General
Target

4261a1a3538cb26fa745dd998aa00ba61ff0ee89e805530d986ada312cb59404

Size

297KB

Sample

220503-anhhtadcc8

Score
10/10
MD5

ab3ba25d3a12e6b33a02ef6173ef29df

SHA1

7c9efbd2a29633e095f6b8e55ff784937108bbff

SHA256

4261a1a3538cb26fa745dd998aa00ba61ff0ee89e805530d986ada312cb59404

SHA512

aa223e47cfb0083de0c2992f5f6347848a7fb37dc899addcffa01c8dd34910fa1a01f9997178ed5fa8d05f35ad55b2a8d314cc83da1a5905929809c9a9ce9f65

Malware Config

Extracted

Family

icedid

C2

filopipilo.top

fihokiliopo.pw

Targets
Target

4261a1a3538cb26fa745dd998aa00ba61ff0ee89e805530d986ada312cb59404

MD5

ab3ba25d3a12e6b33a02ef6173ef29df

Filesize

297KB

Score
10/10
SHA1

7c9efbd2a29633e095f6b8e55ff784937108bbff

SHA256

4261a1a3538cb26fa745dd998aa00ba61ff0ee89e805530d986ada312cb59404

SHA512

aa223e47cfb0083de0c2992f5f6347848a7fb37dc899addcffa01c8dd34910fa1a01f9997178ed5fa8d05f35ad55b2a8d314cc83da1a5905929809c9a9ce9f65

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID Second Stage Loader

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          N/A

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10