IcedID Analysis
IOB - Indicator of Behavior (1000)
Timeline
The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.
Activities
Interest
Timeline
The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.
Vulnerabilities
These are the vulnerabilities that we have identified as researched, approached, or attacked.
Campaigns (3)
These are the campaigns that can be associated with the actor:
IOC - Indicator of Compromise (1961)
These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.
TTP - Tactics, Techniques, Procedures (22)
Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.
IOA - Indicator of Attack (524)
These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.
| ID | Class | Indicator | Type | Confidence |
|---|---|---|---|---|
| 1 | File | -X/path/to/wwwroot/file.php. | predictive | High |
| 2 | File | /add-subadmin.php | predictive | High |
| 3 | File | /add_deductions.php | predictive | High |
| 4 | File | /admin-cp/media | predictive | High |
| 5 | File | /admin/?page=return/view_return | predictive | High |
| 6 | File | /admin/add-subadmin.php | predictive | High |
| 7 | File | /admin/add_cars.php | predictive | High |
| 8 | File | /admin/admin_index.php | predictive | High |
| 9 | File | /admin/all-applications.php | predictive | High |
| 10 | File | /admin/assets/plugins/DataTables/media/unit_testing/templates/empty_table.php | predictive | High |
| 11 | File | /admin/bookList?page=1&limit=10 | predictive | High |
| 12 | File | /admin/bwdates-report-details.php | predictive | High |
| 13 | File | /admin/bwdates-request-report-details.php | predictive | High |
| 14 | File | /admin/category/add.do | predictive | High |
| 15 | File | /admin/changeimage.php | predictive | High |
| 16 | File | /admin/chatroom.php | predictive | High |
| 17 | File | /admin/create_product.php | predictive | High |
| 18 | File | /admin/delete-doctor.php | predictive | High |
| 19 | File | /admin/edit-admin.php | predictive | High |
| 20 | File | /admin/edit-guard-detail.php | predictive | High |
| 21 | File | /admin/edit-products.php | predictive | High |
| 22 | File | /admin/enrollment-details.php | predictive | High |
| 23 | File | /admin/forms/option_lists/edit.php | predictive | High |
| 24 | File | /admin/getallarticleinfo | predictive | High |
| 25 | File | /Admin/Http/Controllers/FileManagerController.php | predictive | High |
| 26 | File | /admin/index.php | predictive | High |
| 27 | File | /admin/index2.html | predictive | High |
| 28 | File | /Admin/login.php | predictive | High |
| 29 | File | /admin/normal-search.php | predictive | High |
| 30 | File | /admin/salary_slip.php | predictive | High |
| 31 | File | /admin/template/update | predictive | High |
| 32 | File | /admin/user-search.php | predictive | High |
| 33 | File | /adminPage/main/upload | predictive | High |
| 34 | File | /adminpanel/admin/query/addCourseExe.php | predictive | High |
| 35 | File | /adpweb/a/base/barcodeDetail/ | predictive | High |
| 36 | File | /ajax.php?action=save_package | predictive | High |
| 37 | File | /api/docs/index.php | predictive | High |
| 38 | File | /api/mjkj-chat/chat/ai/delete/chat | predictive | High |
| 39 | File | /api/sys/set_passwd | predictive | High |
| 40 | File | /Api/TinyMce/UploadAjaxAPI.ashx | predictive | High |
| 41 | File | /api/wizard/setsyncpppoecfg | predictive | High |
| 42 | File | /app/controller/Api.php | predictive | High |
| 43 | File | /auth.asp | predictive | Medium |
| 44 | File | /auth/register | predictive | High |
| 45 | File | /auth_files/photo/ | predictive | High |
| 46 | File | /backend/register.php | predictive | High |
| 47 | File | /bic/ssoService/v1/applyCT | predictive | High |
| 48 | File | /bin/httpd | predictive | Medium |
| 49 | File | /boafrm/formFilter | predictive | High |
| 50 | File | /boafrm/formSaveConfig | predictive | High |
| 51 | File | /boafrm/formWlSiteSurvey | predictive | High |
| 52 | File | /BRS_top.html | predictive | High |
| 53 | File | /cashconfirm.php | predictive | High |
| 54 | File | /catalog/compare | predictive | High |
| 55 | File | /cgi-bin/Config.cgi?action=set | predictive | High |
| 56 | File | /cgi-bin/cstecgi.cgi | predictive | High |
| 57 | File | /cgi-bin/editBookmark | predictive | High |
| 58 | File | /cgi-bin/ExportIbmsConfig.sh | predictive | High |
| 59 | File | /cgi-bin/hd_config.cgi | predictive | High |
| 60 | File | /cgi-bin/login.cgi | predictive | High |
| 61 | File | /cgi-bin/mainfunction.cgi | predictive | High |
| 62 | File | /cgi-bin/mainfunction.cgi/apmcfgupload | predictive | High |
| 63 | File | /cgi-bin/nas_sharing.cgi | predictive | High |
| 64 | File | /change-password.php | predictive | High |
| 65 | File | /changeUsername.php | predictive | High |
| 66 | File | /xxxxxxx/xxxxxx.xxx?x=xxxx_xxxxxx | predictive | High |
| 67 | File | /xxxxxxx/xxxxxx.xxx?x=xxxx_xxxxxxxx | predictive | High |
| 68 | File | /xxxxxx/xxxxxx.xxxxxxxxxx | predictive | High |
| 69 | File | /xxxxxx/xxx.xxx | predictive | High |
| 70 | File | /xxxxxxxxx/xxx/xxxxxxxxx/xxxxxxx.xxx | predictive | High |
| 71 | File | /xxxxxxxxxxxx/xxxxxxxxxxxxxx.xxx | predictive | High |
| 72 | File | /xxxx/xxxxxx.xxx | predictive | High |
| 73 | File | /xxxxxx.xxx?xxx=xxx&xxx=___x_x_x_x_x_x_x_xxx___ | predictive | High |
| 74 | File | /xxxxxxx/xxxxxxxxxxx | predictive | High |
| 75 | File | /xxxx-xxxxxxxx.xxx | predictive | High |
| 76 | File | /xxxx-xxxxxxxxxxxx.xxx | predictive | High |
| 77 | File | /xxxx-xxxxxxx.xxx | predictive | High |
| 78 | File | /xxxxxxxx/xxx-xxxx.xxx | predictive | High |
| 79 | File | /xxxxxxxx/xxxxxx-xxxxxxx.xxx | predictive | High |
| 80 | File | /xxxxxxxxxx/xxxxxxxxxx/xxxxx.xxx/xxxxxx/xxxxx-xxxxxxxx/xxxxxxxx | predictive | High |
| 81 | File | /xxxxx/xxxx.xxx | predictive | High |
| 82 | File | /xxx/xxxxx/ | predictive | Medium |
| 83 | File | /xxxxxx/xxxxxxxxxxx | predictive | High |
| 84 | File | /xxxxxx/xxx | predictive | Medium |
| 85 | File | /xxxxxx/xxxxxxxxxxxxxxxx_xxxxxxx | predictive | High |
| 86 | File | /xxxxxx/xxxxxxxxxxxxxxxxxxx | predictive | High |
| 87 | File | /xxxxxx/xxxxxxxxxxxxxxxxx | predictive | High |
| 88 | File | /xxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 89 | File | /xxxxxx/xxxxxxxxxxxxxx | predictive | High |
| 90 | File | /xxxxxx/xxxxxxx | predictive | High |
| 91 | File | /xxxxxx/xxxxxxxxxxxx | predictive | High |
| 92 | File | /xxxxxx/xxxxxx | predictive | High |
| 93 | File | /xxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 94 | File | /xxxxxx/xxx_xxxxxxxxxxx | predictive | High |
| 95 | File | /xxxxxx_xxxxxx.xxx | predictive | High |
| 96 | File | /xxxx/xxxxxx.xxx | predictive | High |
| 97 | File | /xxxxx/ | predictive | Low |
| 98 | File | /xxxxxx/xxxxxxx | predictive | High |
| 99 | File | /xxxx/xxxx_xxxx.xxx | predictive | High |
| 100 | File | /xxxxxxxxxxxx.xxx | predictive | High |
| 101 | File | /xxxxx.xxx | predictive | Medium |
| 102 | File | /xxxxx.xxx?xx-xxxxxxxx-xxxx-x | predictive | High |
| 103 | File | /xxxxx.xxx?xxxx=xxxxxxx | predictive | High |
| 104 | File | /xxxxx/xxxx/xxxx | predictive | High |
| 105 | File | /xxxx/xxxxxxx.xxxx | predictive | High |
| 106 | File | /xxxxxxxxx/xxxxxxxxxxx.xxx | predictive | High |
| 107 | File | /xxxxxxxxx/xxxx/xxxxxx/xxxxxx | predictive | High |
| 108 | File | /xxxxx.xxx | predictive | Medium |
| 109 | File | /xxxxxxxxx.xxx | predictive | High |
| 110 | File | /xxxxx_xx.xxx | predictive | High |
| 111 | File | /xxxx.xxx | predictive | Medium |
| 112 | File | /xxxxxx-xxxxxxxx.xxx | predictive | High |
| 113 | File | /xxxxxx_xx.xxx | predictive | High |
| 114 | File | /xxxxxx/xx.xxx?xxxxxx=xx | predictive | High |
| 115 | File | /xxxx/xx/xxxx/xxxx | predictive | High |
| 116 | File | /xxxxxx/xxxx_xxxxx/xxxx/xxxxx.xxx | predictive | High |
| 117 | File | /xxxxx/xxxxxxx.xxx | predictive | High |
| 118 | File | /xxxxx/xxxxx_xxx.xxx | predictive | High |
| 119 | File | /xxxxx/xxx_xxxx.xxx | predictive | High |
| 120 | File | /xxxxx/xxxxxxx-xxxxxxx-xxxxxxx.xxx | predictive | High |
| 121 | File | /xxxxxxxx-xxxxxxxx.xxx | predictive | High |
| 122 | File | /xxxxxxx-xxxxxx.xxx | predictive | High |
| 123 | File | /xxxxxxx.xxx | predictive | Medium |
| 124 | File | /xxx/xxxxxxxxx/xxx_xxxx.xxx | predictive | High |
| 125 | File | /xxxxxxx | predictive | Medium |
| 126 | File | /xxxxxxxxxx/xxxxx/xxxxx.xxx | predictive | High |
| 127 | File | /xxxxxx/xxxxxxxx/xxxxx.xxx | predictive | High |
| 128 | File | /xxxxxxx.xxx | predictive | Medium |
| 129 | File | /xxxxxxx.xxx | predictive | Medium |
| 130 | File | /xxxxxxxx/xxxx_xxxxxxx.xxx | predictive | High |
| 131 | File | /xxxxxxxx/xxxxxxxx/xxxxxxxxxxx.xxx | predictive | High |
| 132 | File | /xxxxxx_xxxxxx.xxxx | predictive | High |
| 133 | File | /xxxxxxxx.xxx | predictive | High |
| 134 | File | /xxxxxxxxx.xxx | predictive | High |
| 135 | File | /xxxxxxx | predictive | Medium |
| 136 | File | /xxxxxxxxxxx.xxx | predictive | High |
| 137 | File | /xxxxxx-xxxxxx-xxxxxx.xxx | predictive | High |
| 138 | File | /xxxxxx.xxx | predictive | Medium |
| 139 | File | /xxxxxxx.xxx | predictive | Medium |
| 140 | File | /xxxx | predictive | Low |
| 141 | File | /xxxxxx.xxx | predictive | Medium |
| 142 | File | /xxxxx/xxxxxxxxxxxxx | predictive | High |
| 143 | File | /xxxx.xxx | predictive | Medium |
| 144 | File | /xxx/xxxx/xxxx/xxx/xxxx/xxx/xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 145 | File | /xxxxxx | predictive | Low |
| 146 | File | /xxxxxxxx/xxxxxx | predictive | High |
| 147 | File | /xxxxxxxxxxxxxxxx/xxxxxxxx.xx | predictive | High |
| 148 | File | /xxxxxxxxxxxxxxx.xxx | predictive | High |
| 149 | File | /xxxxxx_xx_xxxxxxx.xxx | predictive | High |
| 150 | File | /xxxx/xxxxxxx/xxxxxxxxxxxxxxxx | predictive | High |
| 151 | File | /xxxx_xxxxx_xxxxxxxx_xxxxxx.xxx | predictive | High |
| 152 | File | /xxx/xxxxxx_xxxxx | predictive | High |
| 153 | File | /xxxxxxx-xxxxxxx.xxx | predictive | High |
| 154 | File | /xxxxxxx-xxxxxx.xxx | predictive | High |
| 155 | File | /xxxxxxxx_xxxxx/xxxxx/?xxxx=xxxxxxxxxxx/xxxxxx_xxxxxxxx | predictive | High |
| 156 | File | /xxxxxx/xxxx/xx/xxxxxxx.xxx | predictive | High |
| 157 | File | /xxxxx/xxxxx.xxx?x=xxxxx/xxxxxxxxxxx/xxxxxxx&xxxxx=xx&xx=x | predictive | High |
| 158 | File | /xxxxxx/xxxxx.xxx/xxxxx/xxxxx/xxx_xxxxxx_xxxxxxxx.xxxx | predictive | High |
| 159 | File | x.xxxxxxx/xxx/xxx/xxxxxxxx/xxxxxx/xxxxx/x/xxxxxxxxxx_xxx.x | predictive | High |
| 160 | File | xxxxxxx.xxx | predictive | Medium |
| 161 | File | xxxxxxx.xxx | predictive | Medium |
| 162 | File | xxxxxxx.xxx | predictive | Medium |
| 163 | File | xxx/xxxxxxx.xxx | predictive | High |
| 164 | File | xxxxx.xxx | predictive | Medium |
| 165 | File | xxxxx/xxxxx_xxxxx.xxx | predictive | High |
| 166 | File | xxxxx/xxxxx/xxxxxxxxxxxx.xxx | predictive | High |
| 167 | File | xxxxx/xxxxx.xxx | predictive | High |
| 168 | File | xxxxx/xxxxx.xxx | predictive | High |
| 169 | File | xxxxx/xxxxxx-xxxxxxxxxxx.xxx | predictive | High |
| 170 | File | xxxxx/xxxxxx-xxxxxxxxx.xxx | predictive | High |
| 171 | File | xxxxx/xxxxxxx/xxxxxxxxx/xxxxxxx/xxxxx_xxxxxx.xxx | predictive | High |
| 172 | File | xxxxx/xxxx-xxxxx.xxx | predictive | High |
| 173 | File | xxxxx/xxxxxxxxxxxxx/xxxxxx_xxxxxx.xxx | predictive | High |
| 174 | File | xxxxxxxxxxxxx/xxxxxxxxxx/xxx_xxxxx/xxxxxxx/xxxxx.xxx | predictive | High |
| 175 | File | xxxxx\xxxxxxxxx\xxxx_xxxxxxx.xxx | predictive | High |
| 176 | File | xxxxx_xxxxx.xxx | predictive | High |
| 177 | File | xxxxx_xxxxxxxx.xxx | predictive | High |
| 178 | File | xxxxxxxxxxxxxx.xxx | predictive | High |
| 179 | File | xxxxx_xxxxxx.xxx | predictive | High |
| 180 | File | xxx/xxxxxxxx/xxxxxx | predictive | High |
| 181 | File | xxxxxx | predictive | Low |
| 182 | File | xxx/xxxxx/xxxxxxxxxx/xxxxxxx.xxx | predictive | High |
| 183 | File | xxx/xxxxxxxxxxx/xxxx_xxxxxxxxxx.xx | predictive | High |
| 184 | File | xxx/xxxxxxxxxx/xxxxxx/xxxxxxxxxx/xxxxxx_xxxxxxxx_xxx_xxxxx_xxxxxxxxx.xx | predictive | High |
| 185 | File | xxxx/xxxxxxx/xxx/xxx/xxx/xxxxx/xxxxx.xx | predictive | High |
| 186 | File | xxxxxx/xxxx/xxxx.xxx | predictive | High |
| 187 | File | xxxxxx/xxxx/xxxxxxxx/xxx/xxxxxxxxx.xxx | predictive | High |
| 188 | File | xxxxxxx/xxx/xxxx.xx | predictive | High |
| 189 | File | xxxx/xxxxx/?xxxx=xxxxxxx/xxxxx_xxxxxxxx_xxxxxx | predictive | High |
| 190 | File | xxxxxxx/xxxxx.xxx?xx=x | predictive | High |
| 191 | File | xxxxxxxx/xxxxxx.x | predictive | High |
| 192 | File | xxx_xxxxxxxxxxx_xxx.xxx | predictive | High |
| 193 | File | xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 194 | File | xxxx.x | predictive | Low |
| 195 | File | xxxxxxxx-xxxx-xxxxx.xxx | predictive | High |
| 196 | File | xxxx/xxxxxxxxxx.xxx?xxxxxx=xxx | predictive | High |
| 197 | File | xxx-xxx/xxxxxxx.xx | predictive | High |
| 198 | File | xxxxxxxxxxxxxx.xxx | predictive | High |
| 199 | File | xxxxx.xxx | predictive | Medium |
| 200 | File | xxx | predictive | Low |
| 201 | File | xxx.xxx | predictive | Low |
| 202 | File | xxx/xx/xxxxx/xxx/xxxxxxxxxxxxx.xxxx | predictive | High |
| 203 | File | xxx\xxxx\xxx\xxx\xxxxxxxxxxxxx\xxxxxxxxxxxxxxx\xxxxxxxxxx\xxxxxxxxxxxxxxxxxxx.xxxxx | predictive | High |
| 204 | File | xxxxxx.xxx | predictive | Medium |
| 205 | File | xxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxx.xx | predictive | High |
| 206 | File | xxxxxxx_xx_xxxxxx.xxx | predictive | High |
| 207 | File | xxxxx\xxxx\xxxxxxxxxxx\xxxxx\xxx.xxx | predictive | High |
| 208 | File | xxxx/xxxxx.xx | predictive | High |
| 209 | File | xx_xxxxxxx.xxx | predictive | High |
| 210 | File | xxxxxxx.xxx | predictive | Medium |
| 211 | File | xxxx.xxx | predictive | Medium |
| 212 | File | xxxxx.xxx | predictive | Medium |
| 213 | File | xxxx/xxxxxxxxxx/xxxxxx-xxxxxx.x | predictive | High |
| 214 | File | xxxxx/xxxx.x | predictive | Medium |
| 215 | File | xxxx.xxx | predictive | Medium |
| 216 | File | xxxxxxxx/xxx/xxx/xxxxxxxxxxxxxxxxxxxx.x | predictive | High |
| 217 | File | xxxxxxxx.xxx | predictive | Medium |
| 218 | File | xx-xxxxxxx/xxxxxxxxxxxx/xxxxxx/xxxxx.xxxxxxxxxxxx.xxxx.xxx | predictive | High |
| 219 | File | xx/xxxx/xxxxxxx_xxxxxx.x | predictive | High |
| 220 | File | xx/xxxxx | predictive | Medium |
| 221 | File | xxxxx.xxx | predictive | Medium |
| 222 | File | xxxxxxx/xxxxxx/xxxxxx/xxxxxx.xxx | predictive | High |
| 223 | File | xxxx.xxx | predictive | Medium |
| 224 | File | xxxxx-xxxxxx/xxx/xxxxxxx.x | predictive | High |
| 225 | File | xxxx.xxxx | predictive | Medium |
| 226 | File | xxxx.x | predictive | Low |
| 227 | File | xxxxxx/xxxx/xx/xxxxxxx/xxxxxx.xxx.xxx | predictive | High |
| 228 | File | xxxx/xxxxxxxx/xxxxxxx/xxxxx/xxxx/xxxxxxxxx.xxx | predictive | High |
| 229 | File | xxxxxxxxxxxxxxxx.xxx | predictive | High |
| 230 | File | xxxxx/xxxxxxxxxxxxxx | predictive | High |
| 231 | File | xxxxx_xxxxxxx.xxx | predictive | High |
| 232 | File | xxx/xxxxxx.xxx | predictive | High |
| 233 | File | xxx/xxxxxxxxxxx/xxxxxxx.xxx | predictive | High |
| 234 | File | xxxxxxxx/xxxxxxxx.xxx | predictive | High |
| 235 | File | xxxxx.xxxx | predictive | Medium |
| 236 | File | xxxxx.xx | predictive | Medium |
| 237 | File | xxxxx.xxx | predictive | Medium |
| 238 | File | xxxxxxx/xxxxxxxx.xxx | predictive | High |
| 239 | File | xxxx.xxx | predictive | Medium |
| 240 | File | xxxxxx.xxx | predictive | Medium |
| 241 | File | xxxx.xxx | predictive | Medium |
| 242 | File | xxxx_xxxx_xxxxxx.xxx | predictive | High |
| 243 | File | xxxxx.xxx | predictive | Medium |
| 244 | File | xxxx.x | predictive | Low |
| 245 | File | xxxx.xxx | predictive | Medium |
| 246 | File | xxxxxx_xxxx.xxx | predictive | High |
| 247 | File | xxxxxxx_xxxxxxxx.xxx | predictive | High |
| 248 | File | xxx_xxxx.xxx | predictive | Medium |
| 249 | File | xxx/xxxx/xxxxxx.x | predictive | High |
| 250 | File | xxxxx-xxxxx/xxx/xxxx/xxxx/xxx/xxxxxxx/xxxxxx/xxxxxxxxxx/xxxxxxxxxxxxxxx.xxxx | predictive | High |
| 251 | File | xxxxxxxxxxxxxx.xxx | predictive | High |
| 252 | File | xxx_xxxx.xxx | predictive | Medium |
| 253 | File | xxx-xxxxxxxxxxx/xxx/xxxxxx/xxx/xxxxxxxxxx.xx | predictive | High |
| 254 | File | xxxx.xxx | predictive | Medium |
| 255 | File | xxxxxxxxxxxxxxxxx.xxx | predictive | High |
| 256 | File | xxxxx.xxx | predictive | Medium |
| 257 | File | xxxxxxx.xx | predictive | Medium |
| 258 | File | xxxxxxx_xxxx.xxx | predictive | High |
| 259 | File | xxxxxxxx/xxxxxxxx.xx | predictive | High |
| 260 | File | xxxxx.xxx | predictive | Medium |
| 261 | File | xxxxx.xxx | predictive | Medium |
| 262 | File | xxxxxxxx.xxx | predictive | Medium |
| 263 | File | xxxxxxxxx | predictive | Medium |
| 264 | File | xxxxx-xxxxxxx/xxxxx-xxxxxx/xxx/xxxx/xxxx/xxx/xxxxx/xxxxxx/xxxxxxxxxx/xxxxxx/xxxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 265 | File | xxxxxxx_xxxxxx_xxxxxxxxxxx.xxx | predictive | High |
| 266 | File | xxxx-xxx/xxxxxxxx.xxx?xxxx=xxx_xxxxx.xxx | predictive | High |
| 267 | File | xxxxxx.xxx | predictive | Medium |
| 268 | File | xxxxxxxxxxxxx.xxxx | predictive | High |
| 269 | File | xxxxxx_xxxx.xxx | predictive | High |
| 270 | File | xxxxxxxx.xxx | predictive | Medium |
| 271 | File | xxxxxxxx_xxxxxxxxx.xxx | predictive | High |
| 272 | File | xxxx_xxxxxx.xxx | predictive | High |
| 273 | File | xxxxx_xxxx.xxx | predictive | High |
| 274 | File | xxx/xxxxxxx/xxxxxxx/xxxxxxxxxx.xxx | predictive | High |
| 275 | File | xxx/xxx/xxx/xxxxxx/xxxxxxxxxx.xxxx | predictive | High |
| 276 | File | xxx/xxxx/xxxx/xxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxx.xxxx | predictive | High |
| 277 | File | xxx/xxxx/xxxx/xxx/xxxxxx/x/xxxxxx/xxxxx/xxxxxxxxxxx.xxxxxx | predictive | High |
| 278 | File | xxx/xxxx.xx | predictive | Medium |
| 279 | File | xxx/xxxxx/xxxx/xxxxxxxxxxxx.xxx | predictive | High |
| 280 | File | xxxxxxx-xxxxxxxx.xxx | predictive | High |
| 281 | File | xxxxxxx-xxxxxxx.xxx | predictive | High |
| 282 | File | xxxxxxx_xxxxxxxx.xxx | predictive | High |
| 283 | File | xxx/xxxx/xxxxxxxxxxx/xxxxx/xxxxx.xxx | predictive | High |
| 284 | File | xxxxxx/xxxxx/xxxxx/xxx_xxxx.xxx | predictive | High |
| 285 | File | xxxx-xxxxxxxx.xxx | predictive | High |
| 286 | File | xxxx-xxxxx.xxx | predictive | High |
| 287 | File | xxxx-xxxxxxxx.xxx | predictive | High |
| 288 | File | xxxxxxx.xx | predictive | Medium |
| 289 | File | xxxxxxx_xxxxxx.xxx | predictive | High |
| 290 | File | xxxxxx.xxx | predictive | Medium |
| 291 | File | xxxxxxxxx.xxx | predictive | High |
| 292 | File | xxxx-xxxxx.xxx | predictive | High |
| 293 | File | xxxx.xxx | predictive | Medium |
| 294 | File | xxxxx/xxxxx.xxx | predictive | High |
| 295 | File | xxxxxxxxx_xxxx.xxx | predictive | High |
| 296 | File | xxxxxx\xxxxxx\xxxxxxxxx-xxxxxx-xxxxxxx\xxx\xxxxxxx\xxxxxxx.xxx | predictive | High |
| 297 | File | xxxx_xxxx.xxx | predictive | High |
| 298 | File | xxxx.xx | predictive | Low |
| 299 | File | xxxxxxxxxxxx-xxxxxxxx.xxx | predictive | High |
| 300 | File | xx-xxxxxxxx/xxxxx-xx-xxxxx.xxx | predictive | High |
| 301 | File | xxxx.xx | predictive | Low |
| 302 | File | xxxxxxxx/xxxxxx/xxxxxxxxx/xxxxxxx/xxxxxxxxx/xx/xxxxxxxxxxxxxxx.xx | predictive | High |
| 303 | Library | /xxxx/xxxx/xxxxx.x | predictive | High |
| 304 | Library | /xxxxx/xxxxxxxxxxxxx.xxx | predictive | High |
| 305 | Library | xxxx_xx.xxx | predictive | Medium |
| 306 | Library | xxx/xxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxx.xxx | predictive | High |
| 307 | Library | xxxxxx.xx.x | predictive | Medium |
| 308 | Library | xxxxxxxx.xxx | predictive | Medium |
| 309 | Library | xxxxxxxx.xxx | predictive | Medium |
| 310 | Library | xxx.xxx | predictive | Low |
| 311 | Library | xxxxxxxxxxx.xxx | predictive | High |
| 312 | Library | xxxxxxxxxxxx.xxx | predictive | High |
| 313 | Library | xxxxx.xxx | predictive | Medium |
| 314 | Argument | xx | predictive | Low |
| 315 | Argument | xxxxxxx | predictive | Low |
| 316 | Argument | xxxxx | predictive | Low |
| 317 | Argument | xxx | predictive | Low |
| 318 | Argument | x_xxxx/x_xxx/x_xxxxxxx | predictive | High |
| 319 | Argument | xxxxxxxx | predictive | Medium |
| 320 | Argument | xxxxxxxxx/xxxxxxx/xxxxxx | predictive | High |
| 321 | Argument | xxxxxxxx | predictive | Medium |
| 322 | Argument | xxx | predictive | Low |
| 323 | Argument | xxx | predictive | Low |
| 324 | Argument | xxxxx | predictive | Low |
| 325 | Argument | xxxx | predictive | Low |
| 326 | Argument | xxxxxxxxxxx | predictive | Medium |
| 327 | Argument | xxx_xxx[] | predictive | Medium |
| 328 | Argument | xxxxxxxx | predictive | Medium |
| 329 | Argument | xxxxxxx | predictive | Low |
| 330 | Argument | xxxxxxxx | predictive | Medium |
| 331 | Argument | xxxxxxxxxx | predictive | Medium |
| 332 | Argument | xxxxxxxx xxxx/xxxxxxxx xxxxxxxxxxx | predictive | High |
| 333 | Argument | xxxxxxxx_xxxxx | predictive | High |
| 334 | Argument | xxxxxxxxxx | predictive | Medium |
| 335 | Argument | xxx | predictive | Low |
| 336 | Argument | xxxxxxxxxxxxxxx | predictive | High |
| 337 | Argument | xxxxxxxxx/xxxxxxxxx/xxxxxxx | predictive | High |
| 338 | Argument | xxx | predictive | Low |
| 339 | Argument | xxxxxxxxx | predictive | Medium |
| 340 | Argument | xxxxxxx | predictive | Low |
| 341 | Argument | xxxxxxx | predictive | Low |
| 342 | Argument | xxxxxxxxx | predictive | Medium |
| 343 | Argument | xxxxxx | predictive | Low |
| 344 | Argument | xxxxxx_xxxxxxx[xxxx][xxxxxxx][] | predictive | High |
| 345 | Argument | xxxxxxx/xxxx | predictive | Medium |
| 346 | Argument | xxxxxx_xxxx | predictive | Medium |
| 347 | Argument | xxxxxxxxxxxxxxx | predictive | High |
| 348 | Argument | xxxxxxx | predictive | Low |
| 349 | Argument | xxxxxxx/xxxxxx.xxxx_xxxxxxx_xxxxxxx | predictive | High |
| 350 | Argument | xxxx | predictive | Low |
| 351 | Argument | xxxx_xx | predictive | Low |
| 352 | Argument | xxxxxxx | predictive | Low |
| 353 | Argument | xx_xxxx | predictive | Low |
| 354 | Argument | xxx | predictive | Low |
| 355 | Argument | xxxxxxxxxx | predictive | Medium |
| 356 | Argument | xxxxxx_xxx | predictive | Medium |
| 357 | Argument | xxxx | predictive | Low |
| 358 | Argument | xxxx | predictive | Low |
| 359 | Argument | xxxxxxx | predictive | Low |
| 360 | Argument | xxxxxxxxxxx | predictive | Medium |
| 361 | Argument | xxxxxxxx | predictive | Medium |
| 362 | Argument | xxxxxxx | predictive | Low |
| 363 | Argument | xxxxxxxx_xxxx | predictive | High |
| 364 | Argument | xxxxxx | predictive | Low |
| 365 | Argument | xxxxxx/xxxxxx | predictive | High |
| 366 | Argument | xxxxxxxx-xxxxx-xxxx | predictive | High |
| 367 | Argument | xxxx_xxxxxxxxx_xxxxx_xxxxx | predictive | High |
| 368 | Argument | xxxxx | predictive | Low |
| 369 | Argument | xxxxx | predictive | Low |
| 370 | Argument | xxxxx/xxxxx xxxxxx | predictive | High |
| 371 | Argument | xxxxxxxxxxxx/xxxxxxxxxxxxxx | predictive | High |
| 372 | Argument | xxxxx | predictive | Low |
| 373 | Argument | xxxxx_xxx | predictive | Medium |
| 374 | Argument | xxxxx_xx/xxxx_xxxx/xxxxx/xxxxxx/xxxxxxx/xxxxxx | predictive | High |
| 375 | Argument | xxxxx/xxxxx | predictive | Medium |
| 376 | Argument | xxxx | predictive | Low |
| 377 | Argument | xxxx | predictive | Low |
| 378 | Argument | xxxxxxxx | predictive | Medium |
| 379 | Argument | xxxxxxxx | predictive | Medium |
| 380 | Argument | xxxxxxxxxx | predictive | Medium |
| 381 | Argument | xxxx_xxxxxx | predictive | Medium |
| 382 | Argument | xxxxxxxxxxxxxxxxxx | predictive | High |
| 383 | Argument | xxxx/xxx/xxxxx | predictive | High |
| 384 | Argument | xxxxx | predictive | Low |
| 385 | Argument | xxxxxxxx/xxxxxx | predictive | High |
| 386 | Argument | x_xxxxxx_xxx | predictive | Medium |
| 387 | Argument | xx_xxxxxx | predictive | Medium |
| 388 | Argument | xxxxxx | predictive | Low |
| 389 | Argument | xxxxxx | predictive | Low |
| 390 | Argument | xxxx | predictive | Low |
| 391 | Argument | xxxxxxxx | predictive | Medium |
| 392 | Argument | xxxxxxxxxx | predictive | Medium |
| 393 | Argument | xxxx_xx/xxxxxx_xxxx/xxxxxx_xxxx/xxxxxx_xx | predictive | High |
| 394 | Argument | xx | predictive | Low |
| 395 | Argument | xx | predictive | Low |
| 396 | Argument | xx/xxxxxxxxxxx/xxxxxxxx/xxxxxxxxxxxxxx | predictive | High |
| 397 | Argument | xx/xxxxxxxx/xxxxxxxx | predictive | High |
| 398 | Argument | xxx/xxx | predictive | Low |
| 399 | Argument | xxx | predictive | Low |
| 400 | Argument | xx_xxxxx_xxxxx_xxx | predictive | High |
| 401 | Argument | xxxxx | predictive | Low |
| 402 | Argument | xxxxxxx | predictive | Low |
| 403 | Argument | xxxxx/xxxxxx_xx | predictive | High |
| 404 | Argument | xxxxxxxxxx/xxxxx.xxxx.xxxxxxxx.xxxxx/xxxxxxxx | predictive | High |
| 405 | Argument | xxx_xx | predictive | Low |
| 406 | Argument | xxxx | predictive | Low |
| 407 | Argument | xxxx | predictive | Low |
| 408 | Argument | xxxxxxx | predictive | Low |
| 409 | Argument | xxxx | predictive | Low |
| 410 | Argument | xxxxxxxx | predictive | Medium |
| 411 | Argument | xxxxxxxx | predictive | Medium |
| 412 | Argument | xxxxxxx | predictive | Low |
| 413 | Argument | xxxx xxxx/xxxxx xxxx/xxxxxx xxxx | predictive | High |
| 414 | Argument | xxxx | predictive | Low |
| 415 | Argument | xxxxxxxxxx | predictive | Medium |
| 416 | Argument | xxx | predictive | Low |
| 417 | Argument | xxxxx_xxxx | predictive | Medium |
| 418 | Argument | xxxxxx | predictive | Low |
| 419 | Argument | xx | predictive | Low |
| 420 | Argument | xxx/xxx | predictive | Low |
| 421 | Argument | xxxxxxx | predictive | Low |
| 422 | Argument | xxxxxxxxx | predictive | Medium |
| 423 | Argument | xx_xxxxxx_xxxxxxxxxxxx | predictive | High |
| 424 | Argument | xxxxxxxxxxxx | predictive | Medium |
| 425 | Argument | xxxxxx | predictive | Low |
| 426 | Argument | xxxx | predictive | Low |
| 427 | Argument | xxxx | predictive | Low |
| 428 | Argument | xxxx/xxxxxxxx | predictive | High |
| 429 | Argument | xxxx/xxxxxxxx | predictive | High |
| 430 | Argument | xxxxxxxxxxxxxxxxxxxxxxxxxxx | predictive | High |
| 431 | Argument | xxxxxx | predictive | Low |
| 432 | Argument | xxx_xxxx | predictive | Medium |
| 433 | Argument | xxxx_xxxx | predictive | Medium |
| 434 | Argument | xxx | predictive | Low |
| 435 | Argument | xxxxxx | predictive | Low |
| 436 | Argument | xxxxxxx | predictive | Low |
| 437 | Argument | xxxx/xxxx_xx | predictive | Medium |
| 438 | Argument | xxxx_xxxx_xxxxx | predictive | High |
| 439 | Argument | xxxxxx | predictive | Low |
| 440 | Argument | xxxxxxxx | predictive | Medium |
| 441 | Argument | xxxxxxxxx | predictive | Medium |
| 442 | Argument | xxxx | predictive | Low |
| 443 | Argument | xxxxxxxxxx | predictive | Medium |
| 444 | Argument | xxxxx_xxxx_xxxx | predictive | High |
| 445 | Argument | xxxx_xx | predictive | Low |
| 446 | Argument | xxxx_xxxx/xxxxxxxxxxx/xxxxxxxx_xxxx/xxxxx | predictive | High |
| 447 | Argument | xxxx_xxxxx | predictive | Medium |
| 448 | Argument | xxxxx_xxx | predictive | Medium |
| 449 | Argument | xxxxxxx | predictive | Low |
| 450 | Argument | xxxxx | predictive | Low |
| 451 | Argument | xxxxx | predictive | Low |
| 452 | Argument | xxxxxxxxxxxxx | predictive | High |
| 453 | Argument | xxxxx | predictive | Low |
| 454 | Argument | xxxxx_xxx | predictive | Medium |
| 455 | Argument | xxxxxxxx | predictive | Medium |
| 456 | Argument | xxxxxxxxxxx | predictive | Medium |
| 457 | Argument | xxxxxxx_xxx | predictive | Medium |
| 458 | Argument | xxxx_xxxx | predictive | Medium |
| 459 | Argument | xxxxxxxxxxxxxx | predictive | High |
| 460 | Argument | xxxxxxx_xxxxxx_xxxxxxxxxxx.xxx | predictive | High |
| 461 | Argument | xxxxxxxx | predictive | Medium |
| 462 | Argument | xxxxx_xx | predictive | Medium |
| 463 | Argument | xxxxxxx | predictive | Low |
| 464 | Argument | xxxxxx | predictive | Low |
| 465 | Argument | xxxxxxxxxx | predictive | Medium |
| 466 | Argument | xxxxxxxxxx | predictive | Medium |
| 467 | Argument | xxxxxx_xxxxxx | predictive | High |
| 468 | Argument | xxxxxx_xxxx_xxxx | predictive | High |
| 469 | Argument | xxxxxxx | predictive | Low |
| 470 | Argument | xxxxxxxx_xx | predictive | Medium |
| 471 | Argument | xxxxxxxx_xxxxxxx_xxxxxxx/xxxxxxxx_xxxxxx_xxxxxxx | predictive | High |
| 472 | Argument | xxxx | predictive | Low |
| 473 | Argument | xxxxxxxxxx | predictive | Medium |
| 474 | Argument | xxxxxxx | predictive | Low |
| 475 | Argument | xxxxxx | predictive | Low |
| 476 | Argument | xxx | predictive | Low |
| 477 | Argument | xxxxxx | predictive | Low |
| 478 | Argument | xxxxxx-xxx | predictive | Medium |
| 479 | Argument | xxxxxx-xxx-xx | predictive | High |
| 480 | Argument | xxx | predictive | Low |
| 481 | Argument | xxx | predictive | Low |
| 482 | Argument | xxxxxxxx | predictive | Medium |
| 483 | Argument | xxxxxx | predictive | Low |
| 484 | Argument | xxxxxxxxxxx/xxxxxxxxxxx/xxxxxxxxxxx | predictive | High |
| 485 | Argument | xxxxxxxx | predictive | Medium |
| 486 | Argument | xxxxx | predictive | Low |
| 487 | Argument | xxxxx | predictive | Low |
| 488 | Argument | xxxxxxxxxxxxxxx | predictive | High |
| 489 | Argument | xxxxxxxxxx_xxxxxxxx/xxxxxx_xxxxxxxx/xxxxxx_xxxxxxxx | predictive | High |
| 490 | Argument | xxxxxxxxxxx/xxxxxxxx/xxxxxxxxxxxxxx | predictive | High |
| 491 | Argument | xxxxxxxxx | predictive | Medium |
| 492 | Argument | xxxxx | predictive | Low |
| 493 | Argument | xxxxxxxx_xxxx_xxxxxxxxx | predictive | High |
| 494 | Argument | xxx | predictive | Low |
| 495 | Argument | xxx xxxxxxx | predictive | Medium |
| 496 | Argument | xxxx | predictive | Low |
| 497 | Argument | xxxxxx | predictive | Low |
| 498 | Argument | xxxxxxxx | predictive | Medium |
| 499 | Argument | xxxxxxxx/xxxxxxxxx | predictive | High |
| 500 | Argument | xxxxxxxx/xxxxxxxx | predictive | High |
| 501 | Argument | xxxx_xxxxx | predictive | Medium |
| 502 | Argument | xxxx_xx | predictive | Low |
| 503 | Argument | xxxx_xx_xxxxxx_xxxx | predictive | High |
| 504 | Argument | xxxxxxxx | predictive | Medium |
| 505 | Argument | xxx_xxx | predictive | Low |
| 506 | Argument | xxxxxxxxxxx | predictive | Medium |
| 507 | Argument | xxxxxx | predictive | Low |
| 508 | Argument | x-xxxxxxxxx-xxx | predictive | High |
| 509 | Argument | x-xxxxxxxxxx-xxxxxxxxxx | predictive | High |
| 510 | Input Value | "><xxxxxx>xxxxx(xxxxxxxx.xxxxxx)</xxxxxx> | predictive | High |
| 511 | Input Value | ' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxx | predictive | High |
| 512 | Input Value | /%xx | predictive | Low |
| 513 | Input Value | /../xxx/xxxxxx- | predictive | High |
| 514 | Input Value | /../xxx/xxxxxxxx | predictive | High |
| 515 | Input Value | /../xxx/xxxxxxxx- | predictive | High |
| 516 | Input Value | xxxxxxx"><xxxxxx>xxxxx(x)</xxxxxx>xxxxx | predictive | High |
| 517 | Input Value | <xxxxxx>xxxxx('xxx')</xxxxxx> | predictive | High |
| 518 | Input Value | <xxxxxx>xxxxx(xxxxxxxx.xxxxxx)</xxxxxx> | predictive | High |
| 519 | Input Value | <xxx%xxxxxxxx=xxxxx(xxxxxxxx.xxxxxx)> | predictive | High |
| 520 | Input Value | ><xxxxxx>xxxxx(x)</xxxxxx> | predictive | High |
| 521 | Input Value | xxxxx%'/**/xxx/**/(xxxxxx/**/xxxx/**/xxxx/**/(xxxxxx(xxxxx(x)))xxxx)/**/xxx/**/'xxxx%'='xxxx | predictive | High |
| 522 | Input Value | xxxxxxxxxx | predictive | Medium |
| 523 | Input Value | xxxxxx%xx+xx+%xxx%xx+%xx+%xxx%xx+--+- | predictive | High |
| 524 | Network Port | xxx/xxxxx | predictive | Medium |
References (62)
The following list contains external sources which discuss the actor and the associated activities:
- https://app.any.run/tasks/ad7a83a7-6627-4b16-815a-990d1a0c9eff
- https://blog.malwarebytes.com/threat-analysis/2019/12/new-version-of-icedid-trojan-uses-steganographic-payloads/
- https://blog.talosintelligence.com/2018/04/icedid-banking-trojan.html
- https://cert.gov.ua/article/39609
- https://gist.githubusercontent.com/myrtus0x0/0fb09259ac2b63e86200f844e1b90bb1/raw/dc6b5bafaa1ac0a50834a3d7ade19ff07eb6ddbd/IcedID_07_20_2021.txt
- https://gist.githubusercontent.com/myrtus0x0/4bb17522271df974a6285b42214c4622/raw/e6d13ab2a0e4d789a0d19d693e9f5fc4828da553/IcedID_07_02_2021.txt
- https://gist.githubusercontent.com/myrtus0x0/45231dd1cbb0c3673bce9a3995f19322/raw/b6d8ebfced321c338714b4e14d4271803d4fe098/IcedID_07_28_2021.txt
- xxxxx://xxxx.xxxxxxxxxxxxxxxxx.xxx/xxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx/xxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx/xxxxxx_xx_xx_xxxx.xxx
- xxxxx://xxxxxx.xxx/x-xx-x/xxxxxx/xxxx/xxxx/xxxxxxxxxx/xxxx-xxxxxx-xx.xxx
- xxxxx://xxxxxx.xxx/xxxxx/xxxxx_xxxxxx_xxxxxxxxxxxx/xxxx/xxxx/xxxxxx/x/xxxxxx
- xxxxx://xxxxxxx.xxxxxxxx/@xxxxxxx_xxxxxxx/xxxxxxxxxxxxxxxxxx
- xxxxx://xxx.xxxx.xxx/xxxxx/xxxxx
- xxxxx://xxx.xxxx.xxx/xxxxx/xxxxxx+xxx+xxxx+xx+xxxx+xxxxxxxx+xxxxx+xxxxxxx+xxxxxx+xxxxxx/xxxxx
- xxxxx://xxx.xxxx.xxx/xxxxx/xxxxxx+%xxxxxxxx%xx+xxxx+xxxx+xxx+xxx+xxxxxx+xxxxxx/xxxxx
- xxxxx://xxx.xxxx.xxx/xxxxx/xxxxxxx+xxxxx+%xxxxxxxxxxxxxx%xx+--%xx+xxxxxx+%xxxxxxxx%xx+--%xx+xxxxxx+xxxxxx+%xx+xxxxxxx/xxxxx
- xxxxx://xxx.xxxx.xxx/xxxxx/xxxxxxx+xxxxx+%xxxxxxxxxxxxxx%xx+xxxxxx+xxxxxx+%xxxxxxxx%xx+xxxx+xxxx+xxx+xxx+xxxxxx+xxxxxx/xxxxx
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxxxx+xxxx+xxxxx+xxxx+xxxxxxx+xxxxxxxx+xxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxx+xxxxxxxxx+xxxx+xxxxxx+xxxxxxx+xxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxx+xxxxxxxxxx+xxx+xxxxxxxx+xxxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxxx+xxxxx+xx+xxxxxxxxxxxxxxxxx+xxxx+xxxx+xxxx+xxxx+xxxxxx+xxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxxx+xxxx+xxxxx+xx+xxxx+xxxx+xxxxxx+xxxxxx+xxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxxx+xxxx+xxxxxxxxxxxxxxxxx+xxxx+xxxx+xxxxx+xxxxxxx+xxxxxx+xxxxxx+xxxx+xxxxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxxxxxxxx+xxxx+xxxxxxxx+xxxx+xxxxxxxxx+xxxxx+xxxxxx+xxxxxx+xxxxxx/xxxxx/
- xxxxx://xxx.xxxx.xxx/xxxxxx/xxxxx/xxx+xxxxxx+xxxxxxxxx+xxxxx+xx+xxxxx+xxxxxxxx+xxxxxxx+xxxxxxxxxx/xxxxx/
- xxxxx://xxx.xxxxxxxxxxxxxxxxx.xxx/xxx-xxxxxx/xxxxxx/xxxxxx/xxxx-xx-xx-xxxx-xxx-xxxxxx-xxxxxxxxx-xxxx-xxxxxx-xxxxxx.xxx
- xxxxx://xxx.xxxxxxxxxxxxxxxxx.xxx/xxx-xxxxxx/xxxxxx/xxxxxx/xxxx-xx-xx-xxxx-xxx-xxxxxxx-xxxxx-xxxxx-xxxxxx-xxxx-xxxxxx-xxxxx.xxx
- xxxxx://xxxxxxxx.xxxxxxxxxx.xxx/xxxx/xxxxxxx-xxx-xxxxxxxx-xxxxxx-xxxxxxx-xxxx-x-xxx-xxxxxx-xxxxx/
- xxxxx://xxxxxxx.xxxxx.xx/xxxxxx/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx/
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xx.xxx.xx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xx.xx.xxx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xx.xxx.xxx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xxx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xxx.xx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xx.xx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xx.xxx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xxx.xxx
- xxxxx://xxxxxx.xxxxxx.xx/xxxxx/xxx.xxx.xxx.xxx
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxxxx-xxx-xxxxxx-xxxxxx-xx-xxxxxxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxxxx-xx-xxxxxxxxxx-xxxxxxxxxx-xx-xx-xxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxxxxxxx-xxx-xxxx-xxxxx-xx-xxxxxx-xxxx-xxxxxxxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxxxx-xxxxx-xxxx-xx-xxxxxxxx-xxxxxxxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxx-xxxxxxxxx-xxxxx-xx-xxxxxx-xxxx-xxxxxxxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxx-xxxxxxx-xx-xxxxxxxxxx-xx-xxx-xxxx-xxxxxxxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxx-xxxxxx-xx-xxxxx-xxxxxx-xxxxxxxxxx-xx-xx-xxxx/
- xxxxx://xxxxxxxxxxxxx.xxx/xxxx/xx/xx/xxxxxx-xxxxxx-xxxxxxxxxxxxx-xxx-xxxxxx-xxxxxxxx-xx-xxxxx-xxxxxxxxxx-xxxxxxxxxx/
- xxxxx://xxxxxxxxx.xxxxx.xx
- xxxxx://xxxx.xx/xxxxxx-xxxxxxxxxx
- xxxxx://xxxx.xx/xxxxxx-xxxxxxxxxx
- xxxxx://xxxx.xx/xxxxxx-xxxxxxxxxx
- xxxxx://xxxx.xx/xxxxxx-xxxxxxxxxx
- xxxxx://xxxxxxx.xxx/xxxxxx/xxxxxx/xxxxxxxxxxxxxxxxxxx
- xxxxx://xxxxxxx.xxx/xxxxxxxxxxx/xxxxxx/xxxxxxxxxxxxxxxxxxx
- xxxxx://xxxxxxx.xxx/xxxxxxx_xxxxxxx/xxxxxx/xxxxxxxxxxxxxxxxxxx
- xxxxx://xxxxxxx.xxx/xxxxxxxxx_xx/xxxxxx/xxxxxxxxxxxxxxxxxxx
- xxxxx://xxxxxxx.xxx/xxxxxxxxxxxxx/xxxxxx/xxxxxxxxxxxxxxxxxxx
- xxxxx://xxx.xxxxxxx.xxx
- xxxxx://xxx.xxxxxxxxxx.xxx/xxxx/xxxxxxxxxx-xx.-xxxxxxx-xxxxxx-xxxxxxxxxx
- xxxxx://xxx.xxxxxxxx.xxx/xxxx/xxxxxx-xxxxxxxx/xxxxxx-xxxxxxx-xxxxxxxx-xxxx-xxx.xxxx
- xxxxx://xxx.xxxxxxx-xxxxxxx-xxxxxxxx.xxx/xxxx/xx/xx/xxxxx.xxxx
- xxxxx://xxx.xxxxxxxx.xxx/?xxxx=xxxx&xxxxx=xxxx-xx&xxxx=xxxxxxxx-xxxxxxxx-xx-xx-xxxxxx-xxxxxxxxx
- xxxxx://xxx.xxxx-xxxxx.xxx/xxxx/xxxxxx-xxx-xxxxxx-xxxxxxxxxxx-xxxxxxxx-xxxx-x
Samples (1)
The following list contains associated samples: