Somalia Unknown Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (630)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en	530
fr	28
es	26
de	22
ar	10

Country

us	480
es	24
gb	22
il	16
vn	14

Actors

DPRK	1
Mirai	1
Cobalt Strike	1
Sliver	1
Meterpreter	1

Activities

Interest

Timeline

Type

Not Defined	172
Content Management System	50
Web Server	28
Programming Language Software	28
Operating System	18

Vendor

Not Defined	212
Microsoft	24
Apache	18
Oracle	16
Cisco	12

Product

WordPress	20
ZoneMinder	18
Apache HTTP Server	12
PHP	10
Microsoft Windows	10

Vulnerabilities

#	Vulnerability	Base	Temp	0day	Today	Exp	Rem	EPSS	CTI	CVE
1	Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure	5.3	5.2	$5k-$25k	Calculating	High	Workaround	0.02016	0.00	CVE-2007-1192
2	DZCP deV!L`z Clanportal config.php code injection	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00943	0.80	CVE-2010-0966
3	LogicBoard CMS away.php redirect	6.3	6.1	$0-$5k	$0-$5k	Not Defined	Unavailable	0.00000	3.51
4	OpenSSH Authentication Username information disclosure	5.3	4.8	$5k-$25k	$0-$5k	High	Official Fix	0.10737	0.20	CVE-2016-6210
5	Microsoft IIS cross site scripting	5.2	4.7	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00548	0.12	CVE-2017-0055
6	Serendipity exit.php privileges management	6.3	6.0	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00000	0.12
7	Ecommerce Online Store Kit shop.php sql injection	9.8	9.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03763	0.05	CVE-2004-0300
8	cPanel WebDisk UAPI authorization	6.3	6.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00070	0.04	CVE-2020-10116
9	SourceCodester Simple Water Refilling Station Management System system_info SystemSettings.php update_settings Privilege Escalation	6.3	5.7	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.03404	0.00	CVE-2021-38841
10	nginx request smuggling	6.9	6.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00241	2.23	CVE-2020-12440
11	vBulletin redirector.php	6.6	6.6	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00106	0.04	CVE-2018-6200
12	OpenBB read.php sql injection	7.3	7.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00248	0.04	CVE-2005-1612
13	Huawei ACXXXX/SXXXX SSH Packet input validation	7.5	7.3	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00246	0.07	CVE-2014-8572
14	Maran PHP Shop prod.php sql injection	7.3	7.3	$0-$5k	$0-$5k	High	Unavailable	0.00137	0.05	CVE-2008-4879
15	WordPress sql injection	8.5	8.4	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00375	0.00	CVE-2017-14723
16	WordPress Installation functions.php is_blog_installed access control	8.0	7.7	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02421	0.04	CVE-2020-28037
17	Telecommunication Software SAMwin Contact Center Suite Credential SAMwinLIBVB.dll getCurrentDBVersion hard-coded credentials	6.5	6.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00133	0.04	CVE-2013-10002
18	WordPress path traversal	7.3	7.0	$5k-$25k	$0-$5k	High	Official Fix	0.00847	0.00	CVE-2008-4769
19	Pligg cloud.php sql injection	6.3	6.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00000	0.48
20	PBSite register.php Local Privilege Escalation	5.3	5.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00000	0.00

IOC - Indicator of Compromise (69)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP address	Hostname	Actor	Identified	Type	Confidence
1	5.62.61.148	r-148-61-62-5.consumer-pool.prcdn.net	Somalia Unknown	01/11/2023	verified	High
2	5.62.63.128	r-128-63-62-5.consumer-pool.prcdn.net	Somalia Unknown	01/11/2023	verified	High
3	41.78.72.0		Somalia Unknown	01/11/2023	verified	High
4	41.79.196.0		Somalia Unknown	01/11/2023	verified	High
5	41.189.228.0		Somalia Unknown	01/11/2023	verified	High
6	41.223.108.0		Somalia Unknown	01/11/2023	verified	High
7	41.223.110.0		Somalia Unknown	03/21/2023	verified	High
8	41.223.111.0		Somalia Unknown	05/26/2023	verified	High
9	45.12.70.207	airless.globalhilive.com	Somalia Unknown	01/11/2023	verified	High
10	45.12.71.207		Somalia Unknown	01/11/2023	verified	High
11	45.42.233.0		Somalia Unknown	01/11/2023	verified	High
12	45.61.45.128		Somalia Unknown	01/11/2023	verified	High
13	57.84.192.0		Somalia Unknown	03/21/2023	verified	High
14	66.96.123.0		Somalia Unknown	01/11/2023	verified	High
15	XX.XX.XX.XXX	xxxxxxxx.xxx.xxxxxx.xxx	Xxxxxxx Xxxxxxx	01/11/2023	verified	High
16	XX.XX.XX.XXX	xxxxxxxx.xxxx.xxxxxx.xxx	Xxxxxxx Xxxxxxx	01/11/2023	verified	High
17	XX.XX.XXX.XX		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
18	XX.XXX.XXX.X	xx-xxx-xxx-x.xx.xxxxxxxxxxx.xxx	Xxxxxxx Xxxxxxx	03/21/2023	verified	High
19	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
20	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
21	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
22	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
23	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
24	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	05/26/2023	verified	High
25	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
26	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
27	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
28	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
29	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	05/26/2023	verified	High
30	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
31	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
32	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	05/26/2023	verified	High
33	XXX.XX.XXX.XX		Xxxxxxx Xxxxxxx	05/26/2023	verified	High
34	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
35	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
36	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
37	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
38	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
39	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
40	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
41	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
42	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
43	XXX.XXX.XXX.X	xxxx-xxx-xxx-x.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxx	Xxxxxxx Xxxxxxx	03/21/2023	verified	High
44	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
45	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
46	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
47	XXX.XX.XX.XXX		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
48	XXX.XX.XXX.XXX		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
49	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
50	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
51	XXX.XX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
52	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
53	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
54	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	05/26/2023	verified	High
55	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
56	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
57	XXX.XXX.XX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
58	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
59	XXX.XXX.XXX.XXX	xxxxxx.xxxxxx.xxx.xxxxxxxx.xxx	Xxxxxxx Xxxxxxx	05/26/2023	verified	High
60	XXX.XXX.XXX.XXX	xxx-xxx-xxx-xxx.xxxxxx.xxxx.xx	Xxxxxxx Xxxxxxx	01/11/2023	verified	High
61	XXX.XXX.XXX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
62	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	03/21/2023	verified	High
63	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
64	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
65	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
66	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
67	XXX.XX.XXX.XX		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
68	XXX.XX.XXX.XX		Xxxxxxx Xxxxxxx	01/11/2023	verified	High
69	XXX.XX.XXX.X		Xxxxxxx Xxxxxxx	05/26/2023	verified	High

TTP - Tactics, Techniques, Procedures (17)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Class	Vulnerabilities	Access Vector	Type	Confidence
1	T1006	CAPEC-126	CWE-21, CWE-22	Path Traversal	predictive	High
2	T1040	CAPEC-102	CWE-294	Authentication Bypass by Capture-replay	predictive	High
3	T1055	CAPEC-10	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	High
4	T1059	CAPEC-137	CWE-88, CWE-94	Argument Injection	predictive	High
5	TXXXX.XXX	CAPEC-209	CWE-XX, CWE-XX	Xxxxx Xxxx Xxxxxxxxx	predictive	High
6	TXXXX	CAPEC-122	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
7	TXXXX.XXX	CAPEC-16	CWE-XXX, CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	High
8	TXXXX	CAPEC-136	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	High
9	TXXXX.XXX	CAPEC-178	CWE-XXX	Xxxx Xxxxxxxx	predictive	High
10	TXXXX	CAPEC-	CWE-XXX	7xx Xxxxxxxx Xxxxxxxx	predictive	High
11	TXXXX	CAPEC-	CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	High
12	TXXXX	CAPEC-108	CWE-XX, CWE-XX, CWE-XX	Xxx Xxxxxxxxx	predictive	High
13	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	High
14	TXXXX	CAPEC-50	CWE-XXX, CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
15	TXXXX	CAPEC-116	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	High
16	TXXXX	CAPEC-	CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	High
17	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	High

IOA - Indicator of Attack (316)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Class	Indicator	Type	Confidence
1	File	/+CSCOE+/logon.html	predictive	High
2	File	/acms/admin/cargo_types/view_cargo_type.php	predictive	High
3	File	/admin/addemployee.php	predictive	High
4	File	/admin/index.php	predictive	High
5	File	/advanced-tools/nova/bin/netwatch	predictive	High
6	File	/apilog.php	predictive	Medium
7	File	/appliance/users?action=edit	predictive	High
8	File	/filemanager/upload.php	predictive	High
9	File	/forum/away.php	predictive	High
10	File	/healthcare/Admin/consulting_detail.php	predictive	High
11	File	/if.cgi	predictive	Low
12	File	/libsystem/login.php	predictive	High
13	File	/mifs/c/i/reg/reg.html	predictive	High
14	File	/modules/profile/index.php	predictive	High
15	File	/news.dtl.php	predictive	High
16	File	/php-jms/deductScores.php	predictive	High
17	File	/php_action/createUser.php	predictive	High
18	File	/see_more_details.php	predictive	High
19	File	/services/details.asp	predictive	High
20	File	/setup	predictive	Low
21	File	/spip.php	predictive	Medium
22	File	/uncpath/	predictive	Medium
23	File	/var/log/nginx	predictive	High
24	File	/VPortal/mgtconsole/Subscriptions.jsp	predictive	High
25	File	/wabt/bin/poc.wasm	predictive	High
26	File	/wp-content/plugins/updraftplus/admin.php	predictive	High
27	File	/zm/index.php	predictive	High
28	File	act.php	predictive	Low
29	File	adclick.php	predictive	Medium
30	File	add_comment.php	predictive	High
31	File	admin	predictive	Low
32	File	admin.php	predictive	Medium
33	File	admin/adminsignin.html	predictive	High
34	File	admin/movieview.php	predictive	High
35	File	admin/versions.html	predictive	High
36	File	agenda.php	predictive	Medium
37	File	ajax_calls.php	predictive	High
38	File	api.php	predictive	Low
39	File	army.php	predictive	Medium
40	File	xxxxxxxxxx.xxx	predictive	High
41	File	xxxx-xxxx.x	predictive	Medium
42	File	xxxxx-xxx.x	predictive	Medium
43	File	xx-xxxxx.xxx	predictive	Medium
44	File	xx_xxxxx.xxx	predictive	Medium
45	File	xx_xxxxxxxxx.xxx	predictive	High
46	File	xx_xxxx_xxxxxx.xxx	predictive	High
47	File	xx_xxxx_xxxxx.xxx	predictive	High
48	File	xxxx.xxx	predictive	Medium
49	File	xxxxx.xxxx	predictive	Medium
50	File	xxxxx.xxx	predictive	Medium
51	File	xx_xxxx.xxx	predictive	Medium
52	File	xxxxxxx/xxxxxxx/xxxxxxx.xxxx?xxxx	predictive	High
53	File	x-xxxxxx/xxxxxxx.x	predictive	High
54	File	xxxxxx/xxxxx/xxxxx.xxx	predictive	High
55	File	xxxxxxxx.xxx	predictive	Medium
56	File	xxxxxxxx_xxxx.xxx	predictive	High
57	File	xxx-xxx/xxxxxxxxxxx/xxxxxxxxx.xxx	predictive	High
58	File	xxx-xxx/xx.xxx	predictive	High
59	File	xxx/xxxxxxx.xx	predictive	High
60	File	xxxxxxx/xxxxxxxxxxxxxx.xxx	predictive	High
61	File	xxxxx.xxx	predictive	Medium
62	File	xxx.xxx?xxx=xxxxx_xxxx	predictive	High
63	File	xxxxxx.xxx	predictive	Medium
64	File	xxxxxxx.xxx	predictive	Medium
65	File	xxxxxxxxxxxxxxxxxxx.xx	predictive	High
66	File	xxxx/xxxxxxxxxxxxxxx.xxx	predictive	High
67	File	xxxxxxx.xxx	predictive	Medium
68	File	xxxxxxxx.xxx	predictive	Medium
69	File	xxxxxxxxxxxxxxxx.xxx	predictive	High
70	File	xxxxxxxxx.xxx	predictive	High
71	File	xxxx_xxxxx.xxx	predictive	High
72	File	xxxx-xxxxx.xxx	predictive	High
73	File	xxxx/	predictive	Low
74	File	xxxxxxx.xxx	predictive	Medium
75	File	xxxxx.xxx	predictive	Medium
76	File	xxxxxxx_xxxx.xxxx.xxx/xxxxxxx_xxxx.xxx	predictive	High
77	File	xxxx.xxx	predictive	Medium
78	File	xxx/xxxx/xxxx.x	predictive	High
79	File	xxx/xxxxxxxx/xxxx_xxxxx_xxxxxxx.x	predictive	High
80	File	xxxxxxxxxxxxxxxxxxxx.xxx	predictive	High
81	File	xxxxxxxxx.xxx	predictive	High
82	File	xxxxxx.xxx	predictive	Medium
83	File	xxxxxxxxxx.xxxxxxx.xx	predictive	High
84	File	xxx_xxxx.x	predictive	Medium
85	File	xx.xxxxx.xxx	predictive	Medium
86	File	xxxx.xxx	predictive	Medium
87	File	xxxx/xxxxxx	predictive	Medium
88	File	xxxxxxxxxx/xxxxxxxxxx/xxxxxxxxx.xxx	predictive	High
89	File	xxxxxxxxxx\xxxxxxxxxxxx\xxxxxxxxxxxxxxxx.xxx	predictive	High
90	File	xxxxxx.xxx	predictive	Medium
91	File	xxxxxxxxxxxxxxx.xxx	predictive	High
92	File	xxx.xxx	predictive	Low
93	File	xxx/xxxxxx.xxx	predictive	High
94	File	xxxxxxx.xxx.xxx	predictive	High
95	File	xxxxxxx/xxxx_xxxxxxxx.xxxxx.xxx	predictive	High
96	File	xxxxxxxx/xxxxxxxxxxxx.xxx.xxx	predictive	High
97	File	xxxxxxxx/xxxxxxxx.xxx	predictive	High
98	File	xxxxx.xxx	predictive	Medium
99	File	xxxxx.xxx?xx=xxxxxxx&xxx=xxx	predictive	High
100	File	xxxxxxxxx/xxxxxxxxx	predictive	High
101	File	xxxxxxx.xxx	predictive	Medium
102	File	xxxxxxxxxx.xxx	predictive	High
103	File	xxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxx	predictive	High
104	File	xxxx_xxxxxx_xxxxx_xxxxxxx.x	predictive	High
105	File	xxxxxxxxxx.xxx	predictive	High
106	File	xxxx_xxxx.xxx	predictive	High
107	File	xxxxxxxxx/xxxxxxx/xxxxx.xxx	predictive	High
108	File	xxxxxx/xxxxx/xxxxxxxx.x	predictive	High
109	File	xxx/xxxx/xxx.x/xxxx_xxxxxx.x	predictive	High
110	File	xxxxx.xxx	predictive	Medium
111	File	xxxxx.xxx	predictive	Medium
112	File	xxxxx_xx.xxxx	predictive	High
113	File	xx.xxx	predictive	Low
114	File	xx/xxxxxxxx.xxx	predictive	High
115	File	xxx_xxxxxxxxxxx.xxx	predictive	High
116	File	xxxx.xxx	predictive	Medium
117	File	xxxxxxxx.xxx	predictive	Medium
118	File	xxxxxxxxxxx.xxx	predictive	High
119	File	xxxxxxxx.xxx	predictive	Medium
120	File	xxx/xxxx/xxxx.x	predictive	High
121	File	xxxxxxx/xx_xxxx.xxx	predictive	High
122	File	xxx/xxxxxx/xxxxxxxx/xxxxx/xxxxxxxxx.xxxx	predictive	High
123	File	xxxxx/xxxxxxxx.xxx.xxx	predictive	High
124	File	xxxxxxxxx.xxx.xxx	predictive	High
125	File	xxxx.xxx	predictive	Medium
126	File	xxxx_xxx.xxx	predictive	Medium
127	File	xxxxxxxx.xxx	predictive	Medium
128	File	xx-xxxx.xxx	predictive	Medium
129	File	xxxx.xxx	predictive	Medium
130	File	xxxxxxxx.xxx	predictive	Medium
131	File	xxxxxxxxxx.xxx	predictive	High
132	File	xxxxxxx_xxxxxxx.xxx	predictive	High
133	File	xxxxxxxx.xxxxxx	predictive	High
134	File	xxxx.xxx	predictive	Medium
135	File	xxxx_xxxx.xxx	predictive	High
136	File	xxxxxxxxxx.xxx	predictive	High
137	File	xxxxxx.xxx	predictive	Medium
138	File	xxxxx.xxx	predictive	Medium
139	File	xxxxx.xxx	predictive	Medium
140	File	xxxxxxxx.xxx	predictive	Medium
141	File	xxxxxxxxxx.xxx	predictive	High
142	File	xxxxxxxx.xxx	predictive	Medium
143	File	xxxxxx_xxxxxxxx_xxxxxx_xxxx.xx	predictive	High
144	File	xxxxxxx.xxx	predictive	Medium
145	File	xxxxxxxxxx.xxxx.xxx	predictive	High
146	File	xxxxxx_xxx_xxxxxx.xxx	predictive	High
147	File	xxxx.xxx	predictive	Medium
148	File	xxxxxxxxxxxxx.xxx	predictive	High
149	File	xxx_xxxxx.xx	predictive	Medium
150	File	xxx/xxx_xxxxx.x	predictive	High
151	File	xxxx.xxx	predictive	Medium
152	File	xxx.xxx	predictive	Low
153	File	xxxxx/xxxxxxx/xxxxxx/xxxx_xxxx_xxxxxx.xxx	predictive	High
154	File	xxxx-xxxxxxxx.xxx	predictive	High
155	File	xxxxx.xxx	predictive	Medium
156	File	xxxxxx.xxx	predictive	Medium
157	File	xxxxxxx.x	predictive	Medium
158	File	xxxx_xxxx.xxx	predictive	High
159	File	xxx_xxx.x	predictive	Medium
160	File	xx-xxxxx/xxxxx-xxxx.xxx	predictive	High
161	File	xx-xxxxx/xxxxx.xxx?xxxx=xx-xxxxxx	predictive	High
162	File	xx-xxxxx/xxxxx.xxx?xxxx=xxxxxxxxxxxx	predictive	High
163	File	xx-xxxxx/xxxxxxxxx.xxx	predictive	High
164	File	xx-xxxxx/xxxxxxx-xxxxxxx.xxx?xxxx=xxxxxxxxxx-x	predictive	High
165	File	xx-xxxxxxxx/xxxxx-xx-xxxxx.xxx	predictive	High
166	File	xx-xxxxxxxx/xxxxx-xx-xxxxxx-xxxxxx.xxx	predictive	High
167	File	xx-xxxxxxxx/xxxxxxxxx.xxx	predictive	High
168	File	xx_xxxx_xxxx_*.xxx	predictive	High
169	File	xx_xxxx_xxxx_xxxxx.xxx	predictive	High
170	File	xx_xxxx_xxxx_xxxxxx.xxx	predictive	High
171	File	~/xx-xxxxx-xxxxxxx.xxx	predictive	High
172	Library	/xxxxx/xxxxxxxxxxxxx.xxx	predictive	High
173	Library	xxxxxxxxx.xxx	predictive	High
174	Library	xxx/xxxxxxxxx.xxx	predictive	High
175	Library	xxx/xxxxxxxxxx.xxx	predictive	High
176	Library	xxx/xxxxxxxx.xx	predictive	High
177	Library	xxxxxxx/xxx/xxxxxxxxxxxx.xxx	predictive	High
178	Library	xxxxxxxxxxx.xxx	predictive	High
179	Library	xxxxx.xxx	predictive	Medium
180	Argument	$_xxxxxx["xxx_xxxx"]	predictive	High
181	Argument	$_xxxxxx['xxxx_xxxx_xxxxx']	predictive	High
182	Argument	$_xxxxxx['xxx_xxxx']	predictive	High
183	Argument	--xxx	predictive	Low
184	Argument	-xxxxxxxxxxxxx	predictive	High
185	Argument	xxxxxx=xxxx	predictive	Medium
186	Argument	xxxxxxxxxx xxx xxxxxxx	predictive	High
187	Argument	xxxxx_xxxxx	predictive	Medium
188	Argument	xxxxxx	predictive	Low
189	Argument	xxxxx	predictive	Low
190	Argument	xxxxxxxx	predictive	Medium
191	Argument	xxxxxxx	predictive	Low
192	Argument	xxxxx	predictive	Low
193	Argument	xxxxxx	predictive	Low
194	Argument	xxxxxxxxxx_xxxx	predictive	High
195	Argument	xxx	predictive	Low
196	Argument	xxxxxxxxxx	predictive	Medium
197	Argument	xxxxxxxxxx	predictive	Medium
198	Argument	xxx_xx	predictive	Low
199	Argument	xxxxxx	predictive	Low
200	Argument	xxx	predictive	Low
201	Argument	xxxxxxxxxxxxxxx	predictive	High
202	Argument	xxxx	predictive	Low
203	Argument	xxxx_xx	predictive	Low
204	Argument	xxxxxxxxxx	predictive	Medium
205	Argument	xxxx_xxxxxxx_xxxxxxxx	predictive	High
206	Argument	xxxxxxxxxxxx/xxxxxxx	predictive	High
207	Argument	xxxxxxxxxx_xx	predictive	High
208	Argument	xxxxxxxxxx	predictive	Medium
209	Argument	xxxxxx	predictive	Low
210	Argument	xxxxxxxxxxxx/xxxxxxxxxxx	predictive	High
211	Argument	xxxxxx_xxxx	predictive	Medium
212	Argument	xxxxx	predictive	Low
213	Argument	xxx	predictive	Low
214	Argument	xxxxxxx	predictive	Low
215	Argument	xxxxxx	predictive	Low
216	Argument	xx_xxxxx_xx	predictive	Medium
217	Argument	xxxx	predictive	Low
218	Argument	xxxxxxxx	predictive	Medium
219	Argument	xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxx	predictive	High
220	Argument	xxxxxx/xxxx	predictive	Medium
221	Argument	xxxxxx[xxxxx][xxxxx][x][xxxx]	predictive	High
222	Argument	xxxxxx	predictive	Low
223	Argument	xxxxxx	predictive	Low
224	Argument	xxxxx_xxxx	predictive	Medium
225	Argument	xxxx	predictive	Low
226	Argument	xxxxxxxxx	predictive	Medium
227	Argument	xx	predictive	Low
228	Argument	xx	predictive	Low
229	Argument	xx_xxxxx	predictive	Medium
230	Argument	xxxxxxx	predictive	Low
231	Argument	xxxxxxx_xxx	predictive	Medium
232	Argument	xxxxxxx_xxxx	predictive	Medium
233	Argument	xxxxxx	predictive	Low
234	Argument	xxxx_xx	predictive	Low
235	Argument	xxxx_xxxxxx_xxxxx/xxxx_xxxxxx_xxxx_xxxxxx	predictive	High
236	Argument	xxxxx	predictive	Low
237	Argument	xxxxxx	predictive	Low
238	Argument	xxxxxx_xx	predictive	Medium
239	Argument	xxxxx_xxxx	predictive	Medium
240	Argument	xxx_xxxx_xxxx	predictive	High
241	Argument	xxxxxxx/xxxxxx_xx	predictive	High
242	Argument	xxxxxxxxxxxxxxxxx	predictive	High
243	Argument	xxxxxxx	predictive	Low
244	Argument	xxxxxxxxx_xxxxxxxx_xxxx	predictive	High
245	Argument	xxxxxxx	predictive	Low
246	Argument	xxxxx	predictive	Low
247	Argument	xxxx_xx	predictive	Low
248	Argument	xxxx_xxxx	predictive	Medium
249	Argument	xx	predictive	Low
250	Argument	xxxxx	predictive	Low
251	Argument	xxxxxxxxxxxxxx	predictive	High
252	Argument	xxxxxx	predictive	Low
253	Argument	xxxxxx	predictive	Low
254	Argument	xxxxxxxx	predictive	Medium
255	Argument	xxxxxxxx	predictive	Medium
256	Argument	xxxx	predictive	Low
257	Argument	xxxxxxxxxxx	predictive	Medium
258	Argument	xxxx_xxxx	predictive	Medium
259	Argument	xxxxxxxxx	predictive	Medium
260	Argument	xxxx_xxxx_xxxx	predictive	High
261	Argument	xxx	predictive	Low
262	Argument	xx_xxxx	predictive	Low
263	Argument	xxxxxxx_xx	predictive	Medium
264	Argument	xxxxxxxx	predictive	Medium
265	Argument	xxxxx	predictive	Low
266	Argument	xxxxxxxxx	predictive	Medium
267	Argument	xx	predictive	Low
268	Argument	xxxxxxxxxx	predictive	Medium
269	Argument	xxxxxx	predictive	Low
270	Argument	xxxxxxxxxx	predictive	Medium
271	Argument	xxx_xxxxx	predictive	Medium
272	Argument	xxxxxxx	predictive	Low
273	Argument	xxxxxxxxxxx	predictive	Medium
274	Argument	xxxxxx_xx	predictive	Medium
275	Argument	xxxxxxx_xx	predictive	Medium
276	Argument	xxx	predictive	Low
277	Argument	xxxxxx	predictive	Low
278	Argument	xxxx	predictive	Low
279	Argument	xxxx_xxxxxx	predictive	Medium
280	Argument	xx	predictive	Low
281	Argument	xxxx	predictive	Low
282	Argument	xxxxxxxx	predictive	Medium
283	Argument	xxxxxxx	predictive	Low
284	Argument	xxxxxxxxxx	predictive	Medium
285	Argument	xxxxx	predictive	Low
286	Argument	xxxx xx	predictive	Low
287	Argument	xxx_xxxx[x][]	predictive	High
288	Argument	xx_xxxxxxx	predictive	Medium
289	Argument	xxx	predictive	Low
290	Argument	xxxxx	predictive	Low
291	Argument	xxxxx/xxxxx	predictive	Medium
292	Argument	xxx	predictive	Low
293	Argument	xxxxxxxx	predictive	Medium
294	Argument	xxxxxxxx	predictive	Medium
295	Argument	xxxxxxxx/xxxxxxxx	predictive	High
296	Argument	xxxxxxxx[x]	predictive	Medium
297	Argument	xxxxxxxx	predictive	Medium
298	Argument	xxxx	predictive	Low
299	Argument	xxxx->xxxxxxx	predictive	High
300	Argument	xxx	predictive	Low
301	Argument	x-xxxxxxxxx-xxx	predictive	High
302	Argument	x-xxxx-xxxxx	predictive	Medium
303	Argument	_xxxxxxx_xxxx	predictive	High
304	Input Value	../	predictive	Low
305	Input Value	xxxxx"][xxxxxx]xxxxx('xxx')[/xxxxxx]	predictive	High
306	Input Value	::$xxxxx_xxxxxxxxxx	predictive	High
307	Input Value	xxxxx	predictive	Low
308	Input Value	xxxx<xxx xxx="" xxxxxxx=xxxxx(x)>	predictive	High
309	Pattern	/xxxxxxxxx/	predictive	Medium
310	Network Port	xxxx	predictive	Low
311	Network Port	xxx/xx (xxxxxx)	predictive	High
312	Network Port	xxx/xx (xxx xxxxxxxx)	predictive	High
313	Network Port	xxx/xxxx (xx-xxx)	predictive	High
314	Network Port	xxx/xxx (xxx)	predictive	High
315	Network Port	xxx/xxx, xxx/xxx, xxx/xxxx, xxx/xxxx	predictive	High
316	Network Port	xxx xxxxxx xxxx	predictive	High

References (4)

The following list contains external sources which discuss the actor and the associated activities:

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!