icedid | 2ec081a000189d3b3546949fa0bbe08914c651f69265c3b57ddf7c03b296f249 | Triage

Sharing

General

Target

5d33b73e4e2c730b4d0cce23ece2c120N.exe
Size

454KB
Sample

240822-b7ndvawcpm
MD5

5d33b73e4e2c730b4d0cce23ece2c120
SHA1

9f56233865008afde7b59f01aa9dcc25a9b5260f
SHA256

2ec081a000189d3b3546949fa0bbe08914c651f69265c3b57ddf7c03b296f249
SHA512

b5b1aa0bc79c967574b9ee3b5e394a31dc4db65ce8a1ea8d8b0deb86478ef41674d2674215372258be4a47a9e1fd86105cfba1015b1fcb85f91539156a5a211a
SSDEEP

6144:UnBSboezY580J0f7wOnhulNrr5P1rh/KCeO9mHT2gjn3V1Afgsd1/T7FWQ+I7BFB:+aoeT0lwCeOA3rYgoVZ

Score

10^/10

icedid 512092511 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

512092511

C2

alkaliodplus.com

Targets

- Target
  
  5d33b73e4e2c730b4d0cce23ece2c120N.exe
- Size
  
  454KB
- MD5
  
  5d33b73e4e2c730b4d0cce23ece2c120
- SHA1
  
  9f56233865008afde7b59f01aa9dcc25a9b5260f
- SHA256
  
  2ec081a000189d3b3546949fa0bbe08914c651f69265c3b57ddf7c03b296f249
- SHA512
  
  b5b1aa0bc79c967574b9ee3b5e394a31dc4db65ce8a1ea8d8b0deb86478ef41674d2674215372258be4a47a9e1fd86105cfba1015b1fcb85f91539156a5a211a
- SSDEEP
  
  6144:UnBSboezY580J0f7wOnhulNrr5P1rh/KCeO9mHT2gjn3V1Afgsd1/T7FWQ+I7BFB:+aoeT0lwCeOA3rYgoVZ
Score

10^/10

icedid 512092511 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid512092511bankerloadertrojan

behavioral2

icedid512092511bankerloadertrojan