icedid | f178abf5131c3eaf68a1584c2759d8b29418a8aa5b9f95bfd1def0be2c23c97e | Triage

Sharing

General

Target

Setup_Win_21-01-2023_17-35-40.zip
Size

928KB
Sample

230122-ptw1qaga49
MD5

388838c3eb36d2fa0bdcd9e1e9919676
SHA1

2aa5fdeb9749ae7bd7e2ea31be71097d4980b4db
SHA256

f178abf5131c3eaf68a1584c2759d8b29418a8aa5b9f95bfd1def0be2c23c97e
SHA512

47f4439f189b00c7a163dd12ef1d776b53ef69c0ce35944b5ad4976a27a587620a8751f055f0d641359696aea13281be94ccc18ee33e7d61b89329f83c14744c
SSDEEP

6144:hjIoF1DbuRZbZYa+SxVK0WWfMKlz/4i7k0To4cPwV:lF1WRlOSxczWEKuP0

Score

10^/10

icedid 1454132006 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1454132006

C2

umousteraton.com

Targets

- Target
  
  Setup_Win_21-01-2023_17-35-38.exe
- Size
  
  700.6MB
- MD5
  
  a5190aa0a6899a0fe4fe13cf2e78aff3
- SHA1
  
  1d645a416d5824188b56ed8eceb9f47e2588bdbb
- SHA256
  
  d6ff180ad400b95cce06dc1e9ee54be77cfcacfb01886300c95e6467884c7ecc
- SHA512
  
  63286f0e4d3abcd3b9ff5af523e844f4ba701339f27078494123fff4455c346d53939cafe660af70f3e521b1f8f269e881a359fe43ac95770716abf60d20dcf7
- SSDEEP
  
  12288:nx4woejwB/MvGWkdRHklpGgKa/XQum4MECSH:x4w9jG/M+WkdRHklpGgKa/XQcH
Score

10^/10

icedid 1454132006 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1454132006bankerloadertrojan

behavioral2

icedid1454132006bankerloadertrojan