General

  • Target

    571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff

  • Size

    224KB

  • Sample

    220520-hh5p6ahdhk

  • MD5

    1fee3a782c91b1b7e77a753d3b5f7897

  • SHA1

    32ffa53978772bf7cd108c741879acd50b68b24d

  • SHA256

    571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff

  • SHA512

    1b76cc05f3f13e85059b1c43b88a993d86f83d0726fcf9dbbbcb826187611cb37f3f4585fdad66195f6748b38817ec808dc3adaf6794825a67fd191584f2cd58

Malware Config

Extracted

Family

icedid

C2

loadbudapest.casa

Targets

    • Target

      571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff

    • Size

      224KB

    • MD5

      1fee3a782c91b1b7e77a753d3b5f7897

    • SHA1

      32ffa53978772bf7cd108c741879acd50b68b24d

    • SHA256

      571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff

    • SHA512

      1b76cc05f3f13e85059b1c43b88a993d86f83d0726fcf9dbbbcb826187611cb37f3f4585fdad66195f6748b38817ec808dc3adaf6794825a67fd191584f2cd58

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks