Detected presence of critical severity vulnerabilities. (x1)

Detected presence of malware-exploited vulnerabilities. (x1)

Detected presence of severe vulnerabilities with active exploitation. (x1)

Detected presence of malicious files through file reputation or third-party scanners. (x1)

Detected presence of malicious files through analyst-vetted file reputation. (x3)

Detected presence of known software supply chain attack artifacts. (x3)

Detected presence of obfuscated software components. (x3)

Detected presence of files containing a Base-encoded URL. (x2)

Detected presence of commonly distributed sensitive data. (x4)