$100k$5k-$25kUnprovenOfficial Fix0.020.02427CVE-2021-36933
20Microsoft Windows Remote Desktop Client Remote Code Execution8.87.9$100k and more$5k-$25kProof-of-ConceptOfficial Fix0.020.01728CVE-2021-34535

IOC - Indicator of Compromise (5)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (239)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.travis.ymlpredictiveMedium
2File/.envpredictiveLow
3File/admin.phppredictiveMedium
4File/admin/subnets/ripe-query.phppredictiveHigh
5File/core/conditions/AbstractWrapper.javapredictiveHigh
6File/debug/pprofpredictiveMedium
7File/exportpredictiveLow
8File/file?action=download&filepredictiveHigh
9File/hardwarepredictiveMedium
10File/medical/inventories.phppredictiveHigh
11File/monitoringpredictiveMedium
12File/opt/zimbra/jetty/webapps/zimbra/publicpredictiveHigh
13File/plugin/LiveChat/getChat.json.phppredictiveHigh
14File/plugins/servlet/audit/resourcepredictiveHigh
15File/plugins/servlet/project-config/PROJECT/rolespredictiveHigh
16File/replicationpredictiveMedium
17File/RestAPIpredictiveMedium
18File/tmppredictiveLow
19File/tmp/speedtest_urls.xmlpredictiveHigh
20File/tmp/zarafa-vacation-*predictiveHigh
21File/uncpath/predictiveMedium
22File/uploadpredictiveLow
23File/user/loader.php?api=1predictiveHigh
24File/var/log/nginxpredictiveHigh
25File/var/run/watchman.pidpredictiveHigh
26File/viewer/krpano.htmlpredictiveHigh
27File/wp-json/oembed/1.0/embed?urlpredictiveHigh
28Filexxxxx-xxxx.xxx?xxxxxx=xxx_xxxxxxx xxxxx[x][xxx]predictiveHigh
29Filexxxxxxx.xxxpredictiveMedium
30Filexxxxxxx.xxxpredictiveMedium
31Filexxx/xxx/xxxx-xxxpredictiveHigh
32Filexxx/xx/xxxxxxpredictiveHigh
33Filexxxxxxxxxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
34Filexxxx/xxxxxxx/xxx/xxxxxx_xxxx.xpredictiveHigh
35Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
36Filexxxx-xxxx.xpredictiveMedium
37Filexxxx-xxxxxxx.xpredictiveHigh
38Filexxxx/xxxxxxx.xxxpredictiveHigh
39Filexxxxxx_xxxx.xxxpredictiveHigh
40Filex:\xxxxxxx xxxxx\xxxxxx xxxxx\xxx\xxxxxxx.xxxpredictiveHigh
41Filex:\xxxxxxx\xxxxxxxx\xxxxxx\xxxpredictiveHigh
42Filexxxxxxxx.xxxpredictiveMedium
43Filexxxxxxxx.xxxpredictiveMedium
44Filexxxx.xxxpredictiveMedium
45Filexxx-xxx/xxxxpredictiveMedium
46Filexxx-xxx/xx.xxxpredictiveHigh
47Filexxx/xxxxxxx.xxpredictiveHigh
48Filexxxx_xxxxxx.xpredictiveHigh
49Filexxxxx.xxxpredictiveMedium
50Filexxxxxx.xxxpredictiveMedium
51Filexxx_xxxxxx.xxxpredictiveHigh
52Filexxx.xxxpredictiveLow
53Filexxxxxx.xxxpredictiveMedium
54Filexxxxxxxx.xxpredictiveMedium
55Filex_xxxxxxpredictiveMedium
56Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
57Filexxxxxx.xxxpredictiveMedium
58Filexxxxxxx.xxxpredictiveMedium
59Filexxxxxxx/xxxxx/xxxxxx.xpredictiveHigh
60Filexxxxxxx/xxx/xxxx/xxxx.xpredictiveHigh
61Filexxxxxxx/xxx/xxxxxxx/xxxx.xpredictiveHigh
62Filexxxxxxx/xxxx/xxxx_xxxxxxxxx_xxxxx.xpredictiveHigh
63Filexxxxxxx_xxxx_xxxxxx_xxxx.xxxpredictiveHigh
64Filexxxx_xxxxx.xxxpredictiveHigh
65Filexxx/xxxxxxxx/xxx_xxxxxxxxxxxx.xpredictiveHigh
66Filexxxxxxxx.xpredictiveMedium
67Filexxx_xxxx.xpredictiveMedium
68Filexxxxxxxxx/xxxxx/xxxxxxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
69Filexx/xxxxxxxxx.xpredictiveHigh
70Filexx/xxxxx.xpredictiveMedium
71Filexx/xxxxx/xxxxxxx.xpredictiveHigh
72Filexx.xxxxx.xxxpredictiveMedium
73Filexxxxx.xxxpredictiveMedium
74Filexxxxxxxxxx.xxpredictiveHigh
75Filexxxx/xxxxxxxxxxxxxxxxxxxxxxxx.xxpredictiveHigh
76Filexxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
77Filexxxxx-xxxxx.xpredictiveHigh
78Filexxxxxx_xxxxx_xxxxxxx.xpredictiveHigh
79Filexxxxxxx/xxxx.xxxpredictiveHigh
80Filexxxxxxxx/xxxxx-xxxxxxxxx.xxxpredictiveHigh
81Filexxxxx.xxpredictiveMedium
82Filexxxxx.xxxpredictiveMedium
83Filexxxxx.xxx?xx=xxxxxxxx.xxxxxxpredictiveHigh
84Filexxxxxxxxx/xxxxx/xxx_xxx/xxxx.xxxpredictiveHigh
85Filexxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxpredictiveHigh
86Filexxxx_xxxx.xxxpredictiveHigh
87Filexxxx_xxxxxx.xxpredictiveHigh
88Filexxxxxx/xxx/xxxxxxxx.xpredictiveHigh
89Filexxxxxx/xxxxx/xxxxx_xxxxxx_xxxxxx.xpredictiveHigh
90Filexxxxxxx/xx_xxx.xpredictiveHigh
91Filexxxxxxxxx/xxxxxxx/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
92Filexxxx.xxxpredictiveMedium
93Filexxxxx.xxxpredictiveMedium
94Filexxxxx.xxxpredictiveMedium
95Filexxxx.xpredictiveLow
96Filexxxxxx_xxxxx_xxxxxxx.xpredictiveHigh
97Filexxxxxxxxxxxxxxxx.xpredictiveHigh
98Filexxx/xxxxxxxxx/xx_xxxxxx_xxx.xpredictiveHigh
99Filexxx/xxxxxxxxx/x_xxxxxx.xpredictiveHigh
100Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
101Filexxx_xx.xpredictiveMedium
102Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
103Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
104Filexxxxxxxxx.xxx.xxxpredictiveHigh
105Filexxxxxxx.xxxpredictiveMedium
106Filexxxxxxxxxxxxx.xxxpredictiveHigh
107Filexxxxxxxxxxxx.xxxpredictiveHigh
108Filexxxxxxxxxxxxx.xxxxpredictiveHigh
109Filexxxxx.xxxpredictiveMedium
110Filexxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]predictiveHigh
111Filexxx_xxxxxx/xxxxxx/xxxxxxxxxxxxpredictiveHigh
112Filexxxxxxxx.xxxpredictiveMedium
113Filexxxxxxx.xpredictiveMedium
114Filexxxxxxx.xxxpredictiveMedium
115Filexxxxxxxxxx/xxxxxxxxxx_xxxx.xxx?xxxxxx=xxxxxxpredictiveHigh
116Filexxxxxxx.xpredictiveMedium
117Filexxxx_xxx_xx.xpredictiveHigh
118Filexx_xxx.xpredictiveMedium
119Filexxx.xpredictiveLow
120Filexxxxxx.xpredictiveMedium
121Filexxxxx.xxxpredictiveMedium
122Filexxxx-xxxxxx.xpredictiveHigh
123Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
124Filexxxxxxx.xpredictiveMedium
125Filexxx/xxx_xxxxx.xpredictiveHigh
126Filexxxxxxx.xxx.xx.xxxxxxxxxxx.xxxpredictiveHigh
127Filexxxxxxxxxx.xpredictiveMedium
128Filexx.xxxpredictiveLow
129Filexxxxxx.xxxpredictiveMedium
130Filexxxxxxx/xxxxxxx/xxxxxx/xxxxxx_xxxx.xxxpredictiveHigh
131Filexxxxxxxxx.xpredictiveMedium
132Filexxxx.xxxxxxxxx.xxxpredictiveHigh
133Filexxxxxx.xxxpredictiveMedium
134Filexxx.xxxpredictiveLow
135Filexxxxxx/xx/xxxx.xxxpredictiveHigh
136Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
137Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
138Filexx-xxxxxxxx/xxxxxxx-xxxxxxxx.xxxpredictiveHigh
139Filexx-xxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
140Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
141Filexx/xx/xxxxxpredictiveMedium
142Filexx_xxxxxxx.xpredictiveMedium
143Filexxxxxx.x/xxxxx.x/xxxx.xpredictiveHigh
144File_xxxxxxxx/xxxxxxxx.xxxpredictiveHigh
145File~/xxxx/xxx/xxxxxxx/xxxxxxxxxx/xxxxxx.xxxpredictiveHigh
146Library/xxx/xxx/xxx/xxxx/xxxxxxxxxx/xxxxxx.xxxpredictiveHigh
147Libraryxxxxx/xxxxxxxxx/xxxx.xxxxxxxxx.xxxpredictiveHigh
148Libraryxxxxxxxxx.xxxpredictiveHigh
149Libraryxxxxxxxx.xxxpredictiveMedium
150Libraryxxxxxxxxxx/xxxxxxxx.xpredictiveHigh
151Libraryxxxxxxxx.xxxpredictiveMedium
152Libraryxxxxxxxxx.xxxpredictiveHigh
153Libraryxxxxxx.xxx.xxx.xxxpredictiveHigh
154Libraryxxxxxxxx.xxxpredictiveMedium
155Libraryxxxxxxxx.xxxpredictiveMedium
156Argument-xpredictiveLow
157ArgumentxxxxxxpredictiveLow
158Argumentxxxxxx_xxxxpredictiveMedium
159ArgumentxxxxxxxxxxpredictiveMedium
160ArgumentxxxpredictiveLow
161ArgumentxxxxxpredictiveLow
162Argumentxxx_xxpredictiveLow
163ArgumentxxxxxxxxxxxxxxxpredictiveHigh
164Argumentxxxx_xxpredictiveLow
165ArgumentxxxxxxpredictiveLow
166Argumentxxxxxxx-xxxxxxpredictiveHigh
167ArgumentxxxxxxxxxxpredictiveMedium
168ArgumentxxxxxxxpredictiveLow
169Argumentxxxxxxx_xxxx->xxx($xxxxxxxx)predictiveHigh
170ArgumentxxxxxxpredictiveLow
171ArgumentxxxxxxxxxxxpredictiveMedium
172ArgumentxxxxxxxxxxxpredictiveMedium
173Argumentxxxxxx_xxxxpredictiveMedium
174Argumentxxxxxxxxx->xxxxxxxxxpredictiveHigh
175ArgumentxxxxxxxxxxpredictiveMedium
176ArgumentxxxxxxxxpredictiveMedium
177ArgumentxxpredictiveLow
178ArgumentxxxxxxxxxxxxxxpredictiveHigh
179ArgumentxxxxxxxpredictiveLow
180Argumentxxxx_xxxxxx_xxxxpredictiveHigh
181Argumentxxxxxxxxx/xxxxxxxxxpredictiveHigh
182ArgumentxxxpredictiveLow
183Argumentxx_xxxxpredictiveLow
184Argumentxx[xxxx]predictiveMedium
185ArgumentxxxxpredictiveLow
186ArgumentxxxxxxxxxxxxxxxxxxxxpredictiveHigh
187ArgumentxxpredictiveLow
188Argumentxxxxxxx/xxxx/xxxxxxxxpredictiveHigh
189ArgumentxxxxxpredictiveLow
190Argumentxxxxx/xxxxxxpredictiveMedium
191Argumentxxxx_xxxxpredictiveMedium
192ArgumentxxxxxxxxpredictiveMedium
193ArgumentxxxxxxxxpredictiveMedium
194ArgumentxxxxxxxxxpredictiveMedium
195Argumentxxx_xxxpredictiveLow
196Argumentxxxxxxxx_xxxxxpredictiveHigh
197ArgumentxxxxxxpredictiveLow
198ArgumentxxxxxxpredictiveLow
199Argumentxx_xxxxxxx_xxxxxxxpredictiveHigh
200ArgumentxxxxxpredictiveLow
201Argumentxxxxxxx_xxxpredictiveMedium
202ArgumentxxxxpredictiveLow
203ArgumentxxxxxxxpredictiveLow
204ArgumentxxxxxxpredictiveLow
205Argumentxxxxxxxx_xxxxxpredictiveHigh
206ArgumentxxxxxxpredictiveLow
207ArgumentxxxpredictiveLow
208ArgumentxxxxxxxxxxxxpredictiveMedium
209ArgumentxxxxxxpredictiveLow
210ArgumentxxxxxxxxxpredictiveMedium
211ArgumentxxxxxxxxxpredictiveMedium
212ArgumentxxxpredictiveLow
213ArgumentxxxxxxpredictiveLow
214ArgumentxxxpredictiveLow
215ArgumentxxxxpredictiveLow
216Argumentxxxxxxxx-xxxxxxxxpredictiveHigh
217ArgumentxxxpredictiveLow
218ArgumentxxxxpredictiveLow
219ArgumentxxxxxxxxpredictiveMedium
220ArgumentxxxxxxxpredictiveLow
221Argumentxxxx->xxxxxxxpredictiveHigh
222Argumentx-xxxx-xxpredictiveMedium
223ArgumentxxxpredictiveLow
224Argument\xxxxxx\predictiveMedium
225Argument_xxx_xxxxxxx_xxxxxxx_xxxxxxxxxxxxx_xxx_xxx_xxxxxxx_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx_xxxxxxxxxxxxxxxpredictiveHigh
226Argument_xxx_xxxxxxxxxxx_predictiveHigh
227Input Value.%xx.../.%xx.../predictiveHigh
228Input Valuexxx xxxxxxxxpredictiveMedium
229Input Valuexxxxxxxxx' xxx 'x'='xpredictiveHigh
230Input ValuexxxxxpredictiveLow
231Input Valuexxxxxxx_xxxxx.xxxxxxx_xxxxxxxpredictiveHigh
232Input Value\xpredictiveLow
233Input Value….//predictiveLow
234Pattern() {predictiveLow
235Pattern|xx|predictiveLow
236Network PortxxxxxpredictiveLow
237Network Portxx xxxxxxx xxx.xx.xx.xxpredictiveHigh
238Network Portxxx/xx (xxxxxx)predictiveHigh
239Network Portxxx xxxxxx xxxxpredictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!