Overview

overview

10

Static

static

otgewd.dll

windows7_x64

10

otgewd.dll

windows10_x64

10

Resubmissions

21-01-2021 15:19

210121-45kpl5vrda 10

07-12-2020 17:45

201207-s6fczt9nba 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    otgewd.dll

  • Size

    192KB

  • Sample

    201207-s6fczt9nba

  • MD5

    cb11148e0c7b70769b156ab085c41dfe

  • SHA1

    48fc5d442a68286f4edcd5a9170b8ce5c849f2e5

  • SHA256

    d7a2b612bc7124c22cb058518ecf40a39b670042a7fbad01d4fa49d0ce20d344

  • SHA512

    a457af8df734e5de9dc0807fbf2916a4015347068199f471ae22b7cb4d5e07855f67201de700286c40f81f5ab128c56e62da924fca277937a0af36c6e6f70ab8

Score
10/10
icedidbankertrojan

Malware Config

Targets

    • Target

      otgewd.dll

    • Size

      192KB

    • MD5

      cb11148e0c7b70769b156ab085c41dfe

    • SHA1

      48fc5d442a68286f4edcd5a9170b8ce5c849f2e5

    • SHA256

      d7a2b612bc7124c22cb058518ecf40a39b670042a7fbad01d4fa49d0ce20d344

    • SHA512

      a457af8df734e5de9dc0807fbf2916a4015347068199f471ae22b7cb4d5e07855f67201de700286c40f81f5ab128c56e62da924fca277937a0af36c6e6f70ab8

    Score
    10/10
    icedidbankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • IcedID Core Payload

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks