General

  • Target

    Maaywuku2.dll

  • Size

    123KB

  • Sample

    201113-qcc3gsjg6x

  • MD5

    c33bd283a36d34b8de1826585e564530

  • SHA1

    540f3ba581d2f0a4004da108ff20fb7a5c0b708c

  • SHA256

    a09d8c487a135b973af532247d62f46695a53f37add6c66e561f1c14650290f5

  • SHA512

    12b570c44dfb89dcf9c77f0d429e58c3bce7a302ecc83e76962393169416c6956698fc9e291c49946ecb3e4ea3f52e201b0f3fe6a59d3fdfd9b06eba7f49248f

Score
10/10

Malware Config

Targets

    • Target

      Maaywuku2.dll

    • Size

      123KB

    • MD5

      c33bd283a36d34b8de1826585e564530

    • SHA1

      540f3ba581d2f0a4004da108ff20fb7a5c0b708c

    • SHA256

      a09d8c487a135b973af532247d62f46695a53f37add6c66e561f1c14650290f5

    • SHA512

      12b570c44dfb89dcf9c77f0d429e58c3bce7a302ecc83e76962393169416c6956698fc9e291c49946ecb3e4ea3f52e201b0f3fe6a59d3fdfd9b06eba7f49248f

    Score
    10/10
    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID Core Payload

    • Blocklisted process makes network request

MITRE ATT&CK Matrix

Tasks