2020-05-19 - PCAP AND MALWARE FOR AN ISC DIARY (ICEDID)
NOTES:
- The ISC diary is for Wednesday 2020-05-20: Microsoft Word document with malicious macro pushes IcedID (Bokbot)
- Zip files are password-protected. If you don't know the password, look at the "about" page of this website.
ASSOCIATED FILES:
- 2020-05-19-IcedID-IOCs.txt.zip 1.4 kB (1,443 bytes)
- 2020-05-19-IcedID-IOCs.txt (2,990 bytes)
- 2020-05-19-IcedID-infection-traffic.pcap.zip 3.6 MB (3,577,022 bytes)
- 2020-05-19-IcedID-infection-traffic.pcap (3,778,111 bytes)
- 2020-05-19-IcedID-malware-and-artifacts.zip 992 kB (992,495 bytes)
- 2020-05-19-scheduled-task-for-IcedID.txt (3,942 bytes)
- FMLAINSTRUCTIONS.doc (127,278 bytes)
- Ixoyhoka2.exe (105,472 bytes)
- PFSDNSKDF.EXE (108,032 bytes)
- tiagac3.png (667,077 bytes)
- ~530644480.tmp (109,895 bytes)
Click here to return to the main page.