Overview

overview

10

Static

static

Setup_Win_...44.exe

windows7-x64

10

Setup_Win_...44.exe

windows10-2004-x64

10

Resubmissions

30-01-2023 16:40

230130-t6hq3scg4z 10

28-01-2023 04:35

230128-e7x5tseb57 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Sample.zip

  • Size

    99KB

  • Sample

    230128-e7x5tseb57

  • MD5

    7999cdc31c5ec5622018e79b1bf4ea74

  • SHA1

    9070bf7c9bad325d1b502e4613a099f0a8d6b818

  • SHA256

    af2c5a402195b0667d9caf4b6c8d530f33793e0cb6c5b3a594c127ba6aaa3a21

  • SHA512

    be15ac776e3e809591155aa010d9d7d9e02b53983631f70fcce07b234acd64fc886111a5890cd2f2a702beddc40948ee0bf5e31fdcccca72aa94a7742b5b9c7b

  • SSDEEP

    3072:du3EBQ3ZLXeNQSImqgT/aY2Hq0Pr4ZVgl:w/3ZLOmhGzVusZVgl

Score
10/10
icedid1420576768bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1420576768

C2

plutoheadingo.com

Targets

    • Target

      Setup_Win_19-01-2023_18-58-44.exe

    • Size

      700.2MB

    • MD5

      14773e5586a8e8590444f95f09ed5317

    • SHA1

      9ccb8483b57305354adf9b849d4eedb91da3807f

    • SHA256

      a375fc0d3e8238b0993ce3fc60318d15ebb07d5c52d047699f418f949151b26a

    • SHA512

      aa54018c54595dcabe20da5741895c007976b20c58f789dc2a5c53bd7a5cdec337a26d8b7c6c4b9fd043f90be5dfc52848ff15c5066b76fae255f1f55d838de7

    • SSDEEP

      3072:iYL6Tcr2SC+TneerVqkzGTx1HNWg++JW6pC5piSX7+iD08RbSho9ZfSR:iYL6TE2S9TeeEkzk5NNHCrSsRPs

    Score
    10/10
    icedid1420576768bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks