icedid | 017f10645ca08339c7dbb5b481aba3e38a478b64bcdbdda3c54dfc8e8c38f2d9 | Triage

Submit
Reports

Overview

overview

Static

static

44274.6196...at.dll

windows7_x64

44274.6196...at.dll

windows10_x64

Sharing

General

Target

44274.6196425926.dat
Size

64KB
Sample

210324-83ttwvkr4e
MD5

b63974f6577097b096b39ca213d6c182
SHA1

54da4de308c48b10756c82f078c0576391a12013
SHA256

017f10645ca08339c7dbb5b481aba3e38a478b64bcdbdda3c54dfc8e8c38f2d9
SHA512

406fbfa9e623fb4b479e10da070f3082dc1b469cb81c9a3079094eb93bb78150af3bab065027e3085541677a98b25938c1a736f5a20f42b68029f7b5fb01ad3f

Score

10^/10

icedid 2046050 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

44274.6196425926.dat.dll

Resource

win7v20201028

icedid 2046050 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

44274.6196425926.dat.dll

Resource

win10v20201028

icedid 2046050 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

2046050

C2

calldivorce.fun

Targets

- Target
  
  44274.6196425926.dat
- Size
  
  64KB
- MD5
  
  b63974f6577097b096b39ca213d6c182
- SHA1
  
  54da4de308c48b10756c82f078c0576391a12013
- SHA256
  
  017f10645ca08339c7dbb5b481aba3e38a478b64bcdbdda3c54dfc8e8c38f2d9
- SHA512
  
  406fbfa9e623fb4b479e10da070f3082dc1b469cb81c9a3079094eb93bb78150af3bab065027e3085541677a98b25938c1a736f5a20f42b68029f7b5fb01ad3f
Score

10^/10

icedid 2046050 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2046050bankerloadertrojan

behavioral2

icedid2046050bankerloadertrojan

© 2018-2024

Terms | Privacy