icedid | 5ac42b00b2e54151572bcb35cfdfa70ba12e16a087157668ace1ff1f527c9856 | Triage

Sharing

General

Target

5ac42b00b2e54151572bcb35cfdfa70ba12e16a087157668ace1ff1f527c9856
Size

91KB
Sample

221110-y1ejpaded2
MD5

06c5ab320d1eb766e6aa38fe181fc9ac
SHA1

1737a926f0b4312ff21d84751320d7cb7db88db0
SHA256

5ac42b00b2e54151572bcb35cfdfa70ba12e16a087157668ace1ff1f527c9856
SHA512

91b29cf8d30afe55cb19f78a2e71c61b328c86d2b5fb6c69b3386fe4ec210723825640e7295de3ca634718ee157c2f881f1230095418416fd189ed441d6df35f
SSDEEP

1536:Zet0Ij7MlNXRNRLCRw8FBR0Q6xpeweizs2Xm9+WROCzXiSLuhSig:JInMX7GweBW/0weN22briS4W

Score

10^/10

icedid 426369791 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

426369791

C2

ahilacarstrupert.com

Targets

- Target
  
  5ac42b00b2e54151572bcb35cfdfa70ba12e16a087157668ace1ff1f527c9856
- Size
  
  91KB
- MD5
  
  06c5ab320d1eb766e6aa38fe181fc9ac
- SHA1
  
  1737a926f0b4312ff21d84751320d7cb7db88db0
- SHA256
  
  5ac42b00b2e54151572bcb35cfdfa70ba12e16a087157668ace1ff1f527c9856
- SHA512
  
  91b29cf8d30afe55cb19f78a2e71c61b328c86d2b5fb6c69b3386fe4ec210723825640e7295de3ca634718ee157c2f881f1230095418416fd189ed441d6df35f
- SSDEEP
  
  1536:Zet0Ij7MlNXRNRLCRw8FBR0Q6xpeweizs2Xm9+WROCzXiSLuhSig:JInMX7GweBW/0weN22briS4W
Score

10^/10

icedid 426369791 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid426369791bankerloadertrojan

behavioral2

icedid426369791bankerloadertrojan