Skip to content
Github Twitter YouTube
Lost in Security (and mostly everything else)
Skip to content
  • About me
  • My GitHub Repos
  • Packet Analysis
  • SecurityOnion
  • Challenges
Home Posts tagged "IcedID"

Tag: IcedID

2020-07-31 Deobfuscating IcedID Macro Script

Herbie Zimmerman August 2, 2020 August 2, 2020Code Deobfusc, IcedID 0

Summary ========= This is just a quick writeup of how I managed to get the macro script decoded out of what appears to be an IcedID malspam campaign based on what I am seeing from URLHaus and this tweet from @p5yb34m. The link to the artifacts for this can be…

Continue reading

Powered by Nirvana & WordPress.