icedid | 5397c0a9bed881d599e89ce303475f852ad677e248036f1b8d273051f1a50da0 | Triage

Sharing

General

Target

5397c0a9bed881d599e89ce303475f852ad677e248036f1b8d273051f1a50da0.exe
Size

596KB
Sample

221121-pg6pdshh77
MD5

14545a35632ed4da111face279f17c67
SHA1

3d557bf8f649b4a0ec328c82b4178846b5854dec
SHA256

5397c0a9bed881d599e89ce303475f852ad677e248036f1b8d273051f1a50da0
SHA512

0d8b5d935f289d33f64883a6f9523d29f2e83a4da9f00d46224ea745db7be13300d770a62052b7e924492c55297a14920c639e854973d732cc644e511af38277
SSDEEP

6144:KQJt0hn3E6U3DHpwKyLmKyLmKyLKjP0ux89vqqrDanemkfUPFQ/dA:tu1spwkkwjh8tGXkcM2

Score

10^/10

icedid 181658900 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

181658900

C2

asiksliopakt.com

Targets

- Target
  
  5397c0a9bed881d599e89ce303475f852ad677e248036f1b8d273051f1a50da0.exe
- Size
  
  596KB
- MD5
  
  14545a35632ed4da111face279f17c67
- SHA1
  
  3d557bf8f649b4a0ec328c82b4178846b5854dec
- SHA256
  
  5397c0a9bed881d599e89ce303475f852ad677e248036f1b8d273051f1a50da0
- SHA512
  
  0d8b5d935f289d33f64883a6f9523d29f2e83a4da9f00d46224ea745db7be13300d770a62052b7e924492c55297a14920c639e854973d732cc644e511af38277
- SSDEEP
  
  6144:KQJt0hn3E6U3DHpwKyLmKyLmKyLKjP0ux89vqqrDanemkfUPFQ/dA:tu1spwkkwjh8tGXkcM2
Score

10^/10

icedid 181658900 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid181658900bankerloadertrojan

behavioral2

icedid181658900bankerloadertrojan