← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
A Visualizza into Recent IcedID Campaigns
WHITE September AlienVault 2022-10-12 Modified: 2022-11-10
12
IOCs
MEDIUM VOLUME
Cybersecurity professionals should continue to pay attention to IcedID as it remains one of the top dropper malware in the threat landscape and has no signs of slowing down. It is typically delivered via email spamming campaigns, with new campaigns being delivered on a near-daily basis that leverage an assortment of different lure types and execution processes.
icedidcobalt strikelnk fileprivateloaderchm filebokbotiso filec2 communicationphishingmaldoczip file
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Cobalt Strike IcedID
Indicators of Compromise (12)
All domain URL
TYPEINDICATORDESCRIPTIONCREATED
domain alkaliodplus.com 2022-10-12
domain allozelkot.com 2022-10-12
domain audifastinggip.com 2022-10-12
domain kolinandod.com 2022-10-12
domain nikolandfantazy.com 2022-10-12
domain pildofraften.com 2022-10-12
domain qvantumbrakesz.com 2022-10-12
URL http://143.198.178.0 2022-10-12
domain aviadronazhed.com 2022-10-12
domain sebdgoldingor.com 2022-10-12
domain trallfasterinf.com 2022-10-12
domain zalikomanperis.com 2022-10-12
References (1)
↗ https://www.team-cymru.com/post/a-visualizza-into-recent-icedid-campaigns