icedid | 2cf9bef62939a9b645d43d05959e181f3962e7f10c9e4d73288c7f36af7d5ec2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2cf9bef62939a9b645d43d05959e181f3962e7f10c9e4d73288c7f36af7d5ec2
Size

447KB
Sample

231001-apllvsgb4s
MD5

447f3ef47acb70fccc8ae18abae68a8d
SHA1

0ae5ed013ad31ad232d3914860c711cb84470bec
SHA256

2cf9bef62939a9b645d43d05959e181f3962e7f10c9e4d73288c7f36af7d5ec2
SHA512

54cdedf20d7a578d2a8ccb159de48df2aa113286f55496d92940c1c78feda2ca18382bfa6a48fd243fca695e1a938d7e894ffaf27f8b73159474e5560e69f8d3
SSDEEP

6144:lWuzMM1ukesfTqAYVTuFOBTfh3SVOFJzlBSFHds79zAADpgSHK6BdunP+:l3zPukBCiFel3tFJz6DeDpgSHKUMn2

Score

10^/10

icedid 1561373935 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1561373935

C2

filtaferamoza.com

Targets

- Target
  
  2cf9bef62939a9b645d43d05959e181f3962e7f10c9e4d73288c7f36af7d5ec2
- Size
  
  447KB
- MD5
  
  447f3ef47acb70fccc8ae18abae68a8d
- SHA1
  
  0ae5ed013ad31ad232d3914860c711cb84470bec
- SHA256
  
  2cf9bef62939a9b645d43d05959e181f3962e7f10c9e4d73288c7f36af7d5ec2
- SHA512
  
  54cdedf20d7a578d2a8ccb159de48df2aa113286f55496d92940c1c78feda2ca18382bfa6a48fd243fca695e1a938d7e894ffaf27f8b73159474e5560e69f8d3
- SSDEEP
  
  6144:lWuzMM1ukesfTqAYVTuFOBTfh3SVOFJzlBSFHds79zAADpgSHK6BdunP+:l3zPukBCiFel3tFJz6DeDpgSHKUMn2
Score

10^/10

icedid 1561373935 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1561373935bankerloadertrojan

behavioral2

icedid1561373935bankerloadertrojan