icedid | d4c226ac58ba34c454b19f28e37ac582aed1b627426908ab6c3e414eff254d18 | Triage

Sharing

General

Target

Setup_Win_02-02-2023_17-33-39.zip
Size

825KB
Sample

230202-v7hm5saa4v
MD5

1502d8939005d4f5ffe73915c7df3a78
SHA1

fd7823b54a31b967148c377add460ed6b2c454b5
SHA256

d4c226ac58ba34c454b19f28e37ac582aed1b627426908ab6c3e414eff254d18
SHA512

b5695e08333fff9d383ef158203bbbf09770f609ca8744dd190bd189e1423b87a09dbbd9fdbeef16d95d860280143cc13965bf95314a86ee0765cd015646b8d2
SSDEEP

3072:slY6yvHWZq+7NMs8gNnF3fG9I9enCfKciddwQ6wY12W1Vp:sUPeq+RMsxFPEI+gKcQiQvu2aH

Score

10^/10

icedid 1398120717 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1398120717

C2

loliapitudet.com

Targets

- Target
  
  Setup_Win_02-02-2023_17-33-37.exe
- Size
  
  703.3MB
- MD5
  
  9bf0ad7befc20eb8c8c207794a7ef768
- SHA1
  
  d5aa8eb8889b358a2b4e1d5ed66176d78a108e93
- SHA256
  
  6a0e07ca3794e210132daa60ddb4adc6d4f313ea5372511e4ad7758b2d528897
- SHA512
  
  fbb79e59e1e34cab5374dd586a39952d40b14c7634d1abbf81d79440fcbec8019e84bdf368af1dc04b07178eac3e2be66f8169ecc8e0c02ea695a374bbdfc808
- SSDEEP
  
  6144:azXaEsb8gUAWTibyk0Px1ee2k6S94s68dTcEgDAIpiWe97TzGux0siC6pEOEGElW:a29c+P0Z9tm7sdG
Score

10^/10

icedid 1398120717 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1398120717bankerloadertrojan