General
Target

7441fa2e313bf2a468a7aae0d116a08eccca5664fc305d452cc1407342861c44

Size

292KB

Sample

220503-zstjbafbhn

Score
10/10
MD5

400556ebd08172b4c8710928c28cf3e7

SHA1

1271634148835b3cdeadca24768ca799979291b2

SHA256

7441fa2e313bf2a468a7aae0d116a08eccca5664fc305d452cc1407342861c44

SHA512

7edd44d3e84e8fc03f6d7e92e78315820b9554e005fe99ecd8d63509952efe1c4d4beb20ee82ae4a3fa24205dc8afda6dc9737019c27ed0c7a7178c5995eafef

Malware Config

Extracted

Family

icedid

C2

pashamasha.top

pohindra.online

Targets
Target

7441fa2e313bf2a468a7aae0d116a08eccca5664fc305d452cc1407342861c44

MD5

400556ebd08172b4c8710928c28cf3e7

Filesize

292KB

Score
10/10
SHA1

1271634148835b3cdeadca24768ca799979291b2

SHA256

7441fa2e313bf2a468a7aae0d116a08eccca5664fc305d452cc1407342861c44

SHA512

7edd44d3e84e8fc03f6d7e92e78315820b9554e005fe99ecd8d63509952efe1c4d4beb20ee82ae4a3fa24205dc8afda6dc9737019c27ed0c7a7178c5995eafef

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID Second Stage Loader

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          N/A

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10