icedid | b1f37eaffdacce390707b5b2623e59180a564e7288caedf54f4b287e9a368dab | Triage

Resubmissions

01-12-2021 19:17

211201-xzf6fsach3 10

Sharing

General

Target

dowNext.jpg
Size

251KB
Sample

211201-xzf6fsach3
MD5

fc4356225d58819ac447ea43d23e50dc
SHA1

0b8cf91411b541c1486c3ae04e62ff9f569f7d0c
SHA256

b1f37eaffdacce390707b5b2623e59180a564e7288caedf54f4b287e9a368dab
SHA512

a6a98032a590d741498ca45da5e1e178d34ad5aec60f1464910ab9d13a597a0e3d6a64c6730c5214d1c087a1307c80e0730634773026b501396b2c78bd7c0a8f

Score

10^/10

icedid 1892568649 banker trojan

Malware Config

Extracted

Family

icedid

Campaign

1892568649

C2

normyils.com

Targets

- Target
  
  dowNext.jpg
- Size
  
  251KB
- MD5
  
  fc4356225d58819ac447ea43d23e50dc
- SHA1
  
  0b8cf91411b541c1486c3ae04e62ff9f569f7d0c
- SHA256
  
  b1f37eaffdacce390707b5b2623e59180a564e7288caedf54f4b287e9a368dab
- SHA512
  
  a6a98032a590d741498ca45da5e1e178d34ad5aec60f1464910ab9d13a597a0e3d6a64c6730c5214d1c087a1307c80e0730634773026b501396b2c78bd7c0a8f
Score

10^/10

icedid 1892568649 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1892568649bankertrojan

behavioral2

icedid1892568649bankertrojan