General
Target

373efeaaf3f5dbdec48866c9e5f5da724066e7b5828681e37bc47ded4e081418

Size

148KB

Sample

220502-s3lg5agdf2

Score
10/10
MD5

d386b9f849baec0bd8f5f9992419de14

SHA1

2d4d9e7f85306c68cf8e9a6b08753bd10b173744

SHA256

373efeaaf3f5dbdec48866c9e5f5da724066e7b5828681e37bc47ded4e081418

SHA512

a9e5b22d258dc047cf0d0f69170e2f2013eab29fa4cedfb29e604ade49e7724c30d75d75f5e283fde74ca3222c80e88860969c5034684bf86a8b6f968d5629ca

Malware Config

Extracted

Family

icedid

C2

justiceminister.best

fivejudgescatholic.cyou

Targets
Target

373efeaaf3f5dbdec48866c9e5f5da724066e7b5828681e37bc47ded4e081418

MD5

d386b9f849baec0bd8f5f9992419de14

Filesize

148KB

Score
10/10
SHA1

2d4d9e7f85306c68cf8e9a6b08753bd10b173744

SHA256

373efeaaf3f5dbdec48866c9e5f5da724066e7b5828681e37bc47ded4e081418

SHA512

a9e5b22d258dc047cf0d0f69170e2f2013eab29fa4cedfb29e604ade49e7724c30d75d75f5e283fde74ca3222c80e88860969c5034684bf86a8b6f968d5629ca

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID Second Stage Loader

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          N/A

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10