icedid | ae0d1fd4206395a8a700b7ff1c0261991359360a6db94410472b5798d45e1dd4 | Triage

Sharing

General

Target

b9bff9e98fd687086b5e1dad7c57ea32.bin
Size

127KB
Sample

230206-mccveagf8y
MD5

d3f1d0d98a891644f4a9e9d0080a991c
SHA1

b4f4716fdd9072ed073bf9014bfcc284b83032fd
SHA256

ae0d1fd4206395a8a700b7ff1c0261991359360a6db94410472b5798d45e1dd4
SHA512

0a52320edd84bd357dae33409dcc8b308031cc24d353a571a9faae487f5747926a3503bdc27036105d20bef416a825597033e78d5742bd52787e71300d03720e
SSDEEP

1536:xZ1sBQoXMyzTAhAk/AgFu68lVaFC6dto+N31wn1/K9Xs2GsjzBeP8LYJCGm7cy6v:TyzM9/cba86hQ+XFdK8EMlp6pbV

Score

10^/10

icedid 1398120717 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1398120717

C2

loliapitudet.com

Targets

- Target
  
  Setup_Win_02-02-2023_18-14-32.exe
- Size
  
  703.3MB
- MD5
  
  b617767ca55193deb6b154bd167353c8
- SHA1
  
  34d49c2b1e2a48d8e1e889d502cacfdc0e0b22da
- SHA256
  
  16aec3e3b7581425211c79ea59edee00e791315a8eab47a244c371d895617fac
- SHA512
  
  546730b3cf1ec4a2bb8c819c31fa7cd37b821bc54b98735cbbb85c1375d7fa51baba156603acb024838bd0fc0db097520536604d6738fb6cbddb4c4f3e5c4ae5
- SSDEEP
  
  6144:mzXaEsb8gUAWTibyk0Px1ee2k6S94s68dTcEgDAIpiWe97TzGux0siC6pEOEGElW:m29c+P0Z9tm7sdG
Score

10^/10

icedid 1398120717 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1398120717bankerloadertrojan

behavioral2

icedid1398120717bankerloadertrojan