General

  • Target

    92cd6ed709e6cd95c34403626e6324e0N

  • Size

    173KB

  • Sample

    240915-c6rwba1hkp

  • MD5

    92cd6ed709e6cd95c34403626e6324e0

  • SHA1

    d9a3a13a0089b8b53aa957775bda3e9e3325ea6d

  • SHA256

    c20851c8d0c914f9203a1e616e78b11af04bd804e386380cd3362ab0e8909d65

  • SHA512

    8470c8eea48a8ac4bc8a601d9db77665e8c254befd24c999f8bec0715efcc0f895fb762fddd161b78d6a181257b2934c6067574eb5a7e21100e68ce048260172

  • SSDEEP

    1536:CY53MNyZS2TinPvX+3pBn9EYm3lHMyYoTivfgKGgvhX+jQAimDwqPYOl2cZF5Xqe:x530ysqinXU39E/3lRAHuPdAk

Malware Config

Extracted

Family

icedid

Campaign

4213125251

C2

asforthemines99.uno

Targets

    • Target

      92cd6ed709e6cd95c34403626e6324e0N

    • Size

      173KB

    • MD5

      92cd6ed709e6cd95c34403626e6324e0

    • SHA1

      d9a3a13a0089b8b53aa957775bda3e9e3325ea6d

    • SHA256

      c20851c8d0c914f9203a1e616e78b11af04bd804e386380cd3362ab0e8909d65

    • SHA512

      8470c8eea48a8ac4bc8a601d9db77665e8c254befd24c999f8bec0715efcc0f895fb762fddd161b78d6a181257b2934c6067574eb5a7e21100e68ce048260172

    • SSDEEP

      1536:CY53MNyZS2TinPvX+3pBn9EYm3lHMyYoTivfgKGgvhX+jQAimDwqPYOl2cZF5Xqe:x530ysqinXU39E/3lRAHuPdAk

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks