icedid | 7549090988bb2177f8e0b337c2a8d98b2c052878ae52573177b15fafa4046766 | Triage

Sharing

General

Target

nope.exe
Size

599KB
Sample

230418-sd1kraea21
MD5

3d0add5187100f553e034a17eff399ff
SHA1

c9e2d7fa91bd9129f7d55d0a9cbdba048af81f90
SHA256

7549090988bb2177f8e0b337c2a8d98b2c052878ae52573177b15fafa4046766
SHA512

c81253a8ed751abb8a9533ad6b1ebed192e143e777a9f235f7cc2dbc0db22da4c2b076998edf13c524dbe7a3639c67c02c24ea90f6a7b1b304636a3460cc2d9f
SSDEEP

12288:FAQeimnGXJMFnuhzE7LVvUFzZLSPIS3b0cCJJ4+sbxeA:qQCnhnWzULVmjCYRSzbxeA

Score

10^/10

icedid 240412627 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

240412627

C2

pronfasket.com

Targets

- Target
  
  nope.exe
- Size
  
  599KB
- MD5
  
  3d0add5187100f553e034a17eff399ff
- SHA1
  
  c9e2d7fa91bd9129f7d55d0a9cbdba048af81f90
- SHA256
  
  7549090988bb2177f8e0b337c2a8d98b2c052878ae52573177b15fafa4046766
- SHA512
  
  c81253a8ed751abb8a9533ad6b1ebed192e143e777a9f235f7cc2dbc0db22da4c2b076998edf13c524dbe7a3639c67c02c24ea90f6a7b1b304636a3460cc2d9f
- SSDEEP
  
  12288:FAQeimnGXJMFnuhzE7LVvUFzZLSPIS3b0cCJJ4+sbxeA:qQCnhnWzULVmjCYRSzbxeA
Score

10^/10

icedid 240412627 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid240412627bankerloadertrojan

behavioral2

icedid240412627bankerloadertrojan