icedid | b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936 | Triage

Sharing

General

Target

b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe
Size

556KB
Sample

221121-phra4adf4z
MD5

fba0b19958c1110cb7018c948527e7db
SHA1

84c8aaaa6e85a7a75e84b23e26d57e9e904a197b
SHA256

b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936
SHA512

e94a042ba5b26fe08d7e424b62de52e9c99ad660a55ed69462750bb7d1e6c7d8b369f8bf41efad96c8a69061ee2060029246ecac84698d5027ae92c616016d04
SSDEEP

6144:PQJt0hn3E6U3DHpwKyLmKyLmKyLYpLVDq+z6wsdsYqWkMP2QW8jqzf:Qu1spwkkqidS/MP2P3

Score

10^/10

icedid 181658900 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

181658900

C2

asiksliopakt.com

Targets

- Target
  
  b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe
- Size
  
  556KB
- MD5
  
  fba0b19958c1110cb7018c948527e7db
- SHA1
  
  84c8aaaa6e85a7a75e84b23e26d57e9e904a197b
- SHA256
  
  b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936
- SHA512
  
  e94a042ba5b26fe08d7e424b62de52e9c99ad660a55ed69462750bb7d1e6c7d8b369f8bf41efad96c8a69061ee2060029246ecac84698d5027ae92c616016d04
- SSDEEP
  
  6144:PQJt0hn3E6U3DHpwKyLmKyLmKyLYpLVDq+z6wsdsYqWkMP2QW8jqzf:Qu1spwkkqidS/MP2P3
Score

10^/10

icedid 181658900 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid181658900bankerloadertrojan

behavioral2

icedid181658900bankerloadertrojan