Overview

overview

10

Static

static

SetupWin24...50.exe

windows7-x64

10

SetupWin24...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SetupWin24-01-202317-01-50.exe

  • Size

    334KB

  • Sample

    230125-hzyceagh5w

  • MD5

    2a11a124eb354924c974b9497e673182

  • SHA1

    dbce2057099fed107891418d7d3ac65151f79a74

  • SHA256

    3de8568bc332a346e9a87f9f360c4b1942ba48c2c5ed655e8a2a608fa67d498d

  • SHA512

    d507801b069bac0323d0e76259834f2d7585d540cb45eba04324533b8fcd45757e3ae8294cc1de7904cb9099a4c5484c9b8d95776e5216e89b45a1b6fcd432cc

  • SSDEEP

    6144:CAHUFNIhsCZaNuaG8Hya5EDZObAnvx7LzKJk3Y1e5KRXmQzFtYVS:3UFUvxaZnaD7+JZCS

Score
10/10
icedid3324185820bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

3324185820

C2

druidfenixis.com

Targets

    • Target

      SetupWin24-01-202317-01-50.exe

    • Size

      334KB

    • MD5

      2a11a124eb354924c974b9497e673182

    • SHA1

      dbce2057099fed107891418d7d3ac65151f79a74

    • SHA256

      3de8568bc332a346e9a87f9f360c4b1942ba48c2c5ed655e8a2a608fa67d498d

    • SHA512

      d507801b069bac0323d0e76259834f2d7585d540cb45eba04324533b8fcd45757e3ae8294cc1de7904cb9099a4c5484c9b8d95776e5216e89b45a1b6fcd432cc

    • SSDEEP

      6144:CAHUFNIhsCZaNuaG8Hya5EDZObAnvx7LzKJk3Y1e5KRXmQzFtYVS:3UFUvxaZnaD7+JZCS

    Score
    10/10
    icedid3324185820bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks