General

  • Target

    114e1b61f74bd9cd2264b5a8bf6d5195

  • Size

    168KB

  • Sample

    231225-j42q3ahegl

  • MD5

    114e1b61f74bd9cd2264b5a8bf6d5195

  • SHA1

    4ea2176b0fbf2e7c0c47f521f0b65b89111b4f93

  • SHA256

    fdfbd02500617cbc22c6e9e0d9436c29412cb8c6182f013906ebefc63ffb2cee

  • SHA512

    9345960d4131d0d04961424919df88d38406efecb06767bcd4f6d077bceadaa3afbed86b403cf4aa968ef2090d4b4df766311f84ddb66e8cd971e42b3c1bcfb8

  • SSDEEP

    3072:c+ymPQ38mtBMzgxpvvdoZpSjXfW8Dkfg:ccQ38AxpOZEzO8Dj

Malware Config

Extracted

Family

icedid

Targets

    • Target

      114e1b61f74bd9cd2264b5a8bf6d5195

    • Size

      168KB

    • MD5

      114e1b61f74bd9cd2264b5a8bf6d5195

    • SHA1

      4ea2176b0fbf2e7c0c47f521f0b65b89111b4f93

    • SHA256

      fdfbd02500617cbc22c6e9e0d9436c29412cb8c6182f013906ebefc63ffb2cee

    • SHA512

      9345960d4131d0d04961424919df88d38406efecb06767bcd4f6d077bceadaa3afbed86b403cf4aa968ef2090d4b4df766311f84ddb66e8cd971e42b3c1bcfb8

    • SSDEEP

      3072:c+ymPQ38mtBMzgxpvvdoZpSjXfW8Dkfg:ccQ38AxpOZEzO8Dj

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID Second Stage Loader

MITRE ATT&CK Matrix

Tasks