General

  • Target

    a6eb8b36fb09d02307354c26f5c2e0e08ca5bf081f0f5a33f534f9d93f42e1ef.exe

  • Size

    548KB

  • Sample

    221121-pg6pdshh78

  • MD5

    2a0df7e0124f8036b6a4cd5925d51df9

  • SHA1

    9df358bc6c6005decd3310aa10f3acfe021de0bb

  • SHA256

    a6eb8b36fb09d02307354c26f5c2e0e08ca5bf081f0f5a33f534f9d93f42e1ef

  • SHA512

    61ec4a8e2a75b326a599f9202dd4ede294b295c082a47e410e5e801aee00330054b72967014ae83e742be436f7e51b2f49f38b928f5e1c109948e2f1455f0979

  • SSDEEP

    6144:lQJt0hn3E6U3DHpwKyLmKyLmKyLbZd2UbTMkTAXgJGxv:2u1spwkkHdn3MkEgq

Malware Config

Extracted

Family

icedid

Campaign

181658900

C2

asiksliopakt.com

Targets

    • Target

      a6eb8b36fb09d02307354c26f5c2e0e08ca5bf081f0f5a33f534f9d93f42e1ef.exe

    • Size

      548KB

    • MD5

      2a0df7e0124f8036b6a4cd5925d51df9

    • SHA1

      9df358bc6c6005decd3310aa10f3acfe021de0bb

    • SHA256

      a6eb8b36fb09d02307354c26f5c2e0e08ca5bf081f0f5a33f534f9d93f42e1ef

    • SHA512

      61ec4a8e2a75b326a599f9202dd4ede294b295c082a47e410e5e801aee00330054b72967014ae83e742be436f7e51b2f49f38b928f5e1c109948e2f1455f0979

    • SSDEEP

      6144:lQJt0hn3E6U3DHpwKyLmKyLmKyLbZd2UbTMkTAXgJGxv:2u1spwkkHdn3MkEgq

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Matrix

Tasks