General

  • Target

    3a02a1c45007574927d5b8efd8fe805ac9885849c67e4b392367b3373666d0c4

  • Size

    176KB

  • Sample

    210511-xvg91flnn6

  • MD5

    63964c4e2eb6bad3591d09c708355522

  • SHA1

    df3dca69becf159b649788d3044b63687a704799

  • SHA256

    3a02a1c45007574927d5b8efd8fe805ac9885849c67e4b392367b3373666d0c4

  • SHA512

    91373858e1d3c7b6be7fbcb1dcf3a8b4d1458390077d32a5ae1d2345533d881918cd3e81d9dd153b9a1ed6e8d2365c9cdebdc21d0e598c7b133c5b80fc3b4c95

Malware Config

Extracted

Family

icedid

Campaign

861670232

C2

provokordino.space

Targets

    • Target

      3a02a1c45007574927d5b8efd8fe805ac9885849c67e4b392367b3373666d0c4

    • Size

      176KB

    • MD5

      63964c4e2eb6bad3591d09c708355522

    • SHA1

      df3dca69becf159b649788d3044b63687a704799

    • SHA256

      3a02a1c45007574927d5b8efd8fe805ac9885849c67e4b392367b3373666d0c4

    • SHA512

      91373858e1d3c7b6be7fbcb1dcf3a8b4d1458390077d32a5ae1d2345533d881918cd3e81d9dd153b9a1ed6e8d2365c9cdebdc21d0e598c7b133c5b80fc3b4c95

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks