2019-12-26 - DATA DUMP: ICEDID INFECTION WITH TRICKBOT

ASSOCIATED FILES:

  • 2019-12-26-IcedID-infection-with-Trickbot-gtag-tin233.pcap   (22,637,796 bytes)
  • 2019-12-26-IcedID-retrieved-by-Word-doc-macro.exe
  • 2019-12-26-JSE-file-dropped-by-Word-macro.txt
  • 2019-12-26-TIN_X64.exe-from-66.85.173.6.exe
  • 2019-12-26-Word-doc-with-macro-for-IcedID.doc
  • 2019-12-26-lastimg.png-from-5.182.211.76.exe
  • 2019-12-26-mini.png-from-5.182.211.76.exe
  • 2019-12-26-scheduled-task-for-IcedID.txt
  • 2019-12-26-scheduled-task-for-Trickbot.txt
  • 2019-12-26-sdocuprint.pdf-from-66.85.173.6.exe
  • 2019-12-26-swajn.exe-from-66.85.173.6.exe
  • 2019-12-26-updatefile.exe-from-66.85.173.6.exe
  • adirecttools/ghgtihsf.exe
  • adirecttools/settings.ini
  • adirecttools/data/importDll64
  • adirecttools/data/injectDll64
  • adirecttools/data/injectDll64_configs/dinj
  • adirecttools/data/injectDll64_configs/dpost
  • adirecttools/data/injectDll64_configs/sinj
  • adirecttools/data/mshareDll64
  • adirecttools/data/mwormDll64
  • adirecttools/data/networkDll64
  • adirecttools/data/networkDll64_configs/dpost
  • adirecttools/data/pwgrab64
  • adirecttools/data/pwgrab64_configs/dpost
  • adirecttools/data/tabDll64
  • adirecttools/data/tabDll64_configs/dpost

NOTES:

 

Click here to return to the main page.