Overview

overview

10

Static

static

Setup_Win_...55.exe

windows7-x64

10

Setup_Win_...55.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup_Win_25-01-2023_19-51-57.zip

  • Size

    872KB

  • Sample

    230125-3smbsacg21

  • MD5

    689ff98fb6d203a9c50ed886560d2762

  • SHA1

    904e09e7442ff55e94b18b0a750a6a62e60b9d43

  • SHA256

    f582c2a696435772d3d1caafffd7257e4aefc63c56220c3079752c527156c7fb

  • SHA512

    e7cc8a395c407e47c9ca6a99701c13e115082ee30dca76fc626574c6044ab5663e69ddbd53eb10c8bb79a5adce59f4d4dbf62eae06611ed089c869df6ebea288

  • SSDEEP

    3072:EzLZfGGNcUSd0jcEFLc91p1RWN1Ub8AcKrLdyHw/uq5T/+jIA64Qf079CbMHxiGH:EfBzUdAG1DRWob80ruB64/7uDGH

Score
10/10
icedid1392658338bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1392658338

C2

nrncipalmoonw.com

Targets

    • Target

      Setup_Win_25-01-2023_19-51-55.exe

    • Size

      700.4MB

    • MD5

      d60e6077f0f708b152bd65283192c106

    • SHA1

      29398201cc756e15496e6f2bfbe533a61fe528ae

    • SHA256

      8d7661d947f0709edbddc95e0dc4f6f00f9dc0351b1d4f32ccc4ec676f1e6bcb

    • SHA512

      8088d2b3b2a7f71bfed2cac947b7faf82bc8d4aa331072b7a513f1a493b5658f2f57f590cb1314d065415b605e13c91f539500906dc302cd01f0d4535e0284a3

    • SSDEEP

      6144:CV3/TMBHsq1L4ExTXQYTLJPXZOFIy/MtpYnn/qLwI:SbMdsw4ENXrnJXy/MMqT

    Score
    10/10
    icedid1392658338bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks