icedid | cf3ccda4faf8ee78a9d65cd7ac61283a170ef4b4f18054362c4cd2d6d3a52be8 | Triage

Resubmissions

08/03/2023, 00:19

230308-amkxjsce2s 10

05/03/2023, 07:48

230305-jnk4daga67 10

Sharing

Copy URL Twitter E-mail

General

Target

Contract_02_28_Scan#281.exe
Size

286KB
Sample

230308-amkxjsce2s
MD5

958bcd0ad0e363b5654c44eeb7e675fe
SHA1

ad524dcb31eda568b276f2af80cb3996f5c35be3
SHA256

cf3ccda4faf8ee78a9d65cd7ac61283a170ef4b4f18054362c4cd2d6d3a52be8
SHA512

26add44228437a8b2bbdaffc5b72b23dfb9e6a38dd026ce6afa6d4f6c14bb86dff83d787b1e36baf05e5b4c28c1e74a39770c15bc89a371d4caa21b9e95100de
SSDEEP

6144:bVVhBoNGz8Rf7NPTY5e3wogq3tWQKLcH1AAdUj8J96j7wWFR3rERjGeoiea8l3fe:3hBoNGz8Rf7NPTY5e3wogq3tWQKLcH1z

Score

10^/10

icedid 3277407947 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3277407947

C2

hrowerknifi.com

Targets

- Target
  
  Contract_02_28_Scan#281.exe
- Size
  
  286KB
- MD5
  
  958bcd0ad0e363b5654c44eeb7e675fe
- SHA1
  
  ad524dcb31eda568b276f2af80cb3996f5c35be3
- SHA256
  
  cf3ccda4faf8ee78a9d65cd7ac61283a170ef4b4f18054362c4cd2d6d3a52be8
- SHA512
  
  26add44228437a8b2bbdaffc5b72b23dfb9e6a38dd026ce6afa6d4f6c14bb86dff83d787b1e36baf05e5b4c28c1e74a39770c15bc89a371d4caa21b9e95100de
- SSDEEP
  
  6144:bVVhBoNGz8Rf7NPTY5e3wogq3tWQKLcH1AAdUj8J96j7wWFR3rERjGeoiea8l3fe:3hBoNGz8Rf7NPTY5e3wogq3tWQKLcH1z
Score

10^/10

icedid 3277407947 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3277407947bankerloadertrojan

behavioral2

icedid3277407947bankerloadertrojan