Description
IcedID is a banking trojan capable of stealing credentials.
hostsvc.dll
63KB
210406-5bgafmrjzx
fcb6cf720c45b554c5f689fa914ffd2c
4d247be7e4c3ee51c026c49dc4b9f59479e8ca77
ca93e1c7dc98ca126438c4772f9c3377de5f628b612fe3dc8f72709d5e5bbdb0
a27fb5b32662f0624be8b96aaab8e8b09933dee0c996009970d8f7348d5df2142eb23f9215c35c95640a767399dce4636122dc81e58b5cc15ff3ffa3a6a86514
Family | icedid |
Campaign | 2608516171 |
C2 |
234willkids.uno |
Family | icedid |
rsa_pubkey.plain |
|
Family | icedid |
Botnet | 478101429 |
C2 |
gabry4saver.website usser234dopper.space tasyateles.club jrburnit.website |
Attributes |
url_path /news/ |
hostsvc.dll
fcb6cf720c45b554c5f689fa914ffd2c
63KB
4d247be7e4c3ee51c026c49dc4b9f59479e8ca77
ca93e1c7dc98ca126438c4772f9c3377de5f628b612fe3dc8f72709d5e5bbdb0
a27fb5b32662f0624be8b96aaab8e8b09933dee0c996009970d8f7348d5df2142eb23f9215c35c95640a767399dce4636122dc81e58b5cc15ff3ffa3a6a86514
IcedID is a banking trojan capable of stealing credentials.
Infostealers often target stored browser data, which can include saved credentials etc.