General

  • Target

    Setup_Win_02-02-2023_18-14-35.zip

  • Size

    825KB

  • Sample

    230202-w4x44abf79

  • MD5

    b9bff9e98fd687086b5e1dad7c57ea32

  • SHA1

    47d9944f06ced9d376de8fdaa1417cd7211c74ba

  • SHA256

    40bbcb27f601b5500428fa56d0c24617171706ed69c9e1ee205150a1e22f5321

  • SHA512

    3cec42ce510dfa07efd59fc14c693bc3ba36a9622c44363a3277ef4ce0a463d1ef8d8ee58f90f2fba2861bc46afdd779394d2413bfb9007033365b6d5940de86

  • SSDEEP

    3072:WpxR7Q7+O709OQv6pMz/BPnP6tINspRmIo:WpxC097z/BPnCtispRmh

Malware Config

Extracted

Family

icedid

Campaign

1398120717

C2

loliapitudet.com

Targets

    • Target

      Setup_Win_02-02-2023_18-14-32.exe

    • Size

      703.3MB

    • MD5

      b617767ca55193deb6b154bd167353c8

    • SHA1

      34d49c2b1e2a48d8e1e889d502cacfdc0e0b22da

    • SHA256

      16aec3e3b7581425211c79ea59edee00e791315a8eab47a244c371d895617fac

    • SHA512

      546730b3cf1ec4a2bb8c819c31fa7cd37b821bc54b98735cbbb85c1375d7fa51baba156603acb024838bd0fc0db097520536604d6738fb6cbddb4c4f3e5c4ae5

    • SSDEEP

      6144:mzXaEsb8gUAWTibyk0Px1ee2k6S94s68dTcEgDAIpiWe97TzGux0siC6pEOEGElW:m29c+P0Z9tm7sdG

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Matrix

Tasks