icedid | 6d1852d687d43b9f68d6d515de653a98ee24b8605be536bcf74489e5115852c3 | Triage

Sharing

General

Target

Scan_06-28_INV _55.zip
Size

1.6MB
Sample

230629-b4j71sce7x
MD5

4e099159fc32a5a43b931fd3d0d7f69c
SHA1

69756ca633e49e8b10dc85dc42a58ae4c1dd08df
SHA256

6d1852d687d43b9f68d6d515de653a98ee24b8605be536bcf74489e5115852c3
SHA512

044198126efa4229b4a70fa46fc4ad3c2b8ff83c86418cd11e0d56cfacac0fe80fb8fabc9c9fb49d3885ac71ffcc758c068712213df1a3df78ad6e333993541e
SSDEEP

49152:k5WJD2UqEkYXyjAdAl1qtntcAWO34RysPcI89:kZU1tG1q7cAj4lkV

Score

10^/10

icedid 2316871781 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

2316871781

C2

hloyagorepa.com

Targets

- Target
  
  Scan_06-28_INV _55.exe
- Size
  
  2.8MB
- MD5
  
  570fd9c3693291d9d523a5a0d3a346b5
- SHA1
  
  a164b8a182c71094fb4af975488981094bfadf4c
- SHA256
  
  24dd8fa972d5101dbf73e69b0a48c028230eacac970b18f4e140337eba948ae7
- SHA512
  
  818639fee1e9f9b60fb45b1953d3a05d91e159a663e6c194cbc8066bb99a60db955f89d6691df6c2b95497bc19b09c9d9b0f7b6c7fc11d837283cd512d4972df
- SSDEEP
  
  49152:ZxyArAjyu4oyl3U5l8F24BbOIrRNxCeyABI3W:ZxycAjXgl3U5WVJh
Score

10^/10

icedid 2316871781 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2316871781bankerloadertrojan

behavioral2

icedid2316871781bankerloadertrojan