General
Target

f95a8ceb27ce17f5d159d75690fcb1628bf9528331aef2ffe3dac02712b67e48

Size

148KB

Sample

220503-zsw97sceg2

Score
10/10
MD5

bd9df65ccb0f5dda832c56979a33929f

SHA1

bccdaeef6f5185f8c41f9feafc743f7a5b56ed14

SHA256

f95a8ceb27ce17f5d159d75690fcb1628bf9528331aef2ffe3dac02712b67e48

SHA512

ab378d7910c16899f4ede8c12555d629ce4412d68ad7f1cda6e4b88f827b9f44d2438336c3db51b7705146d5ea852961dbe488281f83e4dc0faa7e67ef3af3f1

Malware Config

Extracted

Family

icedid

C2

justiceminister.best

fivejudgescatholic.cyou

Targets
Target

f95a8ceb27ce17f5d159d75690fcb1628bf9528331aef2ffe3dac02712b67e48

MD5

bd9df65ccb0f5dda832c56979a33929f

Filesize

148KB

Score
10/10
SHA1

bccdaeef6f5185f8c41f9feafc743f7a5b56ed14

SHA256

f95a8ceb27ce17f5d159d75690fcb1628bf9528331aef2ffe3dac02712b67e48

SHA512

ab378d7910c16899f4ede8c12555d629ce4412d68ad7f1cda6e4b88f827b9f44d2438336c3db51b7705146d5ea852961dbe488281f83e4dc0faa7e67ef3af3f1

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID Second Stage Loader

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          Score
                          N/A

                          behavioral1

                          Score
                          10/10

                          behavioral2

                          Score
                          10/10