icedid | a558298cf95983b5672af953e927c00d1adfc915dc0f70e153ebaf986e728abd | Triage

Sharing

General

Target

Inv_03_02_Copy#275.zip
Size

40KB
Sample

230302-xfrsvaec52
MD5

f34c5a1a570cb4525a6a7cbcded2d5fa
SHA1

dc3c4db484bd4173f4b9c0f33cfb8f65ab0d72bf
SHA256

a558298cf95983b5672af953e927c00d1adfc915dc0f70e153ebaf986e728abd
SHA512

e4a292d8c71a5bb60df9824e6194688abfcd9679ea9636ecaffa643f76176d75a0f68a7400ebec2808c899bf6ab7f59d2b3b1b0971b47ba0f85056209ce35561
SSDEEP

768:WA+mTauxWT03ossAdGQ0Br7YMA5I9TY6569BaL8S+uZN8El:WA+HuQA4jAdJ0BrjjNKaL8HuZeq

Score

10^/10

icedid 2611621973 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

2611621973

C2

aproillionsgif.com

Targets

- Target
  
  Inv_03_02_Copy#275.exe
- Size
  
  67KB
- MD5
  
  12a967ddc19011303dd6f4a9f97f0731
- SHA1
  
  5620e5f31490847e38c307117a1af368b524c711
- SHA256
  
  cab63e05a4a6f0b825acb077ba6a1bbb3657488c584882124a31c45dfb39515d
- SHA512
  
  7962c85b84e0ec88ff9073d0ae325a526d8267635bde7f5b686ace68bbf76f915c35ade7961e995d133729e8c8599a4d5899973f6585f8cb694f2dd3e9e5698c
- SSDEEP
  
  1536:+jT5oYeZmNxq+P8OWlO/7O/TAYQMDfnslYdHmBeOrVTkPxLFe:+jTKYQmPxqOOstrVgxxe
Score

10^/10

icedid 2611621973 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2611621973bankerloadertrojan

behavioral2

icedid2611621973bankerloadertrojan