General

  • Target

    5183377532157952.zip

  • Size

    175KB

  • Sample

    211229-vgn28sfah7

  • MD5

    b3dde6962051bcb5b285b39ee0b0dff1

  • SHA1

    9bd59a9ea4fdbc8f4b5f9fe6b9f4c40ab589b596

  • SHA256

    3f62a206e4f4f7bcd083e0b34400e802c9d63fb6e8dd7518bb7f81d3b21d4095

  • SHA512

    628c58c37dbb6580f6a548ab800c6069394f0ee3f60aea5da0341e16f1d5e632ade3f79de4482d3e6ce4cd8c0313d8f787b8e6ff2635a055f7f2619760be4b2b

Malware Config

Extracted

Family

icedid

Campaign

464168897

C2

eriumhasappar.club

Targets

    • Target

      04506aa64e3dc042853173e6dde04019095c1c860dbe354427b585af2ef32a5f

    • Size

      398KB

    • MD5

      fdc19209c75a6806635987f0afe70b6a

    • SHA1

      38d3dc4282408fec814b1ea3a808ef26c03bdfcd

    • SHA256

      04506aa64e3dc042853173e6dde04019095c1c860dbe354427b585af2ef32a5f

    • SHA512

      8c101caf21364b5de3bc09652342da6719e5a1032e44b79cba39db0b57981816182da4db11214d9b52b654fa756b25c233d8e2757110f26ae0ed22e5eb83b95c

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Enterprise v6

Tasks