General

  • Target

    352fbf0bc54cdd36e9241b632267002e0cb9568505e9ec31e8aeb0af7b5d7fb4

  • Size

    238KB

  • Sample

    210511-z28pm5pcpx

  • MD5

    e6cd3ba39aeb24752ed6370ce08d1411

  • SHA1

    7d97f7362f8927b7dccdea6dc6b116deb2692ce5

  • SHA256

    352fbf0bc54cdd36e9241b632267002e0cb9568505e9ec31e8aeb0af7b5d7fb4

  • SHA512

    1b1e6be8f1ddecd1c9b5cc5805a4c96fd64d2ed96c640512e80d588b054a2b3b8eb5755b93fe094a7339211bc70900b119ddcec0fd3aa8adceadeff25f44ab31

Malware Config

Extracted

Family

icedid

Campaign

3042509645

C2

barcafokliresd.top

Targets

    • Target

      352fbf0bc54cdd36e9241b632267002e0cb9568505e9ec31e8aeb0af7b5d7fb4

    • Size

      238KB

    • MD5

      e6cd3ba39aeb24752ed6370ce08d1411

    • SHA1

      7d97f7362f8927b7dccdea6dc6b116deb2692ce5

    • SHA256

      352fbf0bc54cdd36e9241b632267002e0cb9568505e9ec31e8aeb0af7b5d7fb4

    • SHA512

      1b1e6be8f1ddecd1c9b5cc5805a4c96fd64d2ed96c640512e80d588b054a2b3b8eb5755b93fe094a7339211bc70900b119ddcec0fd3aa8adceadeff25f44ab31

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Matrix

Tasks