Gamarue Analys

IOB - Indicator of Behavior (1000)

Tidslinje

Lang

en846
de94
zh20
ru14
fr12

Land

us378
de106
ru36
cn32
nl24

Skådespelare

Aktiviteter

Intressera

Tidslinje

Typ

Säljare

Produkt

Linux Kernel46
Microsoft Windows30
Google Android14
Google Chrome12
Qualcomm Snapdragon Auto10

Sårbarheter

#SårbarhetBaseTemp0dayI dagUtnRemCTIEPSSCVE
1DT Register Extension sql injektion8.57.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.00282CVE-2018-6584
2Zoho ManageEngine Applications Manager register.do informationsgivning4.64.6$0-$5k$0-$5kNot DefinedNot Defined0.000.00113CVE-2016-9491
3Google Android qsee_register_log_buff minneskorruption8.58.2$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.00187CVE-2015-9198
4Google gperftools malloc_extension.cc Register/InitModule förnekande av tjänsten6.46.4$5k-$25k$0-$5kNot DefinedNot Defined0.000.00103CVE-2018-13420
5Google Android Bluetooth Service btif_hd.cc register_application informationsgivning5.45.2$25k-$100k$0-$5kNot DefinedOfficial Fix0.000.00042CVE-2018-9544
6ARM Trusted Firmware Register informationsgivning6.45.9$0-$5k$0-$5kNot DefinedNot Defined0.000.00176CVE-2017-15031
7Kamailio REGISTER Message tmx_pretran.c tmx_check_pretran minneskorruption8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.020.13952CVE-2018-8828
8PBC bootstrap.c _pbcB_register_fields minneskorruption7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.000.00163CVE-2018-12918
9Pie Register Plugin sql injektion8.57.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.030.06457CVE-2018-10969
10Coremail register.jsp Stored cross site scripting4.44.4$0-$5k$0-$5kNot DefinedNot Defined0.020.00057CVE-2018-9330
11Intel CPU Lazy FPU Register LazyFP informationsgivning4.64.5$5k-$25k$0-$5kNot DefinedWorkaround0.000.00076CVE-2018-3665
12OpenEMR register.php svag autentisering8.27.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000.04202CVE-2018-15152
13Microsoft Windows Netlogon Zerologon privilegier eskalering8.48.0$25k-$100k$0-$5kHighOfficial Fix0.030.32187CVE-2020-1472
14Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.020.00548CVE-2017-0055
15Advanced Guestbook index.php cross site scripting4.34.1$0-$5kBeräknandeProof-of-ConceptNot Defined0.050.00268CVE-2005-4649
16Microsoft .NET Core Hash Collision privilegier eskalering7.06.8$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.00448CVE-2018-0875
17TIBCO JasperReports Server REST API privilegier eskalering9.08.9$0-$5k$0-$5kNot DefinedOfficial Fix0.000.01160CVE-2018-18815
18Apple iOS/iPadOS Kernel tävlingsvillkor5.35.1$5k-$25k$0-$5kHighOfficial Fix0.030.00097CVE-2021-1782
19AbanteCart language.php sql injektion7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.000.00104CVE-2016-10755
20Trend Micro Security 2020 privilegier eskalering5.85.8$5k-$25k$0-$5kNot DefinedNot Defined0.000.00045CVE-2020-25775

IOC - Indicator of Compromise (95)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP-adressHostnameSkådespelareKampanjerIdentifiedTypFörtroende
15.35.249.46redirect.haribo.comGamarue11/05/2022verifiedHög
25.154.191.57Gamarue22/07/2021verifiedHög
35.159.57.195www-riedle.transfermarkt.deGamarue11/05/2022verifiedHög
420.186.50.83Gamarue14/04/2022verifiedHög
537.187.0.40ns3108067.ip-37-187-0.euGamarue22/07/2021verifiedHög
640.70.224.146Gamarue06/05/2022verifiedHög
740.81.11.194Gamarue14/04/2022verifiedHög
840.91.94.203Gamarue14/04/2022verifiedHög
945.8.124.25free.gbnhost.comGamarue23/07/2021verifiedHög
1045.122.138.6Gamarue08/04/2022verifiedHög
1145.128.204.36Gamarue23/07/2021verifiedHög
1245.128.207.237Gamarue23/07/2021verifiedHög
1346.45.169.10646-45-169-106.turkrdns.comGamarue29/01/2022verifiedHög
1446.249.38.155Gamarue08/04/2022verifiedHög
1546.254.21.69h13.ihc.ruGamarue22/07/2021verifiedHög
1650.116.23.211www.eqnic.netGamarue22/07/2021verifiedHög
1751.195.53.221ip221.ip-51-195-53.euGamarue23/07/2021verifiedHög
1852.137.90.34Gamarue03/09/2021verifiedHög
1952.230.217.195Gamarue14/04/2022verifiedHög
20XX.XXX.XX.XXXXxxxxxx14/04/2022verifiedHög
21XX.XX.XXX.XXXXxxxxxx14/04/2022verifiedHög
22XX.XXX.XXX.XXXXxxxxxx08/04/2022verifiedHög
23XX.XX.XX.XXXXxxxxxx11/05/2022verifiedHög
24XX.XXX.XX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxxx11/05/2022verifiedHög
25XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxx.xxxxx.xxxXxxxxxx14/04/2022verifiedHög
26XX.XXX.XXX.XXXxx-xxx-xxx-xxx.xxxx.xxxxx.xxxXxxxxxx14/04/2022verifiedHög
27XX.XX.XXX.XXxxxxxxxx-xx-xxxxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
28XX.XX.XXX.XXXxxxx.xxxxxxxxx.xxXxxxxxx22/07/2021verifiedHög
29XX.XXX.XX.XXXxxxxx.xxxxx.xxxXxxxxxx11/05/2022verifiedHög
30XX.XXX.XXX.XXxxxxx.xxxxxxx.xxxxxxxxxx.xxXxxxxxx11/05/2022verifiedHög
31XX.XX.XXX.XXXxxx.xxx-xxx.xxxXxxxxxx22/07/2021verifiedHög
32XX.XX.XXX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxxx11/05/2022verifiedHög
33XX.XXX.XXX.XXXxxxx.xxxxxxxxxx.xxxxXxxxxxx23/07/2021verifiedHög
34XX.XXX.XXX.XXXxxxx-xx.xxxxx.xxxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
35XX.XX.X.XXXxxxxxx22/07/2021verifiedHög
36XX.XX.XXX.XXXxxxxxx-xx-xx-xxx-xxx.xxxxx.x.xxxxxxxxxx.xxxXxxxxxx06/05/2022verifiedHög
37XXX.XXX.XXX.XXxxx.xxx.xxx.xx.xxxxxx.xxxxxxxxxxx.xxxXxxxxxx23/07/2021verifiedHög
38XXX.XX.XX.XXXxxxxxx08/04/2022verifiedHög
39XXX.XX.XX.XXXxxxxxx08/04/2022verifiedHög
40XXX.XX.XXX.XXXXxxxxxx29/01/2022verifiedHög
41XXX.XX.XXX.XXXXxxxxxx29/01/2022verifiedHög
42XXX.XX.XXX.XXXXxxxxxx29/01/2022verifiedHög
43XXX.XX.XXX.XXXXxxxxxx29/01/2022verifiedHög
44XXX.XX.XX.XXXXxxxxxx03/09/2021verifiedHög
45XXX.XX.XXX.XXXXxxxxxx08/04/2022verifiedHög
46XXX.XX.XX.XXXxxxxxx08/04/2022verifiedHög
47XXX.XX.XX.XXXXxxxxxx08/04/2022verifiedHög
48XXX.XX.XXX.XXXXxxxxxx22/07/2021verifiedHög
49XXX.XX.XXX.XXXXxxxxxx14/04/2022verifiedHög
50XXX.XXX.XXX.XXXxxxxxx22/07/2021verifiedHög
51XXX.XXX.XX.XXXXxxxxxx22/07/2021verifiedHög
52XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xx.xxxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
53XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xx.xxxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
54XXX.XXX.XX.XXXXxxxxxx22/07/2021verifiedHög
55XXX.XXX.XXX.XXXxxx.xxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
56XXX.XX.X.XXXxxxxxx22/07/2021verifiedHög
57XXX.XXX.XX.XXxxxxxxxxxxx.xxxxxx.xxxXxxxxxx11/05/2022verifiedHög
58XXX.XXX.XXX.XXXxxxxxx.xxxxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
59XXX.XXX.XXX.XXXXxxxxxx11/05/2022verifiedHög
60XXX.XXX.X.Xxxx.xxxxx.xx-xxxxxx.xxXxxxxxx11/05/2022verifiedHög
61XXX.XXX.XX.XXxxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
62XXX.XXX.XX.XXXXxxxxxx11/05/2022verifiedHög
63XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxXxxxxxx11/05/2022verifiedHög
64XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxxxxxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
65XXX.XX.XXX.XXXXxxxxxx03/09/2021verifiedHög
66XXX.XXX.X.Xxxxxxxxx-xx-xx.xxxxx.xxxXxxxxxx22/07/2021verifiedHög
67XXX.XXX.XXX.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxxx23/07/2021verifiedHög
68XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxx23/07/2021verifiedHög
69XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxx22/07/2021verifiedHög
70XXX.XXX.XXX.XXXXxxxxxx25/06/2022verifiedHög
71XXX.XX.XXX.XXXXxxxxxx22/07/2021verifiedHög
72XXX.XX.XXX.XXXxx.xxxxxx.xxxXxxxxxx22/07/2021verifiedHög
73XXX.XXX.XXX.XXXxxxxxxxx.xxxxxx.xxXxxxxxx11/05/2022verifiedHög
74XXX.XXX.XXX.Xxxx-xxx-xxx-x.xxxxxxxx.xxxxxxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
75XXX.XX.XX.XXXxxx-xxxxxx.xxxxxx-xx-xxxxx.xxxXxxxxxx22/07/2021verifiedHög
76XXX.XX.XXX.XXXxxxx.xxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
77XXX.XXX.XX.XXXxxxxxxxxxxxxxx.xxxxXxxxxxx22/07/2021verifiedHög
78XXX.XXX.XX.XXXXxxxxxx22/07/2021verifiedHög
79XXX.XXX.XXX.XXXXxxxxxx23/07/2021verifiedHög
80XXX.XX.XXX.XXXXxxxxxx11/05/2022verifiedHög
81XXX.XXX.XXX.XXXxxxxxx11/05/2022verifiedHög
82XXX.XXX.XX.XXXxxxxxxxxxx.xxxXxxxxxx22/07/2021verifiedHög
83XXX.XX.XX.XXXXxxxxxx14/04/2022verifiedHög
84XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxxx11/05/2022verifiedHög
85XXX.XXX.XX.XXXxxxxxx.xxx.xxxxxx.xxxXxxxxxx11/05/2022verifiedHög
86XXX.XXX.X.XXxxx.xxx.x.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxx14/04/2022verifiedHög
87XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxxx11/05/2022verifiedHög
88XXX.XXX.XX.XXXxxxxxx-xxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
89XXX.XX.XXX.XXxx-xx-xxx.xxxxx.xxxXxxxxxx23/07/2021verifiedHög
90XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxxx11/05/2022verifiedHög
91XXX.XX.XXX.XXXxxxxxx25/06/2022verifiedHög
92XXX.X.XXX.XXXxxxxxxx.xxxxXxxxxxx29/04/2022verifiedHög
93XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxxx11/05/2022verifiedHög
94XXX.XXX.XXX.XXxxxx.xxxxxx.xxXxxxxxx08/04/2022verifiedHög
95XXX.XX.X.XXxxx-xx-x-xx.xxxxxx-xx-xxxxxxxxxxx.xxxXxxxxxx29/04/2022verifiedHög

TTP - Tactics, Techniques, Procedures (26)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueSårbarheterÅtkomstvektorTypFörtroende
1T1006CWE-21, CWE-22Path TraversalpredictiveHög
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveHög
3T1055CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHög
4T1059CWE-88, CWE-94Argument InjectionpredictiveHög
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHög
6T1068CWE-264, CWE-269, CWE-284Execution with Unnecessary PrivilegespredictiveHög
7TXXXX.XXXCWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHög
8TXXXX.XXXCWE-XXX, CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHög
9TXXXX.XXXCWE-XXXXxx-xxx Xxxx Xxxxxxx XxxxpredictiveHög
10TXXXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHög
11TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHög
12TXXXXCWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHög
13TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveHög
14TXXXXCWE-XX, CWE-XXXxx XxxxxxxxxpredictiveHög
15TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHög
16TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHög
17TXXXXCWE-XXXXxxxxxx Xxxxxxxxxx Xx Xxx-xxxxxxxxpredictiveHög
18TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHög
19TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHög
20TXXXX.XXXCWE-XXXXxxxxxxxpredictiveHög
21TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHög
22TXXXX.XXXCWE-XXXxxxxxxxxxxxxpredictiveHög
23TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHög
24TXXXX.XXXCWE-XXX, CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHög
25TXXXX.XXXCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHög
26TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveHög

IOA - Indicator of Attack (319)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlassIndicatorTypFörtroende
1File%PROGRAMDATA%\OpenVPN Connect\drivers\tap\amd64\win10predictiveHög
2File%PROGRAMDATA%\Razer\Synapse3\Service\binpredictiveHög
3File/?p=productspredictiveMedium
4File/admin/config.php?display=disa&view=formpredictiveHög
5File/admin/settings/sites/newpredictiveHög
6File/ajax/networking/get_netcfg.phppredictiveHög
7File/api/admin/store/product/savepredictiveHög
8File/app/admin/nat/item-add-submit.phppredictiveHög
9File/app/sys1.phppredictiveHög
10File/bin/shpredictiveLåg
11File/cgi-bin/adm.cgipredictiveHög
12File/cgi-bin/wlogin.cgipredictiveHög
13File/config/netconf.cmdpredictiveHög
14File/customer_support/ajax.php?action=save_ticketpredictiveHög
15File/folder/listpredictiveMedium
16File/forms/nslookupHandlerpredictiveHög
17File/group/commentpredictiveHög
18File/ipms/imageConvert/imagepredictiveHög
19File/librarian/bookdetails.phppredictiveHög
20File/log/decodmail.phppredictiveHög
21File/lookin/infopredictiveMedium
22File/plugins/servlet/jira-blockers/predictiveHög
23File/ptipupgrade.cgipredictiveHög
24File/public/login.htmpredictiveHög
25File/register.dopredictiveMedium
26File/sessions/sess_<sessionid>predictiveHög
27File/sysmanage/edit_manageadmin.phppredictiveHög
28File/themes/<php_file_name>predictiveHög
29File/tmp/speedtest_urls.xmlpredictiveHög
30File/uncpath/predictiveMedium
31File/uploadpredictiveLåg
32File/var/log/nginxpredictiveHög
33File/wbg/core/_includes/authorization.inc.phppredictiveHög
34File/wp-admin/admin.phppredictiveHög
35File/wp-content/plugins/updraftplus/admin.phppredictiveHög
36Filexxxxxxx.xxxpredictiveMedium
37Filexxxxx.xxxpredictiveMedium
38Filexxxxx/?x=xxxx&x=xxxxx&x=xxxxxxxxxxpredictiveHög
39Filexxxxx/xxxxxxxxxx/xxxxx/xxxxxxxxxxxx/xxxxxxxx.xxxpredictiveHög
40Filexxxxxxx/xxxxxxxxxx.xxx&xx=xxxxxxx&xxxxpredictiveHög
41Filexxxxxxxxxxxxx/xxxxx.xxx?xxxxxx=xxx_xxxx&xxxx=xxxxxxxxpredictiveHög
42Filexxxx.xxxpredictiveMedium
43Filexxxx_xxx_xxxxxxxx.xxxpredictiveHög
44Filexxxx_xxxxxxx.xxxpredictiveHög
45Filexxxx/xxxxxxx/xxxxxx/xxxx_xxxxxx.xpredictiveHög
46Filexxxxxxx_xxxxxx.xpredictiveHög
47Filexxxxxxx.xxxpredictiveMedium
48Filexxxxxxxx.xxxpredictiveMedium
49Filexxxxxx/xxxx.xxxpredictiveHög
50Filexxxxxxxxxxxxxx/xxxxxpredictiveHög
51Filexxxxx/xxx.xpredictiveMedium
52Filexxxx_xxxx_xx.xxpredictiveHög
53Filexxxxx.xxxpredictiveMedium
54Filexxxxxxxxx.xpredictiveMedium
55Filexxxxxx/xxx.xpredictiveMedium
56Filexxxx_xx.xxpredictiveMedium
57Filex:\xxxxxxxxpredictiveMedium
58Filexxxxxxxx.xxxpredictiveMedium
59Filexxx-xxx/xxxxxxxxxxxx.xxxpredictiveHög
60Filexxx-xxx/xxxx-xxxpredictiveHög
61Filexxxxxxxxxxxxxx.xxxpredictiveHög
62Filexxxxxx.xxxpredictiveMedium
63Filexxx.xxxpredictiveLåg
64Filexxx/xxxxxxxx/xxxx/xxxxxxxx.xxpredictiveHög
65Filexxx.xxxpredictiveLåg
66Filexxxxxxx.xxxpredictiveMedium
67Filexxxxxx.xxxpredictiveMedium
68Filexxxxxx.xxxpredictiveMedium
69Filexxxxxxxxx.xxxxxxx.xxxpredictiveHög
70Filexxxxxxx.xxxpredictiveMedium
71Filexxxxxxxxxx\xxxx.xxxpredictiveHög
72Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHög
73Filexxxxxxx.xxxpredictiveMedium
74Filexxxxx.xpredictiveLåg
75Filexxx.xxxpredictiveLåg
76Filexxxxxx.xxxpredictiveMedium
77Filexxxxxxxxxxxx.xxxpredictiveHög
78Filexxxxxxxxx.xxxpredictiveHög
79Filexxxxx.xpredictiveLåg
80Filexxxx.xxxpredictiveMedium
81Filexxxxxx.xxxpredictiveMedium
82Filexxxxxxxxxxxxxxxxx.xxxpredictiveHög
83Filexxxxxxx/xxx/xxxxxxxx.xpredictiveHög
84Filexxxxxxx/xxxx/xxxxx/xxxxx_xxxx.xpredictiveHög
85Filexxxxxxx/xx/xx-xxxxx.xpredictiveHög
86Filexxxxxxx/xxx/xxxxxxx/xxxx_xxx.xpredictiveHög
87Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxxx/xxxxx_xxx.xpredictiveHög
88Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxx/xxxxx_xxxxxxx.xpredictiveHög
89Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxx_xxx.xpredictiveHög
90Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxxx/xxx/xxxxxxx/xxx_xxxxxxx.xpredictiveHög
91Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxxx_xxxxxx.xpredictiveHög
92Filexxxxxxx/xxx/xxxxxxx.xpredictiveHög
93Filexxxxxxx/xxx/xxx/xxxxx.xpredictiveHög
94Filexxxxxxx/xxx/xxxxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxx_xxxxx.xpredictiveHög
95Filexxxxxxxxx.xpredictiveMedium
96Filexxxxxxxxxxxxxx_xxxx.xxxpredictiveHög
97Filexxx/xxxxxxx/xxxxxxxxxxxxxx.xpredictiveHög
98Filexxxxx.xxpredictiveMedium
99Filexxxxx/_xxx/predictiveMedium
100Filexxxxxx.xxxpredictiveMedium
101Filexxxxxxxxxxxx/xxxxxxxxxxxx.xxpredictiveHög
102Filexxxxxxxxxxxxxxxx.xxxpredictiveHög
103Filexx/xxxx/xxxx.xpredictiveHög
104Filexx/xxxx/xxxxxxx.xpredictiveHög
105Filexx/xxxxxxx/xxxxxx.xpredictiveHög
106Filexx/xxxxxx/xxxxxxx.xpredictiveHög
107Filexxxx.xpredictiveLåg
108Filexxxxxxxxx.xxxpredictiveHög
109Filexxxxxxxxxxxxx.xxxpredictiveHög
110Filexx/xxxxxxx/xxxxxxxxxxxxx.xpredictiveHög
111Filexxxxxx_xxx_xxxx_xxxxx_xx_xxxxx.xpredictiveHög
112Filexxxxxxxxx.xxxpredictiveHög
113Filexxx/xxxx.xxxxx.xxxpredictiveHög
114Filexxx/xxxxxxxx.xxxxxxxx.xxxpredictiveHög
115Filexxx/xxxxxx.xxxpredictiveHög
116Filexxxxx.xxxxpredictiveMedium
117Filexxxxx.xxxpredictiveMedium
118Filexxxxxxx/xxxxxxxxxxxxx.xxxxpredictiveHög
119Filexxxxxxxxx/xxxx-xxxxxxxxxx.xxxpredictiveHög
120Filexxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxx/predictiveHög
121Filexx/xxxxxxxxx.xpredictiveHög
122Filexx/xxxxxxx.xpredictiveMedium
123Filexx/xxxxxxx.xpredictiveMedium
124Filexxxx_xxxx.xxxpredictiveHög
125Filexxxxxxxxx.xxpredictiveMedium
126Filexxxx/xxxx/xxx_xxxx.xpredictiveHög
127Filexxxxx.xxxpredictiveMedium
128Filexxxxx.xxxpredictiveMedium
129Filexxxxxxxx/xxxxxxxxx/xxxxxxxxxxx.xxxpredictiveHög
130Filexxxxxxxxxxxx.xxxpredictiveHög
131Filexxxxxx_xxxxxxxxx.xxpredictiveHög
132Filexxxxxx.xxxpredictiveMedium
133Filexxxxxx.xxxpredictiveMedium
134Filexx/xxxxx/xxxxx.xpredictiveHög
135Filexx/xxx.xpredictiveMedium
136Filexx/xxxxxxx.xpredictiveMedium
137Filexx/xxxxxxx.xpredictiveMedium
138Filexx/xxxxxx.xpredictiveMedium
139Filexxxxxxxx.xxxpredictiveMedium
140Filexxxxxx.xxxpredictiveMedium
141Filexxxxxxx/xx/xxxxx/xxxxxxx.xpredictiveHög
142Filexxxxxxx/xxx/xxx_xxxxxxx.xpredictiveHög
143Filexxxxxxx/xxxxx.xpredictiveHög
144Filexxxxxx-xxxxxx/xxxxx/xxxxxxxxx/xxxxxxx/xxx_xxxxx.xxxpredictiveHög
145Filexxx/xxxxxxxxx/xxxxx_xxxx.xpredictiveHög
146Filexxx/xxx/xxxxx/xxxxxxxxx.xpredictiveHög
147Filexxx/xxxx/xxxxxxx.xpredictiveHög
148Filexxx/xxxx/xxx_xxxxxxxxx.xpredictiveHög
149Filexxx/xxx/xxxxxxx.xpredictiveHög
150Filexxx/xxxxxxxxx/xx_xxxxxx_xxx.xpredictiveHög
151Filexxx/xxxx/xx_xxxx.xpredictiveHög
152Filexxx/xxx_xxxxx/xx_xxxxx.xpredictiveHög
153Filexxx/xxxx/xxxx_xxxx.xpredictiveHög
154Filexxx_xxxxxxxx.xpredictiveHög
155Filexxxxxxxx.xxxpredictiveMedium
156Filexxxxxxxx.xxxpredictiveMedium
157Filexxxxxxxxxxxxxxx.xxxxpredictiveHög
158Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHög
159Filexxxxxxxxxxxxxxx.xxxpredictiveHög
160Filexxxxx/xxxxxxxx/xxx/xxx_xxxxx.xxxpredictiveHög
161Filexxxxxxx/xxxxxxx/xxxx/xxxxxx.xpredictiveHög
162Filexxxxxx/xxxxxxx/xxxxxxxx.xxxpredictiveHög
163Filexxxxxxxxxxx.xxxxpredictiveHög
164Filexxxxx.xxxpredictiveMedium
165Filexxxx.xxxpredictiveMedium
166Filexxxxxxxx/xxxxxx.xpredictiveHög
167Filexxxxxxxx.xxxpredictiveMedium
168Filexxxxxxxx.xxxpredictiveMedium
169Filexxxxxxxx.xxxpredictiveMedium
170Filexxxxxxx.xxxpredictiveMedium
171Filexx_xxx_xxxx.xxpredictiveHög
172Filexxxxxx.xxpredictiveMedium
173Filexxxxxx.xpredictiveMedium
174Filexxxxx.xxxpredictiveMedium
175Filexxxxx/xxxxxx/xxxx/xxxxxxx/xxxxxxxxxxxxxxxxxx.xxxpredictiveHög
176Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHög
177Filexxxxxxxxxxx.xxxpredictiveHög
178Filexxxx_xxx.xxxpredictiveMedium
179Filexxxxxxx/xxxxx.xxxxxxx.xxxpredictiveHög
180Filexxxxx_xxxxx.xxxpredictiveHög
181Filexxxxxxxxxxxxxx.xxxpredictiveHög
182Filexxx/xxpredictiveLåg
183Filexxxx.xxxpredictiveMedium
184Filexxxxxxxxxxxxxxxxxxxx.xxxpredictiveHög
185Filexxxx-xxxxx.xxxpredictiveHög
186Filexxxxx/xxx/xxx/xxx_xxxx.xpredictiveHög
187Filexxxxx/xxx/xxx/xxxxxx.xpredictiveHög
188Filexxxxx/xxx/xxx/xxxx.xpredictiveHög
189Filexxxxx/xxxx-xxxxxx.xpredictiveHög
190Filexxxxx/xxxx-xxxxxx/xxxxxx.xxxpredictiveHög
191Filexxxxxxxxxxxxxxxxx.xxxpredictiveHög
192Filexxxx.xxxpredictiveMedium
193Filex_xxxxxxx.xxxpredictiveHög
194Filexx/xxxxx/xxxxxxxx/xxxxxxxxxx-xxxx?xxxxxxxxx_xxxxxxxxx_xxxxxx[][xxxxxxxx]predictiveHög
195Filexxxxxxxx/xxxxxxx/xxxxxxxxxxxpredictiveHög
196Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHög
197Filexx-xxxxx/xxxx-xxx.xxxpredictiveHög
198Filexx-xxxxxxxxx.xxxpredictiveHög
199Filexxx_xxxx.xpredictiveMedium
200Filexxx/xxx.xpredictiveMedium
201Filexxxxx/xxxxx.xxxpredictiveHög
202File\xxx\xxxxxxxx\xxxxxx\xxxxxx.xxxpredictiveHög
203File~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxxxxxxx.xxxpredictiveHög
204Library/xxx/xxx/xxx/xxxx/xxxxxxxxxx/xxxxxxxxx.xxxpredictiveHög
205Libraryxxxxxx[xxxxxx_xxxxpredictiveHög
206Libraryxxxxxxxx.xxxpredictiveMedium
207Libraryxxx/xxxxxx/xxxxxxxxx/xxx_xxxxxxx.xpredictiveHög
208Libraryxxxxxxxx.xxxpredictiveMedium
209Libraryxxxxx.xxxpredictiveMedium
210Libraryxxxxxxx/xxx.xxx.xxx.xxxpredictiveHög
211Libraryxxxxxxxxxx.xxxpredictiveHög
212Libraryxxx/xxxxxxx/xxxx.xpredictiveHög
213Libraryxxxxxx.xx.xpredictiveMedium
214Libraryxxxxxxx.xxxpredictiveMedium
215Libraryxxxxx/xxxxxxxx/xxxx/xxxx/xxxx_xxxxxxx.xpredictiveHög
216Argument$_xxxxxx['xxxxxx_xxxx']predictiveHög
217Argumentxx/xxpredictiveLåg
218ArgumentxxxpredictiveLåg
219ArgumentxxxpredictiveLåg
220ArgumentxxxxxxxpredictiveLåg
221ArgumentxxxxxxxxxpredictiveMedium
222ArgumentxxxxxxxxpredictiveMedium
223ArgumentxxxxxxpredictiveLåg
224ArgumentxxxxxxxxxxpredictiveMedium
225Argumentxxxxxxxxxx_xxxxpredictiveHög
226Argumentxxx_xxxpredictiveLåg
227ArgumentxxxpredictiveLåg
228Argumentxxx_xxpredictiveLåg
229Argumentxxx_xxpredictiveLåg
230Argumentxx_xxpredictiveLåg
231ArgumentxxxpredictiveLåg
232Argumentxxx_xxxxpredictiveMedium
233Argumentxxxxxxxxxxx_xxxxpredictiveHög
234ArgumentxxxpredictiveLåg
235Argumentxxxx_xxpredictiveLåg
236Argumentxxxxxx[xxxxxx_xxxx]predictiveHög
237Argumentxxxxxxx-xxxxxxpredictiveHög
238ArgumentxxxxxpredictiveLåg
239Argumentxxxx_xxpredictiveLåg
240Argumentxxxxxxxxxx_xx/xxxxxxxx_xx/xxxxxxxpredictiveHög
241ArgumentxxxxxxxxxxxpredictiveMedium
242ArgumentxxxpredictiveLåg
243Argumentxxxx_xxxxxxxxpredictiveHög
244ArgumentxxxxxxxxpredictiveMedium
245ArgumentxxxxxpredictiveLåg
246ArgumentxxxxxxxxxpredictiveMedium
247Argumentxxxxxxxxx_xxxxxxpredictiveHög
248ArgumentxxxxpredictiveLåg
249ArgumentxxxxxxxxpredictiveMedium
250ArgumentxxxxxxxxpredictiveMedium
251ArgumentxxxxxxxpredictiveLåg
252Argumentxxxxxx_xxxxxxxxxpredictiveHög
253ArgumentxxxxxpredictiveLåg
254ArgumentxxxxpredictiveLåg
255Argumentxxxxxx_xxxxxx_xxxxxpredictiveHög
256Argumentxx_xxpredictiveLåg
257ArgumentxxxxxxpredictiveLåg
258ArgumentxxxxpredictiveLåg
259ArgumentxxxxpredictiveLåg
260Argumentxx_xxxx_xx/xx_xxxx_xxpredictiveHög
261ArgumentxxpredictiveLåg
262Argumentxx_xxxxxxxxpredictiveMedium
263ArgumentxxxxxpredictiveLåg
264ArgumentxxxxxpredictiveLåg
265Argumentxxxxxxx_xxxxpredictiveMedium
266ArgumentxxxxxxxxxxxpredictiveMedium
267ArgumentxxxxxxxxpredictiveMedium
268ArgumentxxxxpredictiveLåg
269ArgumentxxxxpredictiveLåg
270Argumentxxxxxx?xxxxxxpredictiveHög
271ArgumentxxxxxxxxxxxxxpredictiveHög
272ArgumentxxxpredictiveLåg
273Argumentxxxxxxxxx xxxxxxpredictiveHög
274ArgumentxxxxxxpredictiveLåg
275Argumentxxxx_xxpredictiveLåg
276ArgumentxxxxxxxxxxxxxxpredictiveHög
277ArgumentxxpredictiveLåg
278ArgumentxxxpredictiveLåg
279ArgumentxxxxxxpredictiveLåg
280ArgumentxxxpredictiveLåg
281ArgumentxxxxxxxxpredictiveMedium
282ArgumentxxxxxxxxpredictiveMedium
283ArgumentxxxxxxpredictiveLåg
284Argumentxxxxxxxx_xxxxxpredictiveHög
285ArgumentxxxxxxpredictiveLåg
286ArgumentxxxxxxxxpredictiveMedium
287Argumentxxx_xxxxpredictiveMedium
288ArgumentxxxxxxpredictiveLåg
289ArgumentxxxxxxxxxxxxxxpredictiveHög
290ArgumentxxxxxxxxxpredictiveMedium
291ArgumentxxxpredictiveLåg
292ArgumentxxxxpredictiveLåg
293ArgumentxxxxxxpredictiveLåg
294Argumentxxxx_xxxxpredictiveMedium
295Argumentxxxxxx_xxxxxxxxpredictiveHög
296ArgumentxxxxxxxxxxpredictiveMedium
297ArgumentxxxxxxpredictiveLåg
298ArgumentxxxxxpredictiveLåg
299ArgumentxxxxpredictiveLåg
300ArgumentxxxxxxxxxxpredictiveMedium
301ArgumentxxxxpredictiveLåg
302Argumentxxxx-xxxxxpredictiveMedium
303Argumentxxxx_xxxxxxxxx/xxxx_xxxxxxxxpredictiveHög
304Argumentxxx_xxxxxpredictiveMedium
305Argument\xxxxxx\predictiveMedium
306Argument__xxxxxxxxxxxpredictiveHög
307Input Value%xxxxxxxx%xxxxxxx%xxx%xx%xx%xxxxxxxx%xxpredictiveHög
308Input Value%xx%xx%xxxxx%xxxxx%xx%xxxxxx.xxx%xx%xxxxxxxxx%xxxxxxxxxxxx%xxxxxxx('xxx')%xxpredictiveHög
309Input Value' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxxpredictiveHög
310Input Value..predictiveLåg
311Input Value.._predictiveLåg
312Input Value/../predictiveLåg
313Input Value//xxx//xxxxxxx.xxxpredictiveHög
314Input Value/xxx/xxxxxxpredictiveMedium
315Input Value?<!xxxxxx?predictiveMedium
316Input Valuexxx "><xxx xxx="" xxxxxxx="xxxxx(xxxxxxxx.xxxxxx)">predictiveHög
317Input ValuexxpredictiveLåg
318Input Value|xxx${xxx}predictiveMedium
319Network Portxxx xxxxxx xxxxpredictiveHög

Referenser (13)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!