icedid | 876423d4d1573e3b3408a69e320e22f87388370ae1a0e288513e6f51c412bb55 | Triage

Sharing

General

Target

Setup_Win_18-01-2023_18-07-45.zip
Size

1003KB
Sample

230118-wyjdraeg43
MD5

9a0b710c7c59f644e8d580cf957db93f
SHA1

79ce97dc067501b6abab67ed64e3c64662b562ad
SHA256

876423d4d1573e3b3408a69e320e22f87388370ae1a0e288513e6f51c412bb55
SHA512

29c3e8fcd7879b80ee0c48fc6a73b10c84a211f5dce05dbd0727340226414cade6649f6765fbad9338c87bade84907a67cb442a1119bacd675ab815f67bc85b6
SSDEEP

6144:hJYmpq2CHki0RYAyVIcJmQGargo+GACowqrEUMXtHTeJWULQkOLHT:vREkixAyTGawGUv/MOT8kG

Score

10^/10

icedid 3248465841 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3248465841

C2

qsertopinajil.com

Targets

- Target
  
  Setup_Win_18-01-2023_18-07-41.exe
- Size
  
  700.5MB
- MD5
  
  24086a64829e8779c52c8d88f595cd38
- SHA1
  
  53c48fc9ed249ad57ad1760fdab4e1eaffe10940
- SHA256
  
  955ddae323064f6aa8a31a3e33340fe6da3ac2436c2a1d12531dcad39b17c818
- SHA512
  
  75841b4f6b0e6a616874868ecdd9027530b6ed4b9c4baa4606f3e25a35572b76b2ade48486f0f85636c0390bcec0179f216af248f0bd099264ca7fbae6cd7718
- SSDEEP
  
  6144:Szzkhbh8r2y6gudO7sBdvkJ5mXWboh4cd1gJkHTrEUMXtnTeJW+LQkOLRO1N:SEhbGjyY7sncGXWbo3dnT/MKd8k1
Score

10^/10

icedid 3248465841 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3248465841bankerloadertrojan

behavioral2

icedid3248465841bankerloadertrojan