2021-03-11 - ICEDID (BOKBOT) FROM EXCEL SPREADSHEET MACRO
- 2021-03-11-IOCs-for-IcedID-infection.txt.zip   1.4 kB   (1,446 bytes)
- 2021-03-11-IcedID-infection-traffic.pcap.zip   5.1 MB   (5,094,830 bytes)
- 2021-03-11-malware-and-artifacts.zip   221 kB   (221,375 bytes)
- Originally from tweet by @ps66uk at: https://twitter.com/ps66uk/status/1370026963604099081
- All zip archives on this site are password-protected. If you don't know the password, see the "about" page of this website.
Shown above: Screenshot of spreadsheet used for this infection.
Shown above: Traffic from the infection filtered in Wireshark.
Shown above: Scheduled task to keep IcedID persistent.
Click here to return to the main page.