General

  • Target

    c6765b0c795af907637ebc5e0703a285b44041e96d43e81922f8601a2346cafa

  • Size

    583KB

  • Sample

    220215-hvfa2addhj

  • MD5

    7d1233f06811c1baaac3cd45ac6248f7

  • SHA1

    a8a213d13e6e91954bd7e46158bf96ef52695bfe

  • SHA256

    c6765b0c795af907637ebc5e0703a285b44041e96d43e81922f8601a2346cafa

  • SHA512

    b2e02bc7a2f66b4570493b61a70e3793e75c67d03711ea8196cff6397908941e2a69177580cba7a7022a769df3dd5fc1823115e409fd3f1d26329bfd0f26ff59

Malware Config

Extracted

Family

icedid

Campaign

412701809

C2

hdtrenity.com

Targets

    • Target

      c6765b0c795af907637ebc5e0703a285b44041e96d43e81922f8601a2346cafa

    • Size

      583KB

    • MD5

      7d1233f06811c1baaac3cd45ac6248f7

    • SHA1

      a8a213d13e6e91954bd7e46158bf96ef52695bfe

    • SHA256

      c6765b0c795af907637ebc5e0703a285b44041e96d43e81922f8601a2346cafa

    • SHA512

      b2e02bc7a2f66b4570493b61a70e3793e75c67d03711ea8196cff6397908941e2a69177580cba7a7022a769df3dd5fc1823115e409fd3f1d26329bfd0f26ff59

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

MITRE ATT&CK Matrix

Tasks