General

  • Target

    f04702e8f5679e27e840a3a8f036fa1c459193d03aea2f504ae61492e8362b69

  • Size

    79KB

  • Sample

    210324-985dlgeexa

  • MD5

    1d5ba0a86de953a253a5b2d7a36658a1

  • SHA1

    2c89e83f97c942b33c594d8a8f9fe8fd5cc57610

  • SHA256

    f04702e8f5679e27e840a3a8f036fa1c459193d03aea2f504ae61492e8362b69

  • SHA512

    853f604227f4b6a7beefb06c9bbbd51c76e32c1782f7c46336daffce35abfe78f5f532e0acb789a88d3abd5c1604e117a99bac7507a96ea163085823cd46dbfa

Malware Config

Extracted

Family

icedid

Campaign

1211238709

C2

912caporers.fun

Targets

    • Target

      f04702e8f5679e27e840a3a8f036fa1c459193d03aea2f504ae61492e8362b69

    • Size

      79KB

    • MD5

      1d5ba0a86de953a253a5b2d7a36658a1

    • SHA1

      2c89e83f97c942b33c594d8a8f9fe8fd5cc57610

    • SHA256

      f04702e8f5679e27e840a3a8f036fa1c459193d03aea2f504ae61492e8362b69

    • SHA512

      853f604227f4b6a7beefb06c9bbbd51c76e32c1782f7c46336daffce35abfe78f5f532e0acb789a88d3abd5c1604e117a99bac7507a96ea163085823cd46dbfa

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks