Serpent Stealer Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en548
de448
es4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us966

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Serpent Stealer13

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined268
Operating System46
Smartphone Operating System38
Content Management System32
Image Processing Software30

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined284
Apple54
IBM50
Google30
Microsoft26

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

ImageMagick24
Google Android22
Oracle E-Business Suite20
Linux Kernel18
Apple iTunes18

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Elefant CMS layout code injection6.35.8$0-$5k$0-$5kNot DefinedOfficial Fix0.001050.04CVE-2017-20064
2Apple iTunes SQLite input validation9.38.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.008250.00CVE-2015-3415
3Ettercap Etterfilter ef_compiler.c compile_tree memory corruption3.32.9$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000000.00CVE-2017-6430:
4Joomla CMS com_news sql injection6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.000000.00
5Joomla CMS com_phocadownload sql injection6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.000000.06
6Epson TMNet WebConfig oadmin_1 Persistent cross site scripting5.24.7$0-$5k$0-$5kProof-of-ConceptUnavailable0.003490.00CVE-2017-6443
7Fujitsu ScanSnap Installer WinSSInstS1100iWW1.exe privileges management5.35.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.02
8LogoStore search.php sql injection6.35.8$0-$5k$0-$5kNot DefinedNot Defined0.001420.04CVE-2017-20129
9HPE LoadRunner/Performance Center access control8.17.8$5k-$25k$0-$5kNot DefinedOfficial Fix0.161620.07CVE-2017-5789
10WordPress 4.7.1 injection7.37.1$5k-$25k$0-$5kFunctionalNot Defined0.000000.03
11Teleopti WFM Administration GetOneTenant Credentials information disclosure5.04.9$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000700.00CVE-2017-20109
12Bitrix Site Manager Contact Form cross site scripting4.14.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000530.12CVE-2017-20122
13Apple iTunes Expat numeric error7.37.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.032280.00CVE-2015-1283
14Ucweb UC Browser HTML URL ui layer5.44.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000700.08CVE-2017-20041
15InnoSetup Installer uncontrolled search path6.35.7$0-$5k$0-$5kProof-of-ConceptUnavailable0.000740.08CVE-2017-20051
16Telekom Open Cloud SSO cross site scripting3.53.2$0-$5k$0-$5kNot DefinedOfficial Fix0.000000.00
17spice Incoming Message input validation5.95.6$0-$5k$0-$5kNot DefinedOfficial Fix0.022660.00CVE-2016-9578
18TrueConf Server Stored cross site scripting4.14.0$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000950.04CVE-2017-20113
19HPE Helion Eucalyptus access control7.57.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.003070.00CVE-2016-8528
20Capstone Kernel Driver winkernel_mm.c cs_winkernel_malloc integer overflow8.07.0$0-$5k$0-$5kNot DefinedOfficial Fix0.002230.03CVE-2017-6952

IOC - Indicator of Compromise (23)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
13.210.242.78ec2-3-210-242-78.compute-1.amazonaws.comSerpent Stealer01/28/2024verifiedMedium
23.213.37.39ec2-3-213-37-39.compute-1.amazonaws.comSerpent Stealer01/28/2024verifiedMedium
33.219.159.186ec2-3-219-159-186.compute-1.amazonaws.comSerpent Stealer03/14/2024verifiedMedium
418.204.80.51ec2-18-204-80-51.compute-1.amazonaws.comSerpent Stealer02/27/2024verifiedMedium
534.197.122.235ec2-34-197-122-235.compute-1.amazonaws.comSerpent Stealer02/26/2024verifiedMedium
6XX.XXX.XX.XXXxxx-xx-xxx-xx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx03/04/2024verifiedMedium
7XX.XXX.XX.XXxxx-xx-xxx-xx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/23/2024verifiedMedium
8XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/20/2024verifiedMedium
9XX.XXX.XX.XXxxx-xx-xxx-xx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx04/03/2024verifiedMedium
10XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/26/2024verifiedMedium
11XX.XX.XXX.XXxxx-xx-xx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/14/2024verifiedMedium
12XX.XX.XXX.XXXxxx-xx-xx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/26/2024verifiedMedium
13XX.XX.XXX.XXXxxx-xx-xx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/21/2024verifiedMedium
14XX.XX.XXX.XXXxxx-xx-xx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx04/03/2024verifiedMedium
15XX.XXX.XX.XXXxxx-xx-xxx-xx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/05/2024verifiedMedium
16XX.XXX.XX.XXXxxx-xx-xxx-xx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/26/2024verifiedMedium
17XX.XX.XX.XXxxx-xx-xx-xx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/07/2024verifiedMedium
18XX.XX.XXX.XXXxxx-xx-xx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/12/2024verifiedMedium
19XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx03/15/2024verifiedMedium
20XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/09/2024verifiedMedium
21XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/19/2024verifiedMedium
22XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx02/06/2024verifiedMedium
23XXX.XX.XXX.XXXxxx-xxx-xx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx Xxxxxxx04/03/2024verifiedMedium

TTP - Tactics, Techniques, Procedures (20)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath ExpressionspredictiveHigh
3T1059CAPEC-137CWE-88, CWE-94Argument InjectionpredictiveHigh
4T1059.007CAPEC-209CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
5TXXXXCAPEC-122CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
6TXXXX.XXXCAPEC-191CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveHigh
7TXXXXCAPEC-136CWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
8TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveHigh
9TXXXXCAPEC-CWE-XXX, CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
10TXXXXCAPEC-CWE-XXXXxxxxxxxxx XxxxxxpredictiveHigh
11TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
12TXXXXCAPEC-112CWE-XXX, CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
13TXXXXCAPEC-38CWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveHigh
14TXXXX.XXXCAPEC-CWE-XXXXxxxxxxx Xxxxxx XxxxpredictiveHigh
15TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
16TXXXX.XXXCAPEC-133CWE-XXXXxxxxxxxpredictiveHigh
17TXXXXCAPEC-116CWE-XXX, CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
18TXXXXCAPEC-157CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
19TXXXX.XXXCAPEC-59CWE-XXX, CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
20TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (327)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File*-sub-menu.phppredictiveHigh
2File/admin/conferences/get-all-status/predictiveHigh
3File/admin/conferences/list/predictiveHigh
4File/admin/extendedpredictiveHigh
5File/admin/general/change-langpredictiveHigh
6File/admin/grouppredictiveMedium
7File/admin/moduleinterface.phppredictiveHigh
8File/catcompany.phppredictiveHigh
9File/cgi.cgipredictiveMedium
10File/controllers/MgrDiagnosticTools.phppredictiveHigh
11File/designer/add/layoutpredictiveHigh
12File/filemanager/upload/droppredictiveHigh
13File/Forms/oadmin_1predictiveHigh
14File/forms/web_runScriptpredictiveHigh
15File/forum/away.phppredictiveHigh
16File/front/roomtype-details.phppredictiveHigh
17File/inc/lists/edit-list.phppredictiveHigh
18File/inc/lists/edit_member.phppredictiveHigh
19File/index.phppredictiveMedium
20File/KK_LS9ReportingPortal/GetDatapredictiveHigh
21File/lists/admin/predictiveHigh
22File/LogoStore/search.phppredictiveHigh
23File/mcategory.phppredictiveHigh
24File/opt/tms/bin/clipredictiveHigh
25File/panel/uploadspredictiveHigh
26File/roomtype-details.phppredictiveHigh
27File/search-result/predictiveHigh
28File/swms/ms.cgipredictiveMedium
29File/system/www/pem/ck.pempredictiveHigh
30File/TeleoptiWFM/Administration/GetOneTenantpredictiveHigh
31File/tmppredictiveLow
32File/usr/local/contego/scripts/hostname.shpredictiveHigh
33File/var/run/cloudera-scm-agent/processpredictiveHigh
34File/vmi/manager/engine/management/commands/apns_worker.pypredictiveHigh
35File/zm/index.phppredictiveHigh
36File4.7.0/4.7.1predictiveMedium
37Fileaacplusenc.cpredictiveMedium
38Fileaac_parser.cpredictiveMedium
39Filexxxxxxxxxx.xpredictiveMedium
40Filexxxxx.xxxxx.xxxpredictiveHigh
41Filexxxxx/xxxxxxxxx/predictiveHigh
42Filexxxxx/xxxxx.xxxpredictiveHigh
43Filexxxxx/xxxxxx/xxxx_xxxxxxx/xxxxxx/predictiveHigh
44Filexxxxx/xxxxxxxx/xxxxxx/predictiveHigh
45Filexxxxx/xxxxxx.xxxpredictiveHigh
46Filexxxxx_xxxxx_xxxxpredictiveHigh
47Filexxx_xxxxxx_xxxxxx.xxxpredictiveHigh
48Filexxx.xpredictiveLow
49Filexxx/xxxxxxxx/xxxxxxx.xxxpredictiveHigh
50Filexxxxxxxxxxx/xxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
51Filexxxxxxx_xxxxxx.xpredictiveHigh
52Filexxxxxxx_xxxxx.xxxpredictiveHigh
53Filexxxxxxx/xxxxx/xxxx/predictiveHigh
54Filexxxx/xxxx_xxxxxx.xpredictiveHigh
55Filexxx/xxxxx.xpredictiveMedium
56Filexxx/xxxxxxxx/xxxxxx/xxxx/xxxxx.xxpredictiveHigh
57Filexxxxxx_xx.xpredictiveMedium
58Filexxx_xxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
59Filex-xxxxxx/xxxxxxx.xpredictiveHigh
60Filexxxxx/xxxxxxxxx/xxxxxx/xxxxxxxxxx/x-xxxxxxx/xxxxxxx/xxx/xxx/xxxxxxx.xxxpredictiveHigh
61Filexxxxx.xxxpredictiveMedium
62Filexxxx_xxxx_xxxxxxx.xxxpredictiveHigh
63Filexxxx_xxxxxxxxxxx.xxxpredictiveHigh
64Filexxx/xxxxxxxx.xpredictiveHigh
65Filexxxxxxxxx.xxxpredictiveHigh
66Filexxxxxx/xxxx.xpredictiveHigh
67Filexxxxxx/xxx.xpredictiveMedium
68Filexxxxxx/xxx.xpredictiveMedium
69Filexxxxxx/xxx.xpredictiveMedium
70Filexxxxxx/xxx.xpredictiveMedium
71Filexxxxxx/xxxx.xpredictiveHigh
72Filexxxxxx/xxxx.xpredictiveHigh
73Filexxxxxx/xxx.xpredictiveMedium
74Filexxxxxxxxx_xxxxxx.xxxpredictiveHigh
75Filexxxxxx_xxx.xxxpredictiveHigh
76Filexxxxxx/xxx.xpredictiveMedium
77Filexxxxxxxx.xpredictiveMedium
78FilexxxxxxxpredictiveLow
79Filexxxxxx.xxxpredictiveMedium
80Filexxx_xxxxxx_xxxxxx.xxxpredictiveHigh
81Filexxxxxxx/xxxx/xxxxxx_xxxxxxx.xpredictiveHigh
82Filexxxxxxx/xxx/xxx/xxxxxx/xxxxxx_xxxxxxx.xpredictiveHigh
83Filexxxxxxx/xxx/xxx-xxxxxx.xpredictiveHigh
84Filexxxxxxx/xxxxx/xxx/xxx-xxx-xx/xxx_xxx_xxxx.xpredictiveHigh
85Filexxxxxxx/xxxxx/xxx/xxx-xxx/xxxxx.xpredictiveHigh
86Filexxxxxxx/xxxxx/xxx/xxx-xxx/xxxxxx.xpredictiveHigh
87Filexxxxxxx/xxx/xxx/xxx/xx_xxx.xpredictiveHigh
88Filexxxxxxx/xxxx/xx.xpredictiveHigh
89Filexxxxxxx/xxx/x_xxxx.xpredictiveHigh
90Filexxxxx_xxx_xxxxxx.xpredictiveHigh
91Filexxxxx_xxxxxx.xpredictiveHigh
92Filexxxxxxxxxxxxxxxxxx.xpredictiveHigh
93Filexxxxxxxx.xpredictiveMedium
94Filexx_xxxxxxxx.xpredictiveHigh
95Filexxxxxxx.xpredictiveMedium
96Filexxxx/xxxxxxxxxx/xxxxxx-xxxx.xpredictiveHigh
97Filexxxx/xxxxxxxxxx/xxxxxx-xxx.xpredictiveHigh
98Filexxxxx.xpredictiveLow
99Filexxxxxxxx-xxxx.xxxxpredictiveHigh
100Filexxxxxxx.xpredictiveMedium
101Filexxxxx.xpredictiveLow
102Filexxxxxxxxxx.xxxpredictiveHigh
103Filexxxxxxxxxxxxxx.xxxpredictiveHigh
104Filexx/xxx.xpredictiveMedium
105Filexxxxxxxx.xxxxxxpredictiveHigh
106Filexxxx.xxxpredictiveMedium
107Filexxxxxxx-xxxxxx/xxxxxxxx/xxxxx/xxxxxxxx/xxxxxxxx_xxxxxxxxx.xxxpredictiveHigh
108Filexxxxxxxx.xpredictiveMedium
109Filexxxxxxxxxxxxx.xpredictiveHigh
110Filexxx-xxxx/xxx/xxxx/xxxx-xxxxx.xpredictiveHigh
111Filexxx.xxxpredictiveLow
112Filexxxxxx.xxxpredictiveMedium
113Filexxxxxxx.xxxpredictiveMedium
114Filexx/xxxx/xxxxxx.xpredictiveHigh
115Filexx/xxxxxxx/xxxxxx-xxx.xpredictiveHigh
116Filexx/xxxxxxxx/xxx_xxxxxxxx.xpredictiveHigh
117Filexxxxxxxxx/xxxxxx/xxxxxxx.xxxpredictiveHigh
118Filexxx.xxxpredictiveLow
119Filexxxxxxx-xxxxxx/xxxx/xxxxxx.xxxpredictiveHigh
120Filexxx/xx/xxxx/xxxxx.xxxxxpredictiveHigh
121Filexxxxx.xxxpredictiveMedium
122Filexxxxx.xxxpredictiveMedium
123Filexxxxxxx/xxxxxxxx.xxxpredictiveHigh
124Filexxxxx-xxxxxxxx-xxxxxx/xxxx_xxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
125Filexx-xxxx.xpredictiveMedium
126Filexxxx/x_xxxxxxxxxxxx.xpredictiveHigh
127Filexxx_xxx.xpredictiveMedium
128Filexxx_xxxxxx.xpredictiveMedium
129Filexxxxx_xxxxxxx.xpredictiveHigh
130Filexxxxx_xxxxxx_xxxx.xpredictiveHigh
131Filexxx_xxx.xpredictiveMedium
132Filexxxx/xxxx_xxxxx.xpredictiveHigh
133Filexxxxxx/xxx_xxxx.xpredictiveHigh
134Filexxxxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
135Filexxxxxxxxxx/xxxxxxxxx_xxxxxx.xpredictiveHigh
136Filexxxx/xxxx/xxxxxx.xpredictiveHigh
137Filexxxxxxxx/xxxxx_xxxxxx.xpredictiveHigh
138Filexxxxxxx/xxxxxx.xpredictiveHigh
139Filexxxxxxxxx/xxx/xxx_xxx.xpredictiveHigh
140Filexxxxxxxxx/xxx/xxx_xxx.xpredictiveHigh
141Filexxxx/xxx/x/xxx_xxxxxx.xpredictiveHigh
142Filexxxx/xxx/x/xxx_xxx.xpredictiveHigh
143Filexxxx/xxxxxxx/x_xxxxxx.xpredictiveHigh
144Filexxxx/xxxx/xxxxxxx.xpredictiveHigh
145Filexxxxxxx/xxx_xxxx.xpredictiveHigh
146Filexxxxxxx/xxxxxxx.xpredictiveHigh
147Filexxxxxx/xxxxxxx.xpredictiveHigh
148Filexxxxxx/xxxxxx.xpredictiveHigh
149Filexxxxxxxxxx/xxxxxx.xpredictiveHigh
150Filexxxxxxxxxx/xxxxxx-xxx.xpredictiveHigh
151Filexxxxxxx/xxxx/predictiveHigh
152Filexxxxxx_xxxxxx_xxxxx_xxxx_xxxx.xxxpredictiveHigh
153Filexxxxxxx.xpredictiveMedium
154Filexxxxxxx/xxxxxxx.xxxpredictiveHigh
155Filexxxxxxxx/xxxxxxxx.xpredictiveHigh
156Filexxxxxxx.xxxpredictiveMedium
157Filexxxxxxxxxxx.xxxxpredictiveHigh
158Filexxx/xxxx/xx_xxxxxxxx.xpredictiveHigh
159Filexxx/xxxx/xxx_xxx.xpredictiveHigh
160Filexxx/xxxxxxx.xpredictiveHigh
161Filexxxxxxxx.xxxpredictiveMedium
162Filexxxx.xx-xxxxxx/xxxxx.xxxpredictiveHigh
163Filexxxxxxx-xxxxxx/xxxx/xxxxx/xxxxxx_xxxxxx.xxxpredictiveHigh
164Filexxxxxxxxxxx/xxxx_xxxx.xpredictiveHigh
165Filexxxxxxxxxxx/xxxx_xxxxxxx_xx_xxx.xpredictiveHigh
166Filexxxxxxxxxxx/xxxx_xxxx.xpredictiveHigh
167Filexxxxxxxxxxxxxxxx/xxxxxxxxxxxpredictiveHigh
168Filexxxxxx.xpredictiveMedium
169Filexxxxxxxx.xxxpredictiveMedium
170Filexxxxxxxxxxx.xxxpredictiveHigh
171Filexxxxxxxxxxx_xxxxxxxxxxxx.xxpredictiveHigh
172Filexxxxx/xxxxx.xxxpredictiveHigh
173Filexxxx.xxxpredictiveMedium
174Filexxxxxxxx.xpredictiveMedium
175Filexxxx.xxxpredictiveMedium
176Filexxxxx-xxxxxx.xpredictiveHigh
177Filexxxxx-xxxxxxx.xpredictiveHigh
178Filexxxxx-xxx.xpredictiveMedium
179Filexxxxx_xxxxxx.xxxpredictiveHigh
180Filexxxxxxx.xxxpredictiveMedium
181Filexxxxxxx.xxx?xx=xxx_xxxxxxxxpredictiveHigh
182Filexxxxxxx.xxxpredictiveMedium
183Filexxx/xxxxxxxx.xpredictiveHigh
184Filexxx/xxxxxxx.xpredictiveHigh
185Filexxx/xxxx.xpredictiveMedium
186Filexxx/xxxx.xpredictiveMedium
187Filexxxxx-x.xx-xxxxxxxxx.xxxpredictiveHigh
188Filexxxx/xxxxxpredictiveMedium
189Filexxx-xxxxxxx.xpredictiveHigh
190Filexx_xxxxxx.xpredictiveMedium
191Filexxxxxxx.xpredictiveMedium
192Filexxxxxxxxxxxxx-xxxxxx/xxx/xxxxxxxx/xx_xxxxxx.xxxpredictiveHigh
193Filexxx/xxxxxxxxxx.xpredictiveHigh
194Filexxxxxxxx-xxxxxx/xxx/xxxxxxxx/xxxx.xxxpredictiveHigh
195Filexxx_xxx.xpredictiveMedium
196Filexxx_xxxxxxx.xpredictiveHigh
197Filexxxxx/xxxxxx/xxxxxxx/xxxx.xxxpredictiveHigh
198Filexxxxx/xxxxxx.xpredictiveHigh
199Filexxxxxxxx/xxxxxx.xpredictiveHigh
200Filexxxxxx/xxxxxx_xxxxxxxxxxx.xxxpredictiveHigh
201Filexxx.xxxpredictiveLow
202Filexxx/xxxxxx/xxxxxx/xxx/xxxxxx.xxxpredictiveHigh
203Filexxxx/xxx/xxx_xxxx.xpredictiveHigh
204Filexxxx.xxxpredictiveMedium
205Filexxxxxxxxxxx-xxxxxx/xxx/xxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
206Filexxxxxxxxxxx-xxxxxx/xxx/xxxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
207Filexxxxxxxxx.xxxxxpredictiveHigh
208Filexxxxxxxxx_xx.xpredictiveHigh
209Filexxxxxxxxxxxxxxxxx.xxx/xxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
210Filexxxxxxx/xxxxxxxxx.xpredictiveHigh
211Filexxx/xxxxx/xxxxxx-xxx.xxx`predictiveHigh
212Filexxx/xxxxx/xxxxx.xxxpredictiveHigh
213Library/xxx/xxxx/xxxxx.x/xx-xxxx-xxxxxxx.xxxxxpredictiveHigh
214Library/xxx/xxx/xxxx/predictiveHigh
215Libraryxxxx/xxx/xxxxxxx/xxxxx.xpredictiveHigh
216Libraryxxxxxxx/xxx/xxxxx_xxxxxxx.xxx.xxxpredictiveHigh
217Libraryxxx/xxxxxx/xxxxxx.xxpredictiveHigh
218Libraryxxx/xxxxxxxxxxxxx/xxxxxxxxxx.xxpredictiveHigh
219Libraryxxxxxxxxxxxxxx.xxpredictiveHigh
220Libraryxxxx-xxx.xxxpredictiveMedium
221Libraryxxxxxxxx.xxxpredictiveMedium
222Libraryxxxxxxxx.xxxpredictiveMedium
223Libraryxx_xxxxxx/xxxxxxxx/xxx/xxxxxx.xxxpredictiveHigh
224Argument$xxxxpredictiveLow
225Argument$xxxx->xxxxx->xxxxxxxxxxxxxx)predictiveHigh
226Argument--xxxxxxpredictiveMedium
227Argument-x/-xpredictiveLow
228Argument-xxxxxxxxxxxxxpredictiveHigh
229ArgumentxxxxxxpredictiveLow
230Argumentxxxxxx_xxxxpredictiveMedium
231ArgumentxxxxxxxxxxpredictiveMedium
232ArgumentxxxxxxxxxxxxpredictiveMedium
233Argumentxxxxxxxxx/xxxxpredictiveHigh
234Argumentx-x/x-x/x-xxxx/x-xxpredictiveHigh
235Argumentx/xxxxpredictiveLow
236ArgumentxxxxxxxxxxxxxpredictiveHigh
237ArgumentxxxpredictiveLow
238Argumentxxxxxx/xxxxpredictiveMedium
239ArgumentxxxpredictiveLow
240Argumentxxxxxxxxxxx_xxxxx_xxxx_xxxxxxxxpredictiveHigh
241ArgumentxxxxxxxpredictiveLow
242Argumentxxxxxx_xxxxxxpredictiveHigh
243ArgumentxxxxxxxxpredictiveMedium
244Argumentxxx_xxxxxxxxxpredictiveHigh
245ArgumentxxxpredictiveLow
246ArgumentxxxxpredictiveLow
247ArgumentxxxxxxxxpredictiveMedium
248Argumentxxxxxx_xxxxpredictiveMedium
249Argumentxxx_xxxxxxxxx_xx_xxxxx_xxxxxxxxpredictiveHigh
250Argumentxxxxxxxxxxxxx/xxxxxxxpredictiveHigh
251ArgumentxxxxpredictiveLow
252Argumentxxxx/xxxxxx/xxxxxx/xxxxpredictiveHigh
253ArgumentxxxxxxxxpredictiveMedium
254ArgumentxxpredictiveLow
255ArgumentxxxxxxxxxpredictiveMedium
256ArgumentxxxxpredictiveLow
257ArgumentxxxxxxpredictiveLow
258Argumentxxxx[]predictiveLow
259Argumentxxxx/xxx_xxxxpredictiveHigh
260ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
261Argumentxx_xxxxxxxxxxxpredictiveHigh
262Argumentxx_xxxxxpredictiveMedium
263ArgumentxxxxpredictiveLow
264Argumentxxxxxxx xxxxpredictiveMedium
265ArgumentxxxxpredictiveLow
266ArgumentxxxxxxxxpredictiveMedium
267ArgumentxxxxxpredictiveLow
268Argumentxxx_xxxxx_xxxxpredictiveHigh
269ArgumentxxxxpredictiveLow
270Argumentxx/xxxxpredictiveLow
271Argumentxx-xxxxx-xxxxxxpredictiveHigh
272ArgumentxxxxpredictiveLow
273ArgumentxxxxxxxxpredictiveMedium
274ArgumentxxxxpredictiveLow
275ArgumentxxxxxxxxxxxxpredictiveMedium
276Argumentxxxx_xxxxxxpredictiveMedium
277ArgumentxxpredictiveLow
278ArgumentxxxxxpredictiveLow
279ArgumentxxxxxpredictiveLow
280ArgumentxxxxxxxpredictiveLow
281Argumentxxxxxxxx_xxxpredictiveMedium
282ArgumentxxxxxxpredictiveLow
283ArgumentxxxxxxxxxpredictiveMedium
284ArgumentxxxxxxpredictiveLow
285Argumentxxxxxx_xxxxpredictiveMedium
286Argumentxxxxxxx_xxxxx/xxx_xxxxpredictiveHigh
287Argumentxxxxxxxxxx/xxxxxx/xxxxxxxx/xxxxxx_xxxxx/xxxxxx_xxxpredictiveHigh
288ArgumentxxxpredictiveLow
289ArgumentxxxxpredictiveLow
290Argumentxxxxxxx/xxxxxxxpredictiveHigh
291ArgumentxxxxpredictiveLow
292ArgumentxxxpredictiveLow
293ArgumentxxxxxpredictiveLow
294ArgumentxxxxxpredictiveLow
295Argumentxxxxxxxx/xxxxpredictiveHigh
296ArgumentxxxpredictiveLow
297Argumentxxxxx_xxxxxpredictiveMedium
298ArgumentxxxpredictiveLow
299ArgumentxxxxpredictiveLow
300ArgumentxxxxxxxxpredictiveMedium
301Argumentxxxxxxxx/xxxxxxxpredictiveHigh
302Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
303Argumentxxx_xxxpredictiveLow
304ArgumentxxxxxpredictiveLow
305ArgumentxxxxpredictiveLow
306ArgumentxxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
307Argumentxxxxxx_xxxxxpredictiveMedium
308Argumentx_xxxpredictiveLow
309Argumentx-xxxxxxxxx-xxxpredictiveHigh
310Argumentx-xxxxx-xxxxxxxpredictiveHigh
311ArgumentxxxxxpredictiveLow
312Argument_xxxxxxxxpredictiveMedium
313Input Value%xxxxx%xxxxx=xx%xxxxxxxxx=xxxxx(x)%xxpredictiveHigh
314Input Value'xx''='predictiveLow
315Input Value..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xx..%xxxxx%xxxxxxxxpredictiveHigh
316Input Valuex xxx xxxxx(x) xxx ('xxx'='xxx'))predictiveHigh
317Input Valuex' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
318Input ValuexxxxpredictiveLow
319Input Valuexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
320Input Value<xxx xxx="xxxx://x"; xx xxxxxxx="$(’x').xxxx(’xxxxxx’)" />predictiveHigh
321Input Value<xxxxxx>xxxxxx.xxxxx(x)</xxxxxx>predictiveHigh
322Input Valuexxxxxxxxxx%xx%xx%xxxxxxxx%xxxxxxx%xx%xxxxxx%xxxxxx%xx%xx%xx%xxxxxxxx%xxxxxxxxxxxxxpredictiveHigh
323Input Valuexxxx\'\";><xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh
324Input Valuexxxx' xxxxx xxx xxxxxx xxxxxx(xxxxxx('xxxxx','xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'),'xxxxx'),xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx,xxxx-- xxxx&xxxxxx=predictiveHigh
325Network Portxxx/xxxxpredictiveMedium
326Network Portxxx/xxxxpredictiveMedium
327Network Portxxx/xxxxxpredictiveMedium

References (19)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!