icedid | 01d9a800eeb9e2abcd1993a123d7978f0b13b7a08de4f4fc023262b02c829886 | Triage

Sharing

General

Target

7601716121.zip
Size

46KB
Sample

220621-14wy9agdc4
MD5

935ce81c01068d0df8d37062ebe46deb
SHA1

dbe602665a5bcfba8bc35e31840e707cbdc69aaf
SHA256

01d9a800eeb9e2abcd1993a123d7978f0b13b7a08de4f4fc023262b02c829886
SHA512

28fe4ba4443a4d803b47596534ac0adc67df95a0e031b9d6a3cd2a8e793ed77726ebfb5d862e1dd229190a63c18aab55c3ba5f69b9a3b814d7fe776a2909f08d

Score

10^/10

icedid 2237127122 banker core_loader trojan

Malware Config

Extracted

Family

icedid

Botnet

2237127122

C2

lokidasterreno.site

onmentalsocio.top

burgomustopr.rest

lopityr4.pw

Attributes

auth_var
2
url_path
/posts/

Targets

- Target
  
  5ecf559360386a5e031490d714317a0507232812d44011d7ca9b304547abce20
- Size
  
  68KB
- MD5
  
  65a362753c4f3fd3f6c84cf6746bb2dc
- SHA1
  
  fd19fef81843404179c54f475e21cbb3c88e6327
- SHA256
  
  5ecf559360386a5e031490d714317a0507232812d44011d7ca9b304547abce20
- SHA512
  
  496dbc29f1396391fa194e51c658068ffac3078d72ea2a52d6464793b5dffe0231a62ac284262502ade3fd25cf23341ade2f6ae21c0ab6ca8f19e82f9c0cf616
Score

10^/10

icedid 2237127122 banker core_loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2237127122bankercore_loadertrojan

behavioral2

icedid2237127122bankercore_loadertrojan