icedid | 009381653fade0d3b94ad0fa0a109c294ac55936a5d1ced44e18fb08188aa7df | Triage

Sharing

General

Target

Contract_March_23_INV#305.exe
Size

391KB
Sample

230323-wxm1jshd56
MD5

d91dee9dfbdbf0b35593424723052a55
SHA1

813c274e68916cba601134f689788e938f7ef9e7
SHA256

009381653fade0d3b94ad0fa0a109c294ac55936a5d1ced44e18fb08188aa7df
SHA512

b15064ae8ae5c2c1828d0e8058e12b2655525761c4366278bdb13f82f104b573ee014f8132e5b1c6cc79bc3f9e6d6a92c76a8184bdffe9f108f9b1f74a14a448
SSDEEP

6144:EOUzREbq7Y9m47z+RtK87+YZSZXYSBdyvo+Rhw00C0Ul0YdxwW1Pi4QnpUk/rTwx:HUGbq0s4mR0SSZq3EuSX3wMW5vd

Score

10^/10

icedid 73743838 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

73743838

C2

aoureskindzet.com

Targets

- Target
  
  Contract_March_23_INV#305.exe
- Size
  
  391KB
- MD5
  
  d91dee9dfbdbf0b35593424723052a55
- SHA1
  
  813c274e68916cba601134f689788e938f7ef9e7
- SHA256
  
  009381653fade0d3b94ad0fa0a109c294ac55936a5d1ced44e18fb08188aa7df
- SHA512
  
  b15064ae8ae5c2c1828d0e8058e12b2655525761c4366278bdb13f82f104b573ee014f8132e5b1c6cc79bc3f9e6d6a92c76a8184bdffe9f108f9b1f74a14a448
- SSDEEP
  
  6144:EOUzREbq7Y9m47z+RtK87+YZSZXYSBdyvo+Rhw00C0Ul0YdxwW1Pi4QnpUk/rTwx:HUGbq0s4mR0SSZq3EuSX3wMW5vd
Score

10^/10

icedid 73743838 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid73743838bankerloadertrojan

behavioral2

icedid73743838bankerloadertrojan