icedid | 3c5a7fcaffea0a07016fce2f047efa8ff55dc38d0c59fe06877a92457e4cc30d | Triage

Submit
Reports

Overview

overview

Static

static

3adc9ed342...a4.exe

windows7_x64

3adc9ed342...a4.exe

windows10_x64

Sharing

General

Target

3adc9ed342231807a1f3280fb540afa4
Size

725KB
Sample

201117-1vewl8ksmx
MD5

11768af8d86d10d66fa712d2ab7a6746
SHA1

0fdb9c39d18a8518007a47104613aacc0eafbbeb
SHA256

3c5a7fcaffea0a07016fce2f047efa8ff55dc38d0c59fe06877a92457e4cc30d
SHA512

42b4573399946b17a173bfb69b9c747dddbc2bfeaeb2611afef2a225e9918609b6ab1d353c0422c893ec8a1515bd3e0a8ab86cdf667bfa35fe29e6fd4a410a6c

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

3adc9ed342231807a1f3280fb540afa4.exe

Resource

win7v20201028

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

3adc9ed342231807a1f3280fb540afa4.exe

Resource

win10v20201028

icedid banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

kostacardsplayer.pro

kostafootball.info

countrylandlords.info

landiscloudlord.red

Targets

- Target
  
  3adc9ed342231807a1f3280fb540afa4
- Size
  
  725KB
- MD5
  
  11768af8d86d10d66fa712d2ab7a6746
- SHA1
  
  0fdb9c39d18a8518007a47104613aacc0eafbbeb
- SHA256
  
  3c5a7fcaffea0a07016fce2f047efa8ff55dc38d0c59fe06877a92457e4cc30d
- SHA512
  
  42b4573399946b17a173bfb69b9c747dddbc2bfeaeb2611afef2a225e9918609b6ab1d353c0422c893ec8a1515bd3e0a8ab86cdf667bfa35fe29e6fd4a410a6c
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy