icedid | 34114f371f8652edf14162b35e8b287437ae3ccdcc663336c42fe897a556b931 | Triage

Sharing

General

Target

9044436ca8ddc3ed05c5a1ab87cbdb43.bin
Size

361KB
Sample

230323-bxh2daef4w
MD5

324a469a6926ca651b8d304a31cb59ec
SHA1

79edd81bba0b63e7eb7e34ec071943207cb2b39d
SHA256

34114f371f8652edf14162b35e8b287437ae3ccdcc663336c42fe897a556b931
SHA512

c776b2bba6e1174210fb35a4c4db5f841399c739410dd0fe842679b66a007b9088705f23446f6565783eb26b6143ed9141dca643e95f48aabfd7803c6a43eb2a
SSDEEP

6144:RhnBe+T1jmVXmxp72I2CaRV35chCMi4rom7VJ85nSjAy2aqfV8u4JKCB0CQwbz/7:RhnB91SVXmx92I2CIV3ihcXmhW5ScyH3

Score

10^/10

icedid 3581911946 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3581911946

C2

smockalifatori.com

Targets

- Target
  
  fe908cbcbbdea11d0540e038a23f1a377ab0861ad5f6d013ed22dbf02b943032.exe
- Size
  
  475KB
- MD5
  
  9044436ca8ddc3ed05c5a1ab87cbdb43
- SHA1
  
  997bf9e5632f17bfad671b5252016effecc27533
- SHA256
  
  fe908cbcbbdea11d0540e038a23f1a377ab0861ad5f6d013ed22dbf02b943032
- SHA512
  
  6a4cc2137984a1ee7cf0db22020aeba88cb2f006f0bd2ea67960832455246a0102ccc8d0614775471e2cefb09b559b186d73449edf571e8dd4d5c942c1f51602
- SSDEEP
  
  6144:iF8fQgr9ElYIn8MQpcYMZOFSlAcUwcNQNBZId6Ti6N05/bClsINtFBkoNM:iEhwYI8M6xl5cTc+dId+A/b8sINtFs
Score

10^/10

icedid 3581911946 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3581911946bankerloadertrojan

behavioral2

icedid3581911946bankerloadertrojan