General

  • Target

    77c7f07678e229fa33bbe7d1b6b3860016e39f50e867025cf4516686ff879015

  • Size

    636KB

  • Sample

    201113-zvs29bna2e

  • MD5

    1395c03d409320d2b2ccfe69eccb97ab

  • SHA1

    ad08f90b277be61c66f53683305435b98f64f177

  • SHA256

    77c7f07678e229fa33bbe7d1b6b3860016e39f50e867025cf4516686ff879015

  • SHA512

    783e01f979d8675d00cc7a50e91d4dcf66a5df8c14c8d1cdee70afc9b8b18d8c692cf224ae346b617fa7795d42764496813e2b2c1b06d0161da975bcebb548b9

Malware Config

Extracted

Family

icedid

C2

kostacardsplayer.pro

kostafootball.info

countrylandlords.info

landiscloudlord.red

Targets

    • Target

      77c7f07678e229fa33bbe7d1b6b3860016e39f50e867025cf4516686ff879015

    • Size

      636KB

    • MD5

      1395c03d409320d2b2ccfe69eccb97ab

    • SHA1

      ad08f90b277be61c66f53683305435b98f64f177

    • SHA256

      77c7f07678e229fa33bbe7d1b6b3860016e39f50e867025cf4516686ff879015

    • SHA512

      783e01f979d8675d00cc7a50e91d4dcf66a5df8c14c8d1cdee70afc9b8b18d8c692cf224ae346b617fa7795d42764496813e2b2c1b06d0161da975bcebb548b9

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID Second Stage Loader

MITRE ATT&CK Matrix

Tasks