General

  • Target

    61c5d922000e7f1a85c6a5ee46328f35

  • Size

    342KB

  • Sample

    231226-kxh6taeba3

  • MD5

    61c5d922000e7f1a85c6a5ee46328f35

  • SHA1

    c4e35ae29f6fa5e770a7981ff347d1755ec8c764

  • SHA256

    bd644539e7789a4ffb5f9079a38f7d6b3ad20ca1d80e1d834e02e10be58762eb

  • SHA512

    9216ebf836de06de283999455809b75f726c31151613ecbe35b3567082776c960d5b20b580fb2e192d07d0c02f20273a95cb214059f581f3ab55ff3ed19758f8

  • SSDEEP

    3072:49t0S/QgqVSJD9kTBJ79AlsTNIit8VctXJsPn83OR+eo0jGJJpsAwV+e/c/w:v791TNIiW2tJs03Ocb0jGJAAjzw

Malware Config

Extracted

Family

icedid

Campaign

3008954407

C2

desagreelokilo.top

Targets

    • Target

      61c5d922000e7f1a85c6a5ee46328f35

    • Size

      342KB

    • MD5

      61c5d922000e7f1a85c6a5ee46328f35

    • SHA1

      c4e35ae29f6fa5e770a7981ff347d1755ec8c764

    • SHA256

      bd644539e7789a4ffb5f9079a38f7d6b3ad20ca1d80e1d834e02e10be58762eb

    • SHA512

      9216ebf836de06de283999455809b75f726c31151613ecbe35b3567082776c960d5b20b580fb2e192d07d0c02f20273a95cb214059f581f3ab55ff3ed19758f8

    • SSDEEP

      3072:49t0S/QgqVSJD9kTBJ79AlsTNIit8VctXJsPn83OR+eo0jGJJpsAwV+e/c/w:v791TNIiW2tJs03Ocb0jGJAAjzw

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

MITRE ATT&CK Matrix

Tasks