icedid | 7ab73bef256575a13e3392077a713bcb7c3eba2dfcb6878990c02d18afebbffb | Triage

Sharing

General

Target

7ab73bef256575a13e3392077a713bcb7c3eba2dfcb6878990c02d18afebbffb
Size

3KB
Sample

240419-vwqjlsbc2x
MD5

24ee8166b5bcbbe7178be46f4709688c
SHA1

7cab97ba8bb74ae4d54bca9a0cec05bd42a8c4ea
SHA256

7ab73bef256575a13e3392077a713bcb7c3eba2dfcb6878990c02d18afebbffb
SHA512

a9e9e90889e78080b34946d6b189b7d2f76d92852b6b23302c046981ffedf299deb7afd3084ab60031034931a0a1372df75481e5f40b20477f7f55b944c4a627

Score

10^/10

icedid 507327483 loader

Malware Config

Extracted

Family

icedid

Botnet

507327483

C2

boldidiotruss.xyz

nizaoplov.xyz

153ishak.best

ilu21plane.xyz

Attributes

auth_var
2
url_path
/index.php

Targets

- Target
  
  79449670340d763f164bbda0a32e38f3d06a2a3b6cee41d92c47f448710e015a.exe
- Size
  
  16KB
- MD5
  
  22631afc7d9706f566995833748de97f
- SHA1
  
  f371c5f78437db887f1717b0eaf594295b0f4969
- SHA256
  
  79449670340d763f164bbda0a32e38f3d06a2a3b6cee41d92c47f448710e015a
- SHA512
  
  56e119dd3a4f0b9523d4cba4647333fb31e38af2456168c9a14f313e656e662dfdd70d9fec1d897bebc8ba91ab15cc3017651cf68d044e0b74f4f05960b69b82
- SSDEEP
  
  96:MMqEESUUhDYXAybZACN3fICtECLi0/r3mvuHg3:MMqr7UhcXAybZBrWwjM3
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

loader507327483icedid

behavioral1

behavioral2