2020-05-19 - PCAP AND MALWARE FOR AN ISC DIARY (ICEDID)
NOTICE:
- The zip archives on this page have been updated, and they now use the new password scheme. For the new password, see the "about" page of this website.
NOTES:
- The associated ISC diary is Microsoft Word document with malicious macro pushes IcedID (Bokbot)
ASSOCIATED FILES:
- 2020-05-19-IcedID-IOCs.txt.zip 1.4 kB (1,443 bytes)
- 2020-05-19-IcedID-IOCs.txt (2,990 bytes)
- 2020-05-19-IcedID-infection-traffic.pcap.zip 3.6 MB (3,577,022 bytes)
- 2020-05-19-IcedID-infection-traffic.pcap (3,778,111 bytes)
- 2020-05-19-IcedID-malware-and-artifacts.zip 993 kB (993,183 bytes)
- 2020-05-19-scheduled-task-for-IcedID.txt (3,942 bytes)
- FMLAINSTRUCTIONS.doc (127,278 bytes)
- Ixoyhoka2.exe (105,472 bytes)
- PFSDNSKDF.EXE (108,032 bytes)
- tiagac3.png (667,077 bytes)
- ~530644480.tmp (109,895 bytes)
Click here to return to the main page.