icedid | ac814b4b41b44ffda71d75579117464c3fb105f226b40b767ef14255a55f2eb7 | Triage

Sharing

General

Target

cd8286c6f0e799f84263776de34428ca.dll.exe
Size

317KB
Sample

220926-ww16sabfd4
MD5

cd8286c6f0e799f84263776de34428ca
SHA1

41b6a644081fbf74182b8e16eda4ce614fe2cff8
SHA256

ac814b4b41b44ffda71d75579117464c3fb105f226b40b767ef14255a55f2eb7
SHA512

3a87fada88d536aa3ac65963fa948689e30264242b44adbee05ae3f52ed1754dc90c80a3bd956f04f9ee12a7209d0bb1721276a7950f91c62de6636ad160505f
SSDEEP

6144:sJIId9kP7+sYAdo9ZvHsJge7lfh+mQVri2VrpgEhBvp:A9kP7I/sm2lfv29pgEhhp

Score

10^/10

icedid 1023645195 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1023645195

C2

trallfasterinf.com

Targets

- Target
  
  cd8286c6f0e799f84263776de34428ca.dll.exe
- Size
  
  317KB
- MD5
  
  cd8286c6f0e799f84263776de34428ca
- SHA1
  
  41b6a644081fbf74182b8e16eda4ce614fe2cff8
- SHA256
  
  ac814b4b41b44ffda71d75579117464c3fb105f226b40b767ef14255a55f2eb7
- SHA512
  
  3a87fada88d536aa3ac65963fa948689e30264242b44adbee05ae3f52ed1754dc90c80a3bd956f04f9ee12a7209d0bb1721276a7950f91c62de6636ad160505f
- SSDEEP
  
  6144:sJIId9kP7+sYAdo9ZvHsJge7lfh+mQVri2VrpgEhBvp:A9kP7I/sm2lfv29pgEhhp
Score

10^/10

icedid 1023645195 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1023645195bankerloadertrojan

behavioral2

icedid1023645195bankerloadertrojan