2021-05-24 (MONDAY) - TA551 (SHATHAK) WORD DOCS PUSH ICEDID (BOKBOT)

ASSOCIATED FILES:

• 2021-05-24-TA551-IOCs-for-IcedID.txt.zip   3.6 kB   (3,578 bytes)
• 2021-05-24-TA551-malspam-1418-UTC.eml.zip   79.2 kB   (79,249 bytes)
• 2021-05-24-TA551-IcedID-malware-and-artifacts.zip   1.4 MB   (1,425,721 bytes)
• 2021-05-24-TA551-IcedID-infection-traffic.pcap.zip   3.9 MB   (3,873,519 bytes)

NOTES:

• All zip archives on this site are password-protected.  If you don't know the password, see the "about" page of this website.

 

IMAGES

Shown above:  Traffic from an infection filtered in Wireshark.

 

Click here to return to the main page.