General

  • Target

    2dda6e9671ec7a2dc5aa900068ac030a.exe

  • Size

    420KB

  • Sample

    221121-tf7yaage86

  • MD5

    2dda6e9671ec7a2dc5aa900068ac030a

  • SHA1

    2597ad327a32c3266af8dab8b3387c2e06e42a8e

  • SHA256

    3fb07a2e084bdb1180626b3ba7e667951a3bf7a1bea3514b81057e6294cc25e2

  • SHA512

    8d0f874c04bf19dfd5ffbc97ff6f14f51374af11ca3b4f2151190c7c129bdbeb2119fcdbf5c8918d9ac17070d192e1054caad0f48f4c2aab946a74fa369262dd

  • SSDEEP

    3072:3TUhSnsjprwl2t1tFGIdRDhpJBlN7V3lLlF6plqlHimU3ejKvhsvjhheNKPoB+fx:RI5tFB7VamU3MkSVheNKPu+ffW2/

Malware Config

Extracted

Family

icedid

Campaign

198436519

C2

sciiultaelinoza.com

Targets

    • Target

      2dda6e9671ec7a2dc5aa900068ac030a.exe

    • Size

      420KB

    • MD5

      2dda6e9671ec7a2dc5aa900068ac030a

    • SHA1

      2597ad327a32c3266af8dab8b3387c2e06e42a8e

    • SHA256

      3fb07a2e084bdb1180626b3ba7e667951a3bf7a1bea3514b81057e6294cc25e2

    • SHA512

      8d0f874c04bf19dfd5ffbc97ff6f14f51374af11ca3b4f2151190c7c129bdbeb2119fcdbf5c8918d9ac17070d192e1054caad0f48f4c2aab946a74fa369262dd

    • SSDEEP

      3072:3TUhSnsjprwl2t1tFGIdRDhpJBlN7V3lLlF6plqlHimU3ejKvhsvjhheNKPoB+fx:RI5tFB7VamU3MkSVheNKPu+ffW2/

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Matrix

Tasks