ff718494115c1feae5a567c5de525deded706b349eff53da6120824ac6f8d04d

General
Target

ff718494115c1feae5a567c5de525deded706b349eff53da6120824ac6f8d04d

Size

238KB

Sample

210506-y2jz44xbxx

Score
10 /10
MD5

5ac36824dcffee75bc9139a9437a5250

SHA1

06a766493618b5c145059419b7ad10344cc9f245

SHA256

ff718494115c1feae5a567c5de525deded706b349eff53da6120824ac6f8d04d

SHA512

d57ed48701b66944e5ed382d8c697ba4b5e4826cfbda5daa745b972238d29cc9326fbdb60089b04d09511332b3acb32f43427dcb5b0a1195747d694eff65a079

Malware Config

Extracted

Family icedid
Campaign 3042509645
C2

barcafokliresd.top

Targets
Target

ff718494115c1feae5a567c5de525deded706b349eff53da6120824ac6f8d04d

MD5

5ac36824dcffee75bc9139a9437a5250

Filesize

238KB

Score
10/10
SHA1

06a766493618b5c145059419b7ad10344cc9f245

SHA256

ff718494115c1feae5a567c5de525deded706b349eff53da6120824ac6f8d04d

SHA512

d57ed48701b66944e5ed382d8c697ba4b5e4826cfbda5daa745b972238d29cc9326fbdb60089b04d09511332b3acb32f43427dcb5b0a1195747d694eff65a079

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10