icedid | 0d544614b47400768cf210c2e4d1a298e5cae36820c7b1b6327bb67b8e3ea8cb | Triage

Sharing

General

Target

0d544614b47400768cf210c2e4d1a298e5cae36820c7b1b6327bb67b8e3ea8cb.exe
Size

375KB
Sample

221203-gcp7vada6t
MD5

d24053e88149fee100f6d0fd88a5c118
SHA1

69084f340ff60656df3a73fb9d0e3cffee9ae667
SHA256

0d544614b47400768cf210c2e4d1a298e5cae36820c7b1b6327bb67b8e3ea8cb
SHA512

cf8331b06f6d34b19ca817cc77c1854e6319456cc4f2d4753911711d98b439f0204a6f2278a73c521d43cf462fcf2b49a722fa7809af2954cc0e1721db4b4734
SSDEEP

6144:/lvrP7tlUH7tBtGop4h1ee2k6Sn4s68dTcEgDAIpiWe97TzGux0siC6pEOEGElVP:9vrPsSo9tmNhdhr

Score

10^/10

icedid 1313163077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1313163077

C2

oilcardirtoz.com

Targets

- Target
  
  0d544614b47400768cf210c2e4d1a298e5cae36820c7b1b6327bb67b8e3ea8cb.exe
- Size
  
  375KB
- MD5
  
  d24053e88149fee100f6d0fd88a5c118
- SHA1
  
  69084f340ff60656df3a73fb9d0e3cffee9ae667
- SHA256
  
  0d544614b47400768cf210c2e4d1a298e5cae36820c7b1b6327bb67b8e3ea8cb
- SHA512
  
  cf8331b06f6d34b19ca817cc77c1854e6319456cc4f2d4753911711d98b439f0204a6f2278a73c521d43cf462fcf2b49a722fa7809af2954cc0e1721db4b4734
- SSDEEP
  
  6144:/lvrP7tlUH7tBtGop4h1ee2k6Sn4s68dTcEgDAIpiWe97TzGux0siC6pEOEGElVP:9vrPsSo9tmNhdhr
Score

10^/10

icedid 1313163077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1313163077bankerloadertrojan

behavioral2

icedid1313163077bankerloadertrojan