b9ce680718abab18162d7358dd9717276d4d77674f699aac9f7dfc3dc2e9115b

General
Target

b9ce680718abab18162d7358dd9717276d4d77674f699aac9f7dfc3dc2e9115b

Size

382KB

Sample

220520-2m76maffc6

Score
10 /10
MD5

0ef3890b051c62c04435a5ab8cb15ec2

SHA1

c810007de17fe76f2fca134d0a1003c790a616d9

SHA256

b9ce680718abab18162d7358dd9717276d4d77674f699aac9f7dfc3dc2e9115b

SHA512

e56f43ae5a2c19f1e5b74ab5018821257aac3a5d94daa2c656d6181d33250acfed04f48d7bd678ab946d7eb48204760cb488a24f3503919b13ea7438bd1f2bc0

Malware Config

Extracted

Family icedid
C2

wloppyload.top

Targets
Target

b9ce680718abab18162d7358dd9717276d4d77674f699aac9f7dfc3dc2e9115b

MD5

0ef3890b051c62c04435a5ab8cb15ec2

Filesize

382KB

Score
10/10
SHA1

c810007de17fe76f2fca134d0a1003c790a616d9

SHA256

b9ce680718abab18162d7358dd9717276d4d77674f699aac9f7dfc3dc2e9115b

SHA512

e56f43ae5a2c19f1e5b74ab5018821257aac3a5d94daa2c656d6181d33250acfed04f48d7bd678ab946d7eb48204760cb488a24f3503919b13ea7438bd1f2bc0

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

  • IcedID First Stage Loader

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10