General
-
Target
bce696b1b211de01aa009f4dfedc64c2.bin
-
Size
452KB
-
Sample
221026-xyamaagga4
-
MD5
bce696b1b211de01aa009f4dfedc64c2
-
SHA1
4a898291a21275173247ee4483b8588c67d22db4
-
SHA256
c892cf9618640c517cd8f6ac2a01b6b0970b011e4b6783c48283ad8336d52c81
-
SHA512
1acfad23bca513adbd92c767b782e4703898ee422958919056a1fc7fd7e295aac441b9fc30e018b98187821f8f44f1a800b9bbf3ce6a72e808deee18307a62c6
-
SSDEEP
6144:6U5bfQULr+agxZ49J//pZV2jCJOuIBJ0vK:6UN5vgxZ6/RmuJOuWOK
Malware Config
Extracted
icedid
2349072319
sebdgoldingor.com
Targets
-
-
Target
bce696b1b211de01aa009f4dfedc64c2.bin
-
Size
452KB
-
MD5
bce696b1b211de01aa009f4dfedc64c2
-
SHA1
4a898291a21275173247ee4483b8588c67d22db4
-
SHA256
c892cf9618640c517cd8f6ac2a01b6b0970b011e4b6783c48283ad8336d52c81
-
SHA512
1acfad23bca513adbd92c767b782e4703898ee422958919056a1fc7fd7e295aac441b9fc30e018b98187821f8f44f1a800b9bbf3ce6a72e808deee18307a62c6
-
SSDEEP
6144:6U5bfQULr+agxZ49J//pZV2jCJOuIBJ0vK:6UN5vgxZ6/RmuJOuWOK
Score10/10-
IcedID, BokBot
IcedID is a banking trojan capable of stealing credentials.
-
Blocklisted process makes network request
-