icedid | 738243ba6084d418030a24d3649c85399e5e6f13d10a51d980b71424fe636f6b | Triage

Sharing

General

Target

3880-130-0x0000000180000000-0x0000000180005000-memory.dmp.rebuild
Size

20KB
Sample

230728-chz7sabe9z
MD5

3d7eb76318a8172655ba8c232dea7cc0
SHA1

5815988bd89ebf751214d540e69e873927757848
SHA256

738243ba6084d418030a24d3649c85399e5e6f13d10a51d980b71424fe636f6b
SHA512

1a879f46fe40cb290a62b0d50506ddedb57cdd751efe0fe2d5bfea52933a8da7a53bc63229df2f12877a0bc291f2808f2d9bcbbfd70247d7bc143ffff976ecdd
SSDEEP

96:CAHZCUOemFbOCsnsLoBTp9HatsRaAyDI6QpFBoe/:CAHFOjr4sLETnHywy0n

Score

10^/10

icedid 1501064257 core_loader

Malware Config

Extracted

Family

icedid

Botnet

1501064257

C2

ouldmakeithapp.top

meincarton.top

callbackhubs.com

eldingdayl.com

ganjicow.com

meanforthen.com

Attributes

auth_var
13
url_path
/news/

Targets

- Target
  
  3880-130-0x0000000180000000-0x0000000180005000-memory.dmp.rebuild
- Size
  
  20KB
- MD5
  
  3d7eb76318a8172655ba8c232dea7cc0
- SHA1
  
  5815988bd89ebf751214d540e69e873927757848
- SHA256
  
  738243ba6084d418030a24d3649c85399e5e6f13d10a51d980b71424fe636f6b
- SHA512
  
  1a879f46fe40cb290a62b0d50506ddedb57cdd751efe0fe2d5bfea52933a8da7a53bc63229df2f12877a0bc291f2808f2d9bcbbfd70247d7bc143ffff976ecdd
- SSDEEP
  
  96:CAHZCUOemFbOCsnsLoBTp9HatsRaAyDI6QpFBoe/:CAHFOjr4sLETnHywy0n
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

core_loader1501064257icedid

behavioral1

behavioral2