Imperial Kitten Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en	722
zh	86
jp	78
ru	52
es	14

Country

us	598
cn	154
ru	90
gb	16
yt	8

Actors

Cobalt Strike	27
Imperial Kitten	23
RedLine Stealer	13
TrickBot	12
ISFB	11

Activities

Interest

Timeline

Type

Not Defined	356
Operating System	48
Content Management System	44
WordPress Plugin	26
Programming Language Software	26

Vendor

Not Defined	292
Microsoft	64
Oracle	28
Apache	18
Zoho ManageEngine	14

Product

Microsoft Windows	34
Invision Power Board	12
Microsoft Exchange Server	10
Joomla CMS	10
Apache HTTP Server	10

Vulnerabilities

#	Vulnerability	Base	Temp	0day	Today	Exp	Rem	EPSS	CTI	CVE
1	Yclas form.php cross site scripting	3.5	3.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00078	0.00	CVE-2021-38710
2	nginx request smuggling	6.9	6.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00241	1.47	CVE-2020-12440
3	Esoftpro Online Guestbook Pro ogp_show.php sql injection	7.3	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00108	0.16	CVE-2009-4935
4	OpenSSL bn_wexpand input validation	10.0	9.0	$25k-$100k	$0-$5k	Proof-of-Concept	Official Fix	0.01237	0.04	CVE-2009-3245
5	eSyndicat eSyndicat Directory magic_quotes_gpc cron.php memory corruption	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00696	0.00	CVE-2006-2578
6	eSyndiCat Esyndicat Directory news.php sql injection	7.3	7.3	$0-$5k	$0-$5k	High	Unavailable	0.00603	0.00	CVE-2007-3811
7	eSyndicat Directory Software suggest-listing.php cross site scripting	3.5	3.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00000	0.07
8	Microsoft IIS IP/Domain Restriction access control	6.5	5.7	$25k-$100k	$0-$5k	Unproven	Official Fix	0.00817	0.16	CVE-2014-4078
9	SAP NetWeaver AS JAVA Visual Composer com.sap.visualcomposer.BIKit.default xml external entity reference	7.5	7.5	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00183	0.04	CVE-2017-8913
10	MikroTik RouterOS RADVD out-of-bounds write	7.5	7.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00075	0.03	CVE-2023-32154
11	RoundCube sql injection	6.3	6.0	$0-$5k	$0-$5k	High	Official Fix	0.00596	0.04	CVE-2021-44026
12	MGB OpenSource Guestbook email.php sql injection	7.3	7.3	$0-$5k	$0-$5k	High	Unavailable	0.01302	0.80	CVE-2007-0354
13	Joomla CMS com_easyblog sql injection	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.64
14	DZCP deV!L`z Clanportal config.php code injection	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00943	0.29	CVE-2010-0966
15	Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure	5.3	5.2	$5k-$25k	Calculating	High	Workaround	0.02016	0.00	CVE-2007-1192
16	HPE Aruba ClearPass Policy Manager Web-based Management Interface information disclosure	5.0	4.9	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00043	0.04	CVE-2024-26301
17	Teltonika RUT9XX autologin.cgi os command injection	8.5	8.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00572	0.02	CVE-2018-17532
18	WALLIX Access Manager information disclosure	5.9	5.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00166	0.04	CVE-2023-23592
19	Esoftpro Online Guestbook Pro ogp_show.php cross site scripting	4.3	4.2	$0-$5k	$0-$5k	High	Unavailable	0.00209	0.08	CVE-2009-2441
20	Tiki Admin Password tiki-login.php improper authentication	8.0	7.7	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00936	2.58	CVE-2020-15906

IOC - Indicator of Compromise (47)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP address	Hostname	Actor	Identified	Type	Confidence
1	45.8.146.37	vm1396047.stark-industries.solutions	Imperial Kitten	11/15/2023	verified	High
2	45.32.181.118	45.32.181.118.vultrusercontent.com	Imperial Kitten	11/15/2023	verified	High
3	45.81.226.38	vm4336982.25ssd.had.wf	Imperial Kitten	11/15/2023	verified	High
4	45.93.82.109		Imperial Kitten	11/15/2023	verified	High
5	45.93.93.198		Imperial Kitten	11/15/2023	verified	High
6	45.155.37.105		Imperial Kitten	11/15/2023	verified	High
7	45.155.37.140		Imperial Kitten	11/15/2023	verified	High
8	51.81.165.110	ip110.ip-51-81-165.us	Imperial Kitten	11/15/2023	verified	High
9	64.176.164.117	64.176.164.117.vultrusercontent.com	Imperial Kitten	11/15/2023	verified	High
10	64.176.165.70	64.176.165.70.vultrusercontent.com	Imperial Kitten	11/15/2023	verified	High
11	XX.XXX.XXX.XXX	xx.xxx.xxx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
12	XX.XXX.XXX.XXX	xx.xxx.xxx.xxx.xxxxxxxxxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
13	XX.XXX.XXX.XX	xx.xxx.xxx.xx.xxxxxxxxxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
14	XX.XXX.XXX.XXX	xxxxxxxxx.xxxxx-xxxxxxxxxx.xxxxxxxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
15	XX.XX.XX.XX	xxxxxx.xxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
16	XX.XX.XX.XXX	xxxxxxxxx.xxxxx-xxxxxxxxxx.xxxxxxxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
17	XX.XX.XX.XXX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
18	XX.XXX.XXX.XX	xxxxxxx-xxxxxxx.xxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
19	XX.XXX.XXX.XX	xxxxxxxxx.xxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
20	XX.XXX.XX.XXX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
21	XX.XXX.XXX.XX	xxx.xxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
22	XX.XXX.XX.XXX	xxxxxxx.xxxxxx.xxxxxxx.xxxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
23	XX.XXX.XX.XXX	xxx.xx.xx.xxx.xx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
24	XX.XXX.XX.XXX	xxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
25	XXX.XXX.XX.XXX	xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.xxxx.xxxx.xx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
26	XXX.XXX.XXX.XX	xxx.xxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
27	XXX.XXX.XXX.XXX	xxxxxxxxxxxxxxxx.xxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
28	XXX.XXX.XX.XX	xxxxxxxxxxxxxxxxxxx.xxxxxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
29	XXX.XXX.XXX.XX	xx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
30	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xxxxxxxxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
31	XXX.XXX.X.XX	xxxx.xx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
32	XXX.XXX.XXX.XX	xxxx-xxxx-xxxx.xxxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
33	XXX.XXX.XXX.XXX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
34	XXX.XXX.X.X	xxxx.xxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
35	XXX.XXX.XX.XXX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
36	XXX.XX.XXX.XX	xx.xxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
37	XXX.XX.XX.XXX	xxx.xx.xx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
38	XXX.XXX.XXX.XX	xx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
39	XXX.XXX.XXX.XX	xx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
40	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
41	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
42	XXX.XXX.XXX.XXX	xxx.xxx.xxx.xxx.xx-xxxx.xxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
43	XXX.XX.XX.XX	xxxxxxxxx.xxxxx-xxxxxxxxxx.xxxxxxxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
44	XXX.XX.XX.XXX	xxxxxxxxx.xxxxx-xxxxxxxxxx.xxxxxxxxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High
45	XXX.XX.XX.XX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
46	XXX.XX.XX.XXX		Xxxxxxxx Xxxxxx	11/15/2023	verified	High
47	XXX.XXX.XXX.XXX	xxxx.xxxxxxxx.xxx	Xxxxxxxx Xxxxxx	11/15/2023	verified	High

TTP - Tactics, Techniques, Procedures (24)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Class	Vulnerabilities	Access Vector	Type	Confidence
1	T1006	CAPEC-126	CWE-21, CWE-22, CWE-23	Path Traversal	predictive	High
2	T1040	CAPEC-102	CWE-294	Authentication Bypass by Capture-replay	predictive	High
3	T1055	CAPEC-10	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	High
4	T1059	CAPEC-137	CWE-88, CWE-94, CWE-1321	Argument Injection	predictive	High
5	T1059.007	CAPEC-209	CWE-79, CWE-80	Cross Site Scripting	predictive	High
6	TXXXX	CAPEC-122	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
7	TXXXX	CAPEC-150	CWE-XXX	Xxxx Xxx Xxxxxxxxx Xxxxxxxxxxx Xxxxxxxx	predictive	High
8	TXXXX.XXX	CAPEC-16	CWE-XXX, CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	High
9	TXXXX	CAPEC-136	CWE-XX, CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	High
10	TXXXX.XXX	CAPEC-178	CWE-XXX	Xxxx Xxxxxxxx	predictive	High
11	TXXXX	CAPEC-	CWE-XXX	7xx Xxxxxxxx Xxxxxxxx	predictive	High
12	TXXXX	CAPEC-1	CWE-XXX, CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	High
13	TXXXX	CAPEC-184	CWE-XXX	Xxxxxxxx Xx Xxxx Xxxxxxx Xxxxxxxxx Xxxxx	predictive	High
14	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	High
15	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	predictive	High
16	TXXXX	CAPEC-102	CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
17	TXXXX	CAPEC-38	CWE-XXX	Xxxxxxxxx Xxxxxx Xxxx	predictive	High
18	TXXXX.XXX	CAPEC-	CWE-XXX	Xxxxxxxx Xxxxxx Xxxx	predictive	High
19	TXXXX.XXX	CAPEC-459	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	High
20	TXXXX	CAPEC-116	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	High
21	TXXXX.XXX	CAPEC-	CWE-XX	Xxxxxxxxxxxxx	predictive	High
22	TXXXX	CAPEC-157	CWE-XXX, CWE-XXX, CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	High
23	TXXXX.XXX	CAPEC-	CWE-XXX	Xxx Xxxxxxxxxx Xxxxx	predictive	High
24	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	High

IOA - Indicator of Attack (438)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Class	Indicator	Type	Confidence
1	File	/academy/tutor/filter	predictive	High
2	File	/admin/	predictive	Low
3	File	/app/options.py	predictive	High
4	File	/card_scan.php	predictive	High
5	File	/cgi-bin	predictive	Medium
6	File	/cgi-bin/wlogin.cgi	predictive	High
7	File	/ClickAndBanexDemo/admin/admin_dblayers.asp	predictive	High
8	File	/cwc/login	predictive	Medium
9	File	/debuginfo.htm	predictive	High
10	File	/download	predictive	Medium
11	File	/etc/quagga	predictive	Medium
12	File	/fhconf/umconfig.txt	predictive	High
13	File	/forms/doLogin	predictive	High
14	File	/h/calendar	predictive	Medium
15	File	/inc/extensions.php	predictive	High
16	File	/include/chart_generator.php	predictive	High
17	File	/includes/login.php	predictive	High
18	File	/index.php	predictive	Medium
19	File	/members/view_member.php	predictive	High
20	File	/mhds/clinic/view_details.php	predictive	High
21	File	/nova/bin/console	predictive	High
22	File	/nova/bin/detnet	predictive	High
23	File	/oauth/idp/.well-known/openid-configuration	predictive	High
24	File	/out.php	predictive	Medium
25	File	/owa/auth/logon.aspx	predictive	High
26	File	/product_list.php	predictive	High
27	File	/req_password_user.php	predictive	High
28	File	/rest/api/latest/projectvalidate/key	predictive	High
29	File	/rom-0	predictive	Low
30	File	/secure/QueryComponent!Default.jspa	predictive	High
31	File	/ServletAPI/accounts/login	predictive	High
32	File	/SSOPOST/metaAlias/%realm%/idpv2	predictive	High
33	File	/sysmanage/changelogo.php	predictive	High
34	File	/tmp/.uci/network	predictive	High
35	File	/uncpath/	predictive	Medium
36	File	/upload	predictive	Low
37	File	/usr/bin/pkexec	predictive	High
38	File	/usr/local/WowzaStreamingEngine/bin/	predictive	High
39	File	/usr/syno/etc/mount.conf	predictive	High
40	File	/vdesk	predictive	Low
41	File	/WEB-INF/web.xml	predictive	High
42	File	/wp-content/plugins/woocommerce/templates/emails/plain/	predictive	High
43	File	/wp-json	predictive	Medium
44	File	aboutus.php	predictive	Medium
45	File	achat/produit_details.php	predictive	High
46	File	adclick.php	predictive	Medium
47	File	add_to_cart.php	predictive	High
48	File	adm.cgi	predictive	Low
49	File	admin.jcomments.php	predictive	High
50	File	admin/index.php	predictive	High
51	File	admin/modules/tools/ip_history_logs.php	predictive	High
52	File	admin/specials.php	predictive	High
53	File	announce.php	predictive	Medium
54	File	App/Ajax/ajax.php?action=mobile_upload_save	predictive	High
55	File	articles.php	predictive	Medium
56	File	auth-gss2.c	predictive	Medium
57	File	xxxx.xxx	predictive	Medium
58	File	xxxx/xxxx.xxxx	predictive	High
59	File	xxxxxx.xxx	predictive	Medium
60	File	xxxxxxxxx.xxx	predictive	High
61	File	xxxxxxx.xx	predictive	Medium
62	File	xxxxxx/xxxxxx.xxx	predictive	High
63	File	xxxxxxxx.xxx	predictive	Medium
64	File	xxxx_xx_xxxx.xxx	predictive	High
65	File	xxxxxx.xxx	predictive	Medium
66	File	xxx/xxx.xxx	predictive	Medium
67	File	xxxxx.xxx	predictive	Medium
68	File	xxxxxx.xxxxxx.xxx	predictive	High
69	File	xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx	predictive	High
70	File	xxx.xxx	predictive	Low
71	File	x:\xxxxx\<xxxxxxxx>\xxxxxxx\xxxxxxxxxxx	predictive	High
72	File	xxxx.xxx	predictive	Medium
73	File	xxxxxxx.xxx	predictive	Medium
74	File	xxxxxxx.xxx	predictive	Medium
75	File	xxxxxxxxxx.xxx	predictive	High
76	File	xxxxxxxx.xxx	predictive	Medium
77	File	xxx-xxxxxxx.xxxx	predictive	High
78	File	xxx-xxx/xxxx-xxx	predictive	High
79	File	xxx-xxx/xxxxxx?xxx=_xxxx	predictive	High
80	File	xxxxx.xxx	predictive	Medium
81	File	xxx.xxx?xxxxxx=xxxxxxxxxxxxx&xxx=xx	predictive	High
82	File	xxxxxxx.xxx	predictive	Medium
83	File	xxxxxxx.xxx	predictive	Medium
84	File	xxxxxxxx/xxxxxxxxxx.xxx	predictive	High
85	File	xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxx/xxxxxxxx/xxx/xxxxxx.xxxxxxxxx.xxx	predictive	High
86	File	xxxx.xxx	predictive	Medium
87	File	xxxxxx/xx/xx_xxxxx.x	predictive	High
88	File	xxxxxx/xxxxxxx/xxx_xxx.x	predictive	High
89	File	xxxxxx.xxx	predictive	Medium
90	File	x_xxxxxx	predictive	Medium
91	File	xxxx/xxxxxxxxxxxxxxx.xxx	predictive	High
92	File	xx.xxxxx.xxx.xxx	predictive	High
93	File	xxxxxxx.xxx	predictive	Medium
94	File	xxxxxx.xxx	predictive	Medium
95	File	xxxxxxx.xxx	predictive	Medium
96	File	xxxxxxx.xxx	predictive	Medium
97	File	xxxxxxx.xx	predictive	Medium
98	File	xxxx_xxxxxxx.xxx	predictive	High
99	File	xxxxx.xxx	predictive	Medium
100	File	xxxxxxxxx.xxx	predictive	High
101	File	xxxxxxxx.xxx	predictive	Medium
102	File	xxxxxxxxx/xxxxxxxxx.xxx	predictive	High
103	File	x/xxxxxx/xxxxxxxx.xxx	predictive	High
104	File	xxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxx.xxx	predictive	High
105	File	xxxxx.xxx	predictive	Medium
106	File	xxxxx/xxxxxxxx.xxx	predictive	High
107	File	xxxxxxxxxxxx.xxx	predictive	High
108	File	xxxxxx.xxx	predictive	Medium
109	File	xxx/xxxx/xxxx.x	predictive	High
110	File	xxx.xxx	predictive	Low
111	File	xxxx.xxx	predictive	Medium
112	File	xxxxx.xxx	predictive	Medium
113	File	xxxxxxxxxxx/xxxxxxxx/xxxxxxxxxx.xxx	predictive	High
114	File	xx/xx_xxxxx.x	predictive	High
115	File	xxxxxxx.xxx	predictive	Medium
116	File	xxxxxxxxxx.xxx	predictive	High
117	File	xxxxxxxxxx.xx	predictive	High
118	File	xxxxxxxx/xxxx_xxxx	predictive	High
119	File	xxxx_xxxxxxx.xxx.xxx	predictive	High
120	File	xxxxxxxx-xxx/xxxxxx/xxxxxxxx/xxxxxxxx/xxxxx.xx	predictive	High
121	File	xxxxxxxxxxxx.xxx	predictive	High
122	File	xxxxx.xxx	predictive	Medium
123	File	xxx/xxxxxx.xxx	predictive	High
124	File	xxxxxxxx/xxxxx-xx-xxxxxxxxx.xxx	predictive	High
125	File	xxxxxxxx/xxxxxxx/xxxxx-xxx.xxx	predictive	High
126	File	xxxxx.xxx	predictive	Medium
127	File	xxxxx.xxx	predictive	Medium
128	File	xxxxxxxx.xxxx	predictive	High
129	File	xxxxxxx/xxxx/xxxx.xxx	predictive	High
130	File	xxxxxxxx/xx/xxxx.xx	predictive	High
131	File	xxx/xxxxxxx/xxx/xxxxxx/xxxxxxx/xxx.xxx.xxxxxxxxxxxxxx.xxxxx.xxxxxxx	predictive	High
132	File	xxxx.xxx	predictive	Medium
133	File	xxxx.xxx	predictive	Medium
134	File	xxxxxxxxxx.xxx	predictive	High
135	File	xxxxx.xxx	predictive	Medium
136	File	xxx/xxxxx/xxxxxxx/xxxxxxxxxxxx.xxx	predictive	High
137	File	xxxxxxx/xxxxx/xx/xxxxxx/xxxxx.xxxxx.xxx	predictive	High
138	File	xxxxxxxxxxxxx.xxx	predictive	High
139	File	xxxxxxx.xxxx.xxx	predictive	High
140	File	xxxx.xxx	predictive	Medium
141	File	xxxxxxxx.xxx	predictive	Medium
142	File	xxxx.xxx	predictive	Medium
143	File	xxxxxx.xxx	predictive	Medium
144	File	xxxx.xxx	predictive	Medium
145	File	xxx_xxxxxxxx.xxx	predictive	High
146	File	xxxxxxx/xxxx_xxx_xxxxx.xxx	predictive	High
147	File	xxxxx.xxx	predictive	Medium
148	File	xxxxxxx/xx?xxxxxxxx=	predictive	High
149	File	xxx/xxxxx	predictive	Medium
150	File	xxxx.xxx	predictive	Medium
151	File	xxxxxxxx.xxx	predictive	Medium
152	File	xxxx_xxxxxx.xxx	predictive	High
153	File	xxxx_xxxx.xxx	predictive	High
154	File	xxx_xxxxx.xxx	predictive	High
155	File	xxxxxxxxxx.xxx	predictive	High
156	File	xxx_xxxx.xxx	predictive	Medium
157	File	xxxxxxxxxxx-xxxx.xx	predictive	High
158	File	xxxxx/xxxx_xx.x	predictive	High
159	File	xxxx.xxx	predictive	Medium
160	File	xxxxx.xxx	predictive	Medium
161	File	xxxxx/_xxxxx.xx	predictive	High
162	File	xxxx.xxx	predictive	Medium
163	File	xxxxxxxxxxxx.xxx	predictive	High
164	File	xxx_xxx.x	predictive	Medium
165	File	xxxxx.xxx	predictive	Medium
166	File	xxxxxxxxx.xxx	predictive	High
167	File	xxxxxxxxxxx.xxx	predictive	High
168	File	xxxx.xxx	predictive	Medium
169	File	xxxxxxx-xxxxxxxx.xxx	predictive	High
170	File	xxxxxxx.xxx	predictive	Medium
171	File	xxxxxxx.xxxx	predictive	Medium
172	File	xxxxxxx.xxx	predictive	Medium
173	File	xxxxxxxxxxxxx.xxx	predictive	High
174	File	xxxxxxxxxxxxx.xxx	predictive	High
175	File	xxxxxxxx.xxx	predictive	Medium
176	File	xxxxxxx_xxxx.xxx	predictive	High
177	File	xxxxxxx_xxxxxx.xxx	predictive	High
178	File	xxxxxxx_xxxx.xxx	predictive	High
179	File	xxxxxxx_xxxx.xxx	predictive	High
180	File	xxxxxxx.xxx	predictive	Medium
181	File	xxxxx_xxxx.x	predictive	Medium
182	File	xxxxxx/?x=xxxxx/\xxxxx\xxx/xxxxxxxxxxxxxx&xxxxxxxx=xxxx_xxxx_xxxx_xxxxx&xxxx[x]=xxxxxx&xxxx[x][]	predictive	High
183	File	xxxxxx/xxxxxx.xxx	predictive	High
184	File	xxxxx_xxxxx.xxx	predictive	High
185	File	xxxxx_xxxxxx_xxx.xxx	predictive	High
186	File	xxxxx_xxxxxx_xxxxxxxx.xxx	predictive	High
187	File	xxxx.xxx	predictive	Medium
188	File	xxxxxxxx.xxx	predictive	Medium
189	File	xxxxxxxxxx.xxx	predictive	High
190	File	xxxxxxxx.xxx	predictive	Medium
191	File	xxxxxxxxxxxxxxxxxxx.xxxx	predictive	High
192	File	xxxxxxxxxxxxxxxxxxx!xxxxxxx.xxxx	predictive	High
193	File	xxxxxx-xxxxxxx-xxxxx.xxx	predictive	High
194	File	xxxxxx.xxx	predictive	Medium
195	File	xxxxxx_xxxxxx.xxx	predictive	High
196	File	xxxx_xxxxxx.xxx	predictive	High
197	File	xxxx-xxx/xxxxxxxx.xxx?xxxx=xxxxxxxx_xxxx_xxxxx.xxx	predictive	High
198	File	xxxx-xxx/xxxxxxxx.xxx?xxxx=xxx_xxxxxxxx.xxx	predictive	High
199	File	xxxxxxxxx/xx/xx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx	predictive	High
200	File	xxx/xxxxxxxxxx.xxx	predictive	High
201	File	xxxx-xxxxxxx.x	predictive	High
202	File	xxxxxx.xxx	predictive	Medium
203	File	xxxxxxxxxxxxx.xxx	predictive	High
204	File	xxxxxxxxx.xxx	predictive	High
205	File	xxxxxxx.xxx	predictive	Medium
206	File	xxxx_xxxxxx_xxxxxx.xxx	predictive	High
207	File	xxxxxx.xxx	predictive	Medium
208	File	xxxxxxxxx/xxxxxxxx.xxx	predictive	High
209	File	xxxx.xxx	predictive	Medium
210	File	xxxxxxxx.xxx	predictive	Medium
211	File	xxxxxx.xxx	predictive	Medium
212	File	xxxxxxxx.xxx	predictive	Medium
213	File	xxxxxxx-xxxxxxx.xxx	predictive	High
214	File	xxx-xxxx.x	predictive	Medium
215	File	xxxxxx_xxx.xxx	predictive	High
216	File	xxx_xxxxxx_xxxxxxxxx.xxx	predictive	High
217	File	xxxx-xxxxx.xxx	predictive	High
218	File	xxxx-xxxxxxxx.xxx	predictive	High
219	File	xxx.x	predictive	Low
220	File	xxxxxx.xxx	predictive	Medium
221	File	xxxxxxx.xxx/xxxxxxx.xxxxxxxxxxxx/xxxxxxx/xxxxxxxxx/xxxxxxxxx.xxxx.xx	predictive	High
222	File	xxxxxx.xxx	predictive	Medium
223	File	xxxx-xxxxx.xxx	predictive	High
224	File	xxxxxxxx/xxxxxxxx	predictive	High
225	File	xxxxx.xxx	predictive	Medium
226	File	xxxx_xxxxxxx.xxx	predictive	High
227	File	xxxx/xxx/xxxx-xxxxx.xxx	predictive	High
228	File	xxxxxxxxx.x	predictive	Medium
229	File	xxxx.xxxx.xxx	predictive	High
230	File	xxxx.xxx	predictive	Medium
231	File	xxxx/xxxxxxxxxxxx.xxx	predictive	High
232	File	xxxxxxx.xxx	predictive	Medium
233	File	xxxxxxxxx.xxx	predictive	High
234	File	xxxx_xxxxx.xxx	predictive	High
235	File	xxxx_xxxx.xxx	predictive	High
236	File	xxxx_xxxxxxx.xxx	predictive	High
237	File	xxxxxxxx.xxx	predictive	Medium
238	File	xxxxxxxxx/xxxxxxxxxx/xxx.xxx/xxx~xx~xx~xxxxxxx~xxxxxxx~xx	predictive	High
239	File	xxxxxx/xxx.xxx	predictive	High
240	File	xxxxxx.xxx	predictive	Medium
241	File	xx-xxxxx/xxxxx-xxxx.xxx	predictive	High
242	File	xx-xxxxx/xxxxxxx-xxxxxxx.xxx?xxxx=xxxxxxx_xxxxxx_xxxxxx	predictive	High
243	File	xx-xxxxx-xxxxxx.xxx	predictive	High
244	File	xx-xxxxxxx/xxxxxxx/xxxx-xxx/xxxxxx/xxxxx.xxx	predictive	High
245	File	xx-xxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxxxxxxxx.xxx	predictive	High
246	File	xx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxx	predictive	High
247	File	xx-xxxx/xxx/xx/xxxxxxx/	predictive	High
248	Library	/_xxx_xxx/xxxxx.xxx	predictive	High
249	Library	xxxxxxxxxxx.xxx	predictive	High
250	Library	xxxxxxxxxxxxxxxxxxxx.xxx	predictive	High
251	Library	xxxxx.xxx	predictive	Medium
252	Library	xxx/xxxxxx.x	predictive	Medium
253	Library	xxx/xxxxx_xxxxxx.xxx	predictive	High
254	Library	xxx/xxxx_xxxxxx/xxxxx.xx	predictive	High
255	Library	xxxx	predictive	Low
256	Library	xxxxxx/xxxxx/xxxxx.xxx	predictive	High
257	Library	xxxxxxxxxxx/xxxxxxxxxxx.xxx	predictive	High
258	Library	xxx/xxx/xxxx/	predictive	High
259	Argument	xx/xx	predictive	Low
260	Argument	xx_xx	predictive	Low
261	Argument	xxxxxx	predictive	Low
262	Argument	xxxxxxx	predictive	Low
263	Argument	xxxxx	predictive	Low
264	Argument	xxx_xx_xxxx	predictive	Medium
265	Argument	xxxxxx	predictive	Low
266	Argument	xxxxxxxx	predictive	Medium
267	Argument	xxxxxx	predictive	Low
268	Argument	xxxxx_xxxx	predictive	Medium
269	Argument	xxxxxxxxxxxx	predictive	Medium
270	Argument	xxx	predictive	Low
271	Argument	xxxxxxxx	predictive	Medium
272	Argument	xxxxxxxx	predictive	Medium
273	Argument	xxxxxxxxxx	predictive	Medium
274	Argument	xxxxxxxxxx	predictive	Medium
275	Argument	xxxxxxxx_xx	predictive	Medium
276	Argument	xxxxxxxx_xx	predictive	Medium
277	Argument	xxxxx	predictive	Low
278	Argument	xxx_xx	predictive	Low
279	Argument	xxx	predictive	Low
280	Argument	xxxxxxx	predictive	Low
281	Argument	xxx	predictive	Low
282	Argument	xxxxxxxxx	predictive	Medium
283	Argument	xxxxxx	predictive	Low
284	Argument	xxxxxx_xxxx_xxxx	predictive	High
285	Argument	xxxxxxx	predictive	Low
286	Argument	xxxxxxxxxxxxxxxx	predictive	High
287	Argument	xxxx	predictive	Low
288	Argument	xxxx_xxxxxx=xxxx	predictive	High
289	Argument	xxxxxxx	predictive	Low
290	Argument	xxxx_xxxxxx_xxxxxxxxx	predictive	High
291	Argument	xxxxxxxx	predictive	Medium
292	Argument	xxx_xxxx_xxxxxxxx	predictive	High
293	Argument	xxxxx	predictive	Low
294	Argument	xxxxxxxx xx	predictive	Medium
295	Argument	xxxxx	predictive	Low
296	Argument	xxxxxxxxxxx	predictive	Medium
297	Argument	xxx	predictive	Low
298	Argument	x/x/xxx	predictive	Low
299	Argument	xxx	predictive	Low
300	Argument	xxxxxx	predictive	Low
301	Argument	xxxx	predictive	Low
302	Argument	xxxxxxxx	predictive	Medium
303	Argument	xxxx_xxxxxx	predictive	Medium
304	Argument	xxxxx	predictive	Low
305	Argument	xx_xx	predictive	Low
306	Argument	xxxxxxxxx/xxxxxx	predictive	High
307	Argument	xxxx	predictive	Low
308	Argument	xxxx	predictive	Low
309	Argument	xxx	predictive	Low
310	Argument	xxxx	predictive	Low
311	Argument	xx	predictive	Low
312	Argument	xx	predictive	Low
313	Argument	xx_xxxxxxxxxxxxxxx	predictive	High
314	Argument	xxxxxxx	predictive	Low
315	Argument	xxx_xxx	predictive	Low
316	Argument	xxxxxx	predictive	Low
317	Argument	xxxxxxxxxxxx	predictive	Medium
318	Argument	xxxxxx	predictive	Low
319	Argument	xxxxxxxxxxxxxx.xxxxxxxxxxxxx	predictive	High
320	Argument	xxxx	predictive	Low
321	Argument	xxxxxx	predictive	Low
322	Argument	xxxxxx	predictive	Low
323	Argument	xxxxxxxxx	predictive	Medium
324	Argument	xxx	predictive	Low
325	Argument	xxxxxx/xxxxx	predictive	Medium
326	Argument	xxxx/xxxxxx_xxxx	predictive	High
327	Argument	xxxx/xxx_xxxxxxxxx	predictive	High
328	Argument	xxxxxx/xx	predictive	Medium
329	Argument	xxxxxxxx	predictive	Medium
330	Argument	xxxx	predictive	Low
331	Argument	xxxx	predictive	Low
332	Argument	xxx	predictive	Low
333	Argument	xxx	predictive	Low
334	Argument	xxxxxxxxxxxxxxxxx	predictive	High
335	Argument	xxxxxxxxx_xxxxxxxx_xxxx	predictive	High
336	Argument	xxxx	predictive	Low
337	Argument	xxxx	predictive	Low
338	Argument	xxxx_xx	predictive	Low
339	Argument	xxx	predictive	Low
340	Argument	xxxxxxx	predictive	Low
341	Argument	xxxx_xxx	predictive	Medium
342	Argument	xxxx	predictive	Low
343	Argument	xxxxxx	predictive	Low
344	Argument	xxxxxx	predictive	Low
345	Argument	xxxx_xx	predictive	Low
346	Argument	xxxxxxxx	predictive	Medium
347	Argument	xxxxxxxx	predictive	Medium
348	Argument	xxxx	predictive	Low
349	Argument	xxxxxxxx	predictive	Medium
350	Argument	xxxx_xxxxxx	predictive	Medium
351	Argument	xxxx_xx_xxxxxx	predictive	High
352	Argument	xxx	predictive	Low
353	Argument	xxxxxxx	predictive	Low
354	Argument	xxxx_xx	predictive	Low
355	Argument	xxxxx_xxx/xxxxx_xxx	predictive	High
356	Argument	xxxxxx	predictive	Low
357	Argument	xxxxxx	predictive	Low
358	Argument	xxxxxx	predictive	Low
359	Argument	xxxxxxx	predictive	Low
360	Argument	xxxxxxx_xx	predictive	Medium
361	Argument	xxxx_xx	predictive	Low
362	Argument	xxx_xx	predictive	Low
363	Argument	xxxxx	predictive	Low
364	Argument	xxx.xx.xxx_xxx	predictive	High
365	Argument	xxxxxxxx	predictive	Medium
366	Argument	xxxxxxx	predictive	Low
367	Argument	xxxxxx_xxxx	predictive	Medium
368	Argument	xxxxxxxxxx	predictive	Medium
369	Argument	xxxxx-xxx	predictive	Medium
370	Argument	xxxxxx	predictive	Low
371	Argument	xxxx	predictive	Low
372	Argument	xxxxxxxxxxx	predictive	Medium
373	Argument	xxxxxx	predictive	Low
374	Argument	xxxxxx/xxxxxx_xxxxxx	predictive	High
375	Argument	xxxxxx_xxxxxxxx_xx	predictive	High
376	Argument	xxxxxx_xxxxxx	predictive	High
377	Argument	xxxxxx	predictive	Low
378	Argument	xxxxxx	predictive	Low
379	Argument	xxxxxxx_xx	predictive	Medium
380	Argument	xxxxxxxx_xx	predictive	Medium
381	Argument	xxxx_xxxx	predictive	Medium
382	Argument	xxxxxxxxxx.xxxxxxxxxxx	predictive	High
383	Argument	xx	predictive	Low
384	Argument	xxxxxxxxx	predictive	Medium
385	Argument	xx	predictive	Low
386	Argument	xxxxx	predictive	Low
387	Argument	xxxxxxxxxx_xxxx	predictive	High
388	Argument	xxxx	predictive	Low
389	Argument	xxxxxxxxx	predictive	Medium
390	Argument	xxx_xxxxxxxx_xx	predictive	High
391	Argument	xxxxxxxxxxxx	predictive	Medium
392	Argument	xxxxxxx	predictive	Low
393	Argument	xxx	predictive	Low
394	Argument	xxxxx	predictive	Low
395	Argument	xxx	predictive	Low
396	Argument	xxxxxxxxx	predictive	Medium
397	Argument	xxxxx	predictive	Low
398	Argument	xxxxx_xxxx	predictive	Medium
399	Argument	xxxxx_xx	predictive	Medium
400	Argument	xxx	predictive	Low
401	Argument	xxxxxxxxxx/xxxxxxxxxxxxxxx	predictive	High
402	Argument	xxxxxxxxxxx/xxxxxx/xxxxxxxxxx/xxxxxxxx	predictive	High
403	Argument	xxxxxxxxx	predictive	Medium
404	Argument	xxx	predictive	Low
405	Argument	xxxxxx	predictive	Low
406	Argument	xxxxxx_xxxxx	predictive	Medium
407	Argument	xxx	predictive	Low
408	Argument	xxx	predictive	Low
409	Argument	xxxxxxxxx	predictive	Medium
410	Argument	xxxxxxxxxxx.xxxxxxxx	predictive	High
411	Argument	xxxxxxxx	predictive	Medium
412	Argument	xxxx_xx	predictive	Low
413	Argument	xxxx_xxxx	predictive	Medium
414	Argument	xxxxx	predictive	Low
415	Argument	xxxx	predictive	Low
416	Argument	xxxxxxx	predictive	Low
417	Argument	xxxx	predictive	Low
418	Argument	xxxx	predictive	Low
419	Argument	x-xxxxxxxxx-xxxxxx	predictive	High
420	Argument	x-xxxxxx-xxxxxx	predictive	High
421	Argument	xxxx	predictive	Low
422	Argument	\xxx\	predictive	Low
423	Argument	\xxxxxx\	predictive	Medium
424	Argument	_xxxxx	predictive	Low
425	Argument	_xxxxxxx	predictive	Medium
426	Input Value	.%xx.../.%xx.../	predictive	High
427	Input Value	../	predictive	Low
428	Input Value	//xxxxxxx.xxx	predictive	High
429	Input Value	x" xxxxxxxxxxx=xxxxxx(xxxxxx) xxx="	predictive	High
430	Input Value	x+xxxxx+xxxxxx+x,x,xxxxxxxxx,x,x,x,x,x,x,xx,xx,xx,xx,xx,xx+xxxx+xxxx+xxxxx+xx=xx#	predictive	High
431	Input Value	xxxxx' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx) xxx 'xxxx'='xxxx&xxxxxxxx=xxxxxxxxxx	predictive	High
432	Input Value	xxxxxx%xx+xx+%xxx%xx+%xx+%xxx%xx+--+-	predictive	High
433	Pattern	() {	predictive	Low
434	Pattern	\|xx\|xxx\|xx xx xx xx\|	predictive	High
435	Network Port	xxxxx	predictive	Low
436	Network Port	xxx/xxx	predictive	Low
437	Network Port	xxx/xxxx (xxx)	predictive	High
438	Network Port	xxx xxxxxx xxxx	predictive	High

References (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!