icedid | b5e2ad54080589007d5d50c7fa886f6a7299265a60b4aee073e3ae7b9e89d22e | Triage

Sharing

General

Target

b5e2ad54080589007d5d50c7fa886f6a7299265a60b4aee073e3ae7b9e89d22e
Size

38KB
Sample

240609-h6yazsgc37
MD5

9eab152235102355a9ac0293a1c22562
SHA1

e7bd145aecfde1acc497492746e37b53445dda7f
SHA256

b5e2ad54080589007d5d50c7fa886f6a7299265a60b4aee073e3ae7b9e89d22e
SHA512

ebd4c439a5a0173207209b1834de209e94b7ff83386225a9c22eae30358cda00d07155ac7cc2205b0bef9401706d0d3d5568ff14a97b8698574c6f762bd3f479
SSDEEP

384:3Ss9+y4P2mwASOYgDZE2UQixOai3II7ZUq7WoiZHM9pP8njLlMGaZHM9pg:3SsETLJPDZE0ix9i3I0ZWqMM

Score

10^/10

icedid 1465037635 banker core_loader trojan

Malware Config

Extracted

Family

icedid

Botnet

1465037635

C2

parkinihol.top

iserunifish.top

souldeppen.today

lidclimmon.top

Attributes

auth_var
4
url_path
/news/

Targets

- Target
  
  b5e2ad54080589007d5d50c7fa886f6a7299265a60b4aee073e3ae7b9e89d22e
- Size
  
  38KB
- MD5
  
  9eab152235102355a9ac0293a1c22562
- SHA1
  
  e7bd145aecfde1acc497492746e37b53445dda7f
- SHA256
  
  b5e2ad54080589007d5d50c7fa886f6a7299265a60b4aee073e3ae7b9e89d22e
- SHA512
  
  ebd4c439a5a0173207209b1834de209e94b7ff83386225a9c22eae30358cda00d07155ac7cc2205b0bef9401706d0d3d5568ff14a97b8698574c6f762bd3f479
- SSDEEP
  
  384:3Ss9+y4P2mwASOYgDZE2UQixOai3II7ZUq7WoiZHM9pP8njLlMGaZHM9pg:3SsETLJPDZE0ix9i3I0ZWqMM
Score

10^/10

icedid 1465037635 banker core_loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1465037635bankercore_loadertrojan

behavioral2

icedid1465037635bankercore_loadertrojan