icedid | 9536f6a25cbaf7bf71d44f6cad875561d696f129f9d62cbee7581453c6013906 | Triage

Sharing

General

Target

96614e82986f76b12dd396a986437dc4.dll.exe
Size

317KB
Sample

220926-s7mkzsbca9
MD5

96614e82986f76b12dd396a986437dc4
SHA1

5d6afa5d20ece41f062cc22330406c83c08179b5
SHA256

9536f6a25cbaf7bf71d44f6cad875561d696f129f9d62cbee7581453c6013906
SHA512

1da01d068421e6d1ad85090295fea2716d424e03e4b41ca6640cc1e22b26478da20b2c3a70a37b43295112aca03faa1eb6b3f277f2ea3ced2334e2e3719cdb46
SSDEEP

6144:iiaIMPl3fdywZzWsIRhcY2EmQ77BkP7+sPI1AF+:iiaxP58X2ikP7U1Ak

Score

10^/10

icedid 1023645195 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1023645195

C2

trallfasterinf.com

Targets

- Target
  
  96614e82986f76b12dd396a986437dc4.dll.exe
- Size
  
  317KB
- MD5
  
  96614e82986f76b12dd396a986437dc4
- SHA1
  
  5d6afa5d20ece41f062cc22330406c83c08179b5
- SHA256
  
  9536f6a25cbaf7bf71d44f6cad875561d696f129f9d62cbee7581453c6013906
- SHA512
  
  1da01d068421e6d1ad85090295fea2716d424e03e4b41ca6640cc1e22b26478da20b2c3a70a37b43295112aca03faa1eb6b3f277f2ea3ced2334e2e3719cdb46
- SSDEEP
  
  6144:iiaIMPl3fdywZzWsIRhcY2EmQ77BkP7+sPI1AF+:iiaxP58X2ikP7U1Ak
Score

10^/10

icedid 1023645195 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1023645195bankerloadertrojan

behavioral2

icedid1023645195bankerloadertrojan