General

  • Target

    e69be5090c016693c2ce32c1715ea63343b0aa0786b550e0b8e7e03cafd8192c

  • Size

    150KB

  • Sample

    211130-y891kagdcq

  • MD5

    86ffc3e8109c063899c64fc89d971607

  • SHA1

    044553d2951157f10cbd308bbd655b8b123914ee

  • SHA256

    e69be5090c016693c2ce32c1715ea63343b0aa0786b550e0b8e7e03cafd8192c

  • SHA512

    35cd134e0a735b52cb6c6f2a47556a315af242cb3720f0c1233647e0375137e588e4e7d4ac874b5ede37db572e0546774764eff4df110b3c2bafa75e26a9a30a

Malware Config

Extracted

Family

icedid

Campaign

1677997313

C2

nermorell.com

Targets

    • Target

      e69be5090c016693c2ce32c1715ea63343b0aa0786b550e0b8e7e03cafd8192c

    • Size

      150KB

    • MD5

      86ffc3e8109c063899c64fc89d971607

    • SHA1

      044553d2951157f10cbd308bbd655b8b123914ee

    • SHA256

      e69be5090c016693c2ce32c1715ea63343b0aa0786b550e0b8e7e03cafd8192c

    • SHA512

      35cd134e0a735b52cb6c6f2a47556a315af242cb3720f0c1233647e0375137e588e4e7d4ac874b5ede37db572e0546774764eff4df110b3c2bafa75e26a9a30a

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

MITRE ATT&CK Matrix

Tasks