icedid | cab4e4a9561f7fa3312b84179577293282346e5802ccfe6d0d40799b80d86d58 | Triage

Submit
Reports

Overview

overview

Static

static

f5a9119225...95.dll

windows7_x64

f5a9119225...95.dll

windows10_x64

Sharing

General

Target

f5a91192256cbfaa9fa28870a8c3ff95.dll
Size

154KB
Sample

210313-t3svv91fwx
MD5

f5a91192256cbfaa9fa28870a8c3ff95
SHA1

2b43674be7e1d01aa95e8156dfec48ef99463ae1
SHA256

cab4e4a9561f7fa3312b84179577293282346e5802ccfe6d0d40799b80d86d58
SHA512

af7058d8f2ac1032754072794fc8eff5bcbaa59cab593cd91093f4b7e1cce24daecbe865469484c916793f5d94a118f48eefd1a42070ac9fe21fdc8609b5f8df

Score

10^/10

icedid 2292720537 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

f5a91192256cbfaa9fa28870a8c3ff95.dll

Resource

win7v20201028

icedid 2292720537 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f5a91192256cbfaa9fa28870a8c3ff95.dll

Resource

win10v20201028

icedid 2292720537 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

2292720537

C2

klicjop9.fun

Targets

- Target
  
  f5a91192256cbfaa9fa28870a8c3ff95.dll
- Size
  
  154KB
- MD5
  
  f5a91192256cbfaa9fa28870a8c3ff95
- SHA1
  
  2b43674be7e1d01aa95e8156dfec48ef99463ae1
- SHA256
  
  cab4e4a9561f7fa3312b84179577293282346e5802ccfe6d0d40799b80d86d58
- SHA512
  
  af7058d8f2ac1032754072794fc8eff5bcbaa59cab593cd91093f4b7e1cce24daecbe865469484c916793f5d94a118f48eefd1a42070ac9fe21fdc8609b5f8df
Score

10^/10

icedid 2292720537 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2292720537bankerloadertrojan

behavioral2

icedid2292720537bankerloadertrojan

© 2018-2024

Terms | Privacy