Overview

overview

10

Static

static

Setup_Win_...44.exe

windows7-x64

10

Setup_Win_...44.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup_Win_19-01-2023_17-07-47.zip

  • Size

    792KB

  • Sample

    230119-vqr59ade9z

  • MD5

    43bd97797ccda969eb3c198f320611e3

  • SHA1

    bb7e663272f464098046f12fd07a974dad7925db

  • SHA256

    0dcdc08b369838eb4c6eedc5f329cfea0c9d83ee9dc83d4c55784963a694864b

  • SHA512

    bfbdf97c38dd16b35beed82365aff3442e78438addf739eb675ee7885283423cb7b66c2cb046fe4466a4db1c74f7728258607e5b566eeb6b55d5c69d2891ebff

  • SSDEEP

    3072:VsY5GpeZ4r6BVqfDzjZgq+tHR5PchxRinkI9mW:VsEZ63DahtxNcvReP9D

Score
10/10
icedid1420576768bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1420576768

C2

plutoheadingo.com

Targets

    • Target

      Setup_Win_19-01-2023_17-07-44.exe

    • Size

      700.2MB

    • MD5

      0c66537c72dad87c0b85b9cdc2c06387

    • SHA1

      95e936a3e7869e6a76fa50878aef84b1d29a6733

    • SHA256

      f510006986e83d3fa51c7332d1971d616d07161d69b6669421d9529c763133a3

    • SHA512

      d60004c5299a4243bb0835cc77766d4cae97e72437972e1432c64eca32b78ec48d6609b65d84a7c2cf27f233eba78d53689aafe5829749f4110c9f3966b3aba8

    • SSDEEP

      3072:EYL6Tcr2SC+TneerVqkzGTx1HNWg++JW6pC5piSX7+iD08RbSh0ZZfSE4S:EYL6TE2S9TeeEkzk5NNHCrSsRL9R

    Score
    10/10
    icedid1420576768bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks