icedid | cc3205b396b625cd21112b9b9b36cbe98ffa6891fade5100e469a43c80ed0470 | Triage

Sharing

General

Target

cc3205b396b625cd21112b9b9b36cbe98ffa6891fade5100e469a43c80ed0470.exe
Size

703KB
Sample

220913-ljn1ksfca9
MD5

c44e334a421d10c4ea7a21aa612ebe52
SHA1

1951f709794fa56d8da36ca36a7457aae5466f9c
SHA256

cc3205b396b625cd21112b9b9b36cbe98ffa6891fade5100e469a43c80ed0470
SHA512

ef456ff0f7bd7c8a65d83e8a0c2d11a2d24552697e72597ebba10b63942a4af3aa56add4cc7ad38a6c6b204bc42cbc28fb5dcdc35add184c96f5ecdc1215336a
SSDEEP

12288:i4me5KXirf59f/a8zKd6qj1muCB119CrcIh2uJUgy822V2RkjL:i4Vrf596wK91murrcIh2uJ3y82q2RkjL

Score

10^/10

icedid 3281798692 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3281798692

C2

kolinandod.com

Targets

- Target
  
  cc3205b396b625cd21112b9b9b36cbe98ffa6891fade5100e469a43c80ed0470.exe
- Size
  
  703KB
- MD5
  
  c44e334a421d10c4ea7a21aa612ebe52
- SHA1
  
  1951f709794fa56d8da36ca36a7457aae5466f9c
- SHA256
  
  cc3205b396b625cd21112b9b9b36cbe98ffa6891fade5100e469a43c80ed0470
- SHA512
  
  ef456ff0f7bd7c8a65d83e8a0c2d11a2d24552697e72597ebba10b63942a4af3aa56add4cc7ad38a6c6b204bc42cbc28fb5dcdc35add184c96f5ecdc1215336a
- SSDEEP
  
  12288:i4me5KXirf59f/a8zKd6qj1muCB119CrcIh2uJUgy822V2RkjL:i4Vrf596wK91murrcIh2uJ3y82q2RkjL
Score

10^/10

icedid 3281798692 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3281798692bankerloadertrojan

behavioral2

icedid3281798692bankerloadertrojan