Overview

overview

10

Static

static

iced_refactor.exe

windows7_x64

10

iced_refactor.exe

windows10-2004_x64

10
General
Target

iced_refactor.bin

Size

142KB

Sample

220430-sjp17sechl

Score
10/10
MD5

17091a1e444f306b928d69f2b905bc8b

SHA1

1078744833050626e9681c7c233c3a0963a0b559

SHA256

76cd290b236b11bd18d81e75e41682208e4c0a5701ce7834a9e289ea9e06eb7e

SHA512

4a62f6a289f06b90d6ca080793cf4ae85e1adca3c2d83c66375ae6458f8ed9d58d7e57649634d7e4a722e7c1f252156883641c822590d38c70d9dbadec6fa29d

Malware Config

Extracted

Family

icedid
C2

boldidiotruss.xyz

nizaoplov.xyz

153ishak.best

ilu21plane.xyz
Targets
Target

iced_refactor.bin

MD5

17091a1e444f306b928d69f2b905bc8b

Filesize

142KB

Score
10/10
SHA1

1078744833050626e9681c7c233c3a0963a0b559

SHA256

76cd290b236b11bd18d81e75e41682208e4c0a5701ce7834a9e289ea9e06eb7e

SHA512

4a62f6a289f06b90d6ca080793cf4ae85e1adca3c2d83c66375ae6458f8ed9d58d7e57649634d7e4a722e7c1f252156883641c822590d38c70d9dbadec6fa29d

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID Second Stage Loader

    Tags

Related Tasks

behavioral1behavioral2
MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          N/A

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10