icedid | 628c03c7f48d64ed9b2f79eb407a2931d9f6f627cf905b6a4d5342d6994e1841 | Triage

Sharing

General

Target

628c03c7f48d64ed9b2f79eb407a2931d9f6f627cf905b6a4d5342d6994e1841
Size

35KB
Sample

240419-wyafvacf3s
MD5

d5969bc5851e4851594e15be8b9f7b0d
SHA1

2813018be763a467dd37c5fd82a9aafb13e69363
SHA256

628c03c7f48d64ed9b2f79eb407a2931d9f6f627cf905b6a4d5342d6994e1841
SHA512

87512a1abad5f285c1972a887c0bbb3359a978685671299d18d4cefb6dfd7ddafd94faaa74be7e2752d367efbd626d5f554f49823bb6fe58cbdf25f900ca53d8
SSDEEP

768:rL65DUH+90+jRYWriTfutMXFdiWMaGxiIJfo4iChdmHAlt:rL6+Ho0+j/W6GdiD50moTmkHAlt

Score

10^/10

icedid 3311923693 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3311923693

C2

getmeaninwurz.com

Targets

- Target
  
  f7e374a58c6cf08108d81efc4253a1d724f04bd2e9f1d2dfba7879a2178a0d26
- Size
  
  63KB
- MD5
  
  6c944a11f6e93a6d7222fad7acff0da9
- SHA1
  
  7b0616b84383ee0e06cb3b531cec905e68b2e6b2
- SHA256
  
  f7e374a58c6cf08108d81efc4253a1d724f04bd2e9f1d2dfba7879a2178a0d26
- SHA512
  
  d89064b126672ff627f1d200273f9fb63d436a96d02df297c0263958abcdf375a1c4edafe70b3bc7596ac7fca1a128dca91d7a328ec250c9aa4e2ca1eed20c03
- SSDEEP
  
  1536:0RKGpYwSMaTbQ01XUGYN0Jf1XppxcPswfUnrzzD0ezZmM4R:zGRSMeQ0idNA9XxcUi6rzP0eoM4R
Score

10^/10

icedid 3311923693 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3311923693bankerloadertrojan

behavioral2

icedid3311923693bankerloadertrojan