icedid | f87ce6ff78202c253496ee969bbdfb9eafa505afc9dc1224a671a4c9d8a426dd | Triage

Sharing

General

Target

4c083f8420298db22d61efe48de61cc9.dll.exe
Size

358KB
Sample

220925-vp9znsggbr
MD5

4c083f8420298db22d61efe48de61cc9
SHA1

d26be83fd2c03229b0969ae7c6bf15c9a2ee9713
SHA256

f87ce6ff78202c253496ee969bbdfb9eafa505afc9dc1224a671a4c9d8a426dd
SHA512

2b21e11fca515f6922423534b4a615830c6138dce070bb4efda2f4c609bfd08579c649e855131eab7353b265b37c272dfe42905c1133ffc80949f8e6e78a1273
SSDEEP

6144:f6HdvqSwNOTzZLen7qACQ9j6pSHP7csiU302dw9qOZ:SPLQHP7AX2djOZ

Score

10^/10

icedid 2432960414 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

2432960414

C2

zalikomanperis.com

Targets

- Target
  
  4c083f8420298db22d61efe48de61cc9.dll.exe
- Size
  
  358KB
- MD5
  
  4c083f8420298db22d61efe48de61cc9
- SHA1
  
  d26be83fd2c03229b0969ae7c6bf15c9a2ee9713
- SHA256
  
  f87ce6ff78202c253496ee969bbdfb9eafa505afc9dc1224a671a4c9d8a426dd
- SHA512
  
  2b21e11fca515f6922423534b4a615830c6138dce070bb4efda2f4c609bfd08579c649e855131eab7353b265b37c272dfe42905c1133ffc80949f8e6e78a1273
- SSDEEP
  
  6144:f6HdvqSwNOTzZLen7qACQ9j6pSHP7csiU302dw9qOZ:SPLQHP7AX2djOZ
Score

10^/10

icedid 2432960414 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2432960414bankerloadertrojan

behavioral2

icedid2432960414bankerloadertrojan