icedid | baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566 | Triage

Submit
Reports

Overview

overview

Static

static

baf471f923...66.dll

windows7_x64

baf471f923...66.dll

windows10_x64

Sharing

General

Target

baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566
Size

79KB
Sample

210324-q2teddcr4j
MD5

a9dc93822533c45fb0c057878a98cc85
SHA1

3d58441f37c471f473f8fc63948f0ae2b92fd906
SHA256

baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566
SHA512

23e7882aa4b293455c042f7ab0c0ad72e893ae1887bd906f12ec047d7d3d62950c3d20ea0d8cab10ff9dc984bcd8a36a055a84cc7e906cabaa9fdb3e560c1ea1

Score

10^/10

icedid 1211238709 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566.dll

Resource

win7v20201028

icedid 1211238709 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566.dll

Resource

win10v20201028

icedid 1211238709 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

1211238709

C2

912caporers.fun

Targets

- Target
  
  baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566
- Size
  
  79KB
- MD5
  
  a9dc93822533c45fb0c057878a98cc85
- SHA1
  
  3d58441f37c471f473f8fc63948f0ae2b92fd906
- SHA256
  
  baf471f9238cb6b5f1aa9c8a32a948d67900ba988e1324b4bbb4a4287b980566
- SHA512
  
  23e7882aa4b293455c042f7ab0c0ad72e893ae1887bd906f12ec047d7d3d62950c3d20ea0d8cab10ff9dc984bcd8a36a055a84cc7e906cabaa9fdb3e560c1ea1
Score

10^/10

icedid 1211238709 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1211238709bankerloadertrojan

behavioral2

icedid1211238709bankerloadertrojan

© 2018-2024

Terms | Privacy