icedid | fbb306044c121ab62e197b982b69f0d078a37c48241b91b21223aa6ee78837bf | Triage

Submit
Reports

Overview

overview

Static

static

cf8383406c...e3.exe

windows7_x64

cf8383406c...e3.exe

windows10_x64

Sharing

General

Target

cf8383406cce0a15cbefab2e418898e3
Size

705KB
Sample

201117-t1jkv69gej
MD5

881fa18418a27bc56475965d71d59985
SHA1

793fc318a31e18499e4b3824e1725b000983d327
SHA256

fbb306044c121ab62e197b982b69f0d078a37c48241b91b21223aa6ee78837bf
SHA512

f4eea5a37c60846e8d1e4c2b4b6b5186c9842af5b9e527981b66a1faaad82ea75de81621ec35d8631e3ba9eca5a7f3284cb3ae701d95f203f3503c30714a7c8b

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

cf8383406cce0a15cbefab2e418898e3.exe

Resource

win7v20201028

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

cf8383406cce0a15cbefab2e418898e3.exe

Resource

win10v20201028

icedid banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

kostacardsplayer.pro

kostafootball.info

countrylandlords.info

landiscloudlord.red

Targets

- Target
  
  cf8383406cce0a15cbefab2e418898e3
- Size
  
  705KB
- MD5
  
  881fa18418a27bc56475965d71d59985
- SHA1
  
  793fc318a31e18499e4b3824e1725b000983d327
- SHA256
  
  fbb306044c121ab62e197b982b69f0d078a37c48241b91b21223aa6ee78837bf
- SHA512
  
  f4eea5a37c60846e8d1e4c2b4b6b5186c9842af5b9e527981b66a1faaad82ea75de81621ec35d8631e3ba9eca5a7f3284cb3ae701d95f203f3503c30714a7c8b
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy