icedid | 79b34b9a6a93b06d52b12d2be08850eb3c8cfcc5c22fbd9e5facd42b1bfcddd0 | Triage

Sharing

General

Target

Setup_Win_10-02-2023_18-19-51.zip
Size

930KB
Sample

230211-jrj1gshf79
MD5

063246ba8a73e89237250a818211e1ae
SHA1

6c2392b6358be7387a6d8512ce46e9ac8c377c21
SHA256

79b34b9a6a93b06d52b12d2be08850eb3c8cfcc5c22fbd9e5facd42b1bfcddd0
SHA512

59399359db5e8dac5390101515806e09fd642cf17a4a515f51d79f223874e6826d239425a3ec7334518652b9515012ca1a3d2164bc63a9159340e08b2b45c7d8
SSDEEP

6144:FKriEydUu7SralLFAdhDirZz3KmAcvbMljw5XvGM6p:61EUuWrGBAd0sZczMl05xW

Score

10^/10

icedid 1494101503 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1494101503

C2

staringgeipod.com

Targets

- Target
  
  Setup_Win_10-02-2023_18-19-50.exe
- Size
  
  708.5MB
- MD5
  
  261631519ce1a1bb69b1a04a7700edcb
- SHA1
  
  ac807c97c169e277250f6ba3223abb6767e6c579
- SHA256
  
  dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74
- SHA512
  
  ad292300c61ac749c14f2c75fcee3734147379583d595871a3f379657a2d02214cde3fcc5cbc260d5e96da777ceea0067daec7945ec56c63007fd8b201a60a34
- SSDEEP
  
  6144:7Zgq7M6B8PwXaS6Wm8ftjcpRP8xrc6osT1o+EcxJkdfuS3tfkYohtFtvbqSnYkAC:VgEM6BNhm8flcpRPKb1hgHofFtbxqy
Score

10^/10

icedid 1494101503 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1494101503bankerloadertrojan

behavioral2

icedid1494101503bankerloadertrojan