icedid | 8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2 | Triage

Submit
Reports

Overview

overview

Static

static

8ab108a4fd...c2.exe

windows7_x64

8ab108a4fd...c2.exe

windows10_x64

Sharing

General

Target

8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2
Size

682KB
Sample

201113-w9k6mf86n2
MD5

1a5b33570adce162833976a15f3fdd2c
SHA1

2b30f322455916b713d86d60e8f9df391dce9941
SHA256

8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2
SHA512

dd835cef9e51cbe5c9b79344dbc8d6363fd03327871f6ff0f167e2a06951daa26c2817d1334bfb59d9a7e59028535e2050aac28c87cfed61a57ad03244d16c86

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2.exe

Resource

win7v20201028

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2.exe

Resource

win10v20201028

icedid banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

kostacardsplayer.pro

kostafootball.info

countrylandlords.info

landiscloudlord.red

Targets

- Target
  
  8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2
- Size
  
  682KB
- MD5
  
  1a5b33570adce162833976a15f3fdd2c
- SHA1
  
  2b30f322455916b713d86d60e8f9df391dce9941
- SHA256
  
  8ab108a4fdab1cf0548ea2044a616b5db7cf70a2d97c48618fc97360668d84c2
- SHA512
  
  dd835cef9e51cbe5c9b79344dbc8d6363fd03327871f6ff0f167e2a06951daa26c2817d1334bfb59d9a7e59028535e2050aac28c87cfed61a57ad03244d16c86
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy