icedid | 6131a823aae3c69c692a53d9b3ff0ccd567f4205aec626d6c776ae0f0e14b195 | Triage

Sharing

General

Target

4700d5d4589f7f02cf150c87befa334c.dll.exe
Size

452KB
Sample

220927-zm5dmaffdp
MD5

4700d5d4589f7f02cf150c87befa334c
SHA1

5935382554f4873b623b98e3f45056c0c556ff5a
SHA256

6131a823aae3c69c692a53d9b3ff0ccd567f4205aec626d6c776ae0f0e14b195
SHA512

ff7ff1301c803eb3566b7dd956bb3950f46c682855ae2b9f1f83a3e4f7d95e6f0e2b53251bb014b861d838c84902549a05d7fa68c8c91cef27fd55921662d665
SSDEEP

6144:kpx0vT9y1YsVoF/JOuA++L56ZdLVBtVb5:8xKT9X/JOuAD6ZdR

Score

10^/10

icedid 2349072319 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

2349072319

C2

sebdgoldingor.com

Targets

- Target
  
  4700d5d4589f7f02cf150c87befa334c.dll.exe
- Size
  
  452KB
- MD5
  
  4700d5d4589f7f02cf150c87befa334c
- SHA1
  
  5935382554f4873b623b98e3f45056c0c556ff5a
- SHA256
  
  6131a823aae3c69c692a53d9b3ff0ccd567f4205aec626d6c776ae0f0e14b195
- SHA512
  
  ff7ff1301c803eb3566b7dd956bb3950f46c682855ae2b9f1f83a3e4f7d95e6f0e2b53251bb014b861d838c84902549a05d7fa68c8c91cef27fd55921662d665
- SSDEEP
  
  6144:kpx0vT9y1YsVoF/JOuA++L56ZdLVBtVb5:8xKT9X/JOuAD6ZdR
Score

10^/10

icedid 2349072319 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2349072319bankerloadertrojan

behavioral2

icedid2349072319bankerloadertrojan