Overview

overview

10

Static

static

1

1e2aaed890...85.exe

windows7-x64

10

1e2aaed890...85.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d659e03354a9657001d5136308449d5c.bin

  • Size

    306KB

  • Sample

    230326-cd89wsfb74

  • MD5

    a1e0d9316be39597e3d70235a0a20583

  • SHA1

    dac8b9bd8c62a3c781acc1b7a322c46d941ab70b

  • SHA256

    a46dba0f4230d3c8a3d6fb8b8a9de4f48fdcfe59615c4053dda1a5785e3b64da

  • SHA512

    70b387c59de58140b6e31e8a536262e35a3a3169420fa816f38d3365080097fd77d2ebdd7f3b441275f89b6f0dad6934923bd6dfe3be21167935c9ba51602cde

  • SSDEEP

    6144:LJcM+KvQUfUwUCSe+yWtoumA6fwzWL5KvyRIoxr:LJcM+KJfUw4VtkAMwzWtKvy1xr

Score
10/10
icedid1883783121bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1883783121

C2

liguspotforsit.com

Targets

    • Target

      1e2aaed890f3a5e5657d6806bcf6756bbdef9baeca203330ad862dcf47ddf885.exe

    • Size

      620KB

    • MD5

      d659e03354a9657001d5136308449d5c

    • SHA1

      0f440e15ab54adf7f699d980fd436b3e5f03e20e

    • SHA256

      1e2aaed890f3a5e5657d6806bcf6756bbdef9baeca203330ad862dcf47ddf885

    • SHA512

      6c41c6beba2384538585cb5dbd495847a32cf944cbc43c017f4c47b9cb92dbab7e485df7f73f2288bbd4cf9d1d5f01b396e613ebf3fb17198fabc34e48c3e86c

    • SSDEEP

      6144:vvJefQe21l/7o+zmG6abwLPcwUSgm1IWAH1c9/MJOBlX4Bd3uyWFACWPgkqTXzm6:vRloG6abwLPVRaqLm3VdGPEBj/eZb

    Score
    10/10
    icedid1883783121bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks