icedid | a666237b17b8b01395211b3af5bccd2926fc2ae745261c17e5471a35f57d13f8 | Triage

Sharing

General

Target

c8e0e04fc971f4630e94c375e40659c4
Size

5KB
Sample

240314-r39dhsgh33
MD5

c8e0e04fc971f4630e94c375e40659c4
SHA1

280644f3b8ee0462bdb5cf95f0cfdf8416ac6702
SHA256

a666237b17b8b01395211b3af5bccd2926fc2ae745261c17e5471a35f57d13f8
SHA512

c38d2c3cd7cdc360cad70fb9d0e5aca423b9245e09d810624ed9c0ae0ec0e13935bcc1465def243e3b9cb83cb7070aabe0104d616aecdb1c30c9c7190f4b0d7b
SSDEEP

96:MMqEESUUhDYXAybZACN3fICtECLi0/r3mvuHg:MMqr7UhcXAybZBrWwjM

Score

10^/10

icedid 507327483 loader

Malware Config

Extracted

Family

icedid

Botnet

507327483

C2

boldidiotruss.xyz

nizaoplov.xyz

153ishak.best

ilu21plane.xyz

Attributes

auth_var
2
url_path
/index.php

Targets

- Target
  
  c8e0e04fc971f4630e94c375e40659c4
- Size
  
  5KB
- MD5
  
  c8e0e04fc971f4630e94c375e40659c4
- SHA1
  
  280644f3b8ee0462bdb5cf95f0cfdf8416ac6702
- SHA256
  
  a666237b17b8b01395211b3af5bccd2926fc2ae745261c17e5471a35f57d13f8
- SHA512
  
  c38d2c3cd7cdc360cad70fb9d0e5aca423b9245e09d810624ed9c0ae0ec0e13935bcc1465def243e3b9cb83cb7070aabe0104d616aecdb1c30c9c7190f4b0d7b
- SSDEEP
  
  96:MMqEESUUhDYXAybZACN3fICtECLi0/r3mvuHg:MMqr7UhcXAybZBrWwjM
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

loader507327483icedid

behavioral1

behavioral2