icedid | 9c44eace5667e2c23b40294ba1875fa8a93b6cf9e40c59bfb2378532cbc81823 | Triage

Submit
Reports

Overview

overview

Static

static

235d6de72f...45.dll

windows7_x64

235d6de72f...45.dll

windows10_x64

Sharing

General

Target

235d6de72f89720100e2289c3b551145
Size

199KB
Sample

210401-5t28mc7m3e
MD5

235d6de72f89720100e2289c3b551145
SHA1

02abd83737ecffc6a02db5bd4eefd52bbd8ff287
SHA256

9c44eace5667e2c23b40294ba1875fa8a93b6cf9e40c59bfb2378532cbc81823
SHA512

4d4f6aaeeea4a453940fc69f27f5fcc37c2c44f03746b69f8bd35fbb34ade1f63e971c4d45e8698fcb3d6ccdfe3497164a1e2e7eccf18509add84809408ac049

Score

10^/10

icedid 1584008337 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

235d6de72f89720100e2289c3b551145.dll

Resource

win7v20201028

icedid 1584008337 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

235d6de72f89720100e2289c3b551145.dll

Resource

win10v20201028

icedid 1584008337 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

1584008337

C2

stoikoplot.xyz

Targets

- Target
  
  235d6de72f89720100e2289c3b551145
- Size
  
  199KB
- MD5
  
  235d6de72f89720100e2289c3b551145
- SHA1
  
  02abd83737ecffc6a02db5bd4eefd52bbd8ff287
- SHA256
  
  9c44eace5667e2c23b40294ba1875fa8a93b6cf9e40c59bfb2378532cbc81823
- SHA512
  
  4d4f6aaeeea4a453940fc69f27f5fcc37c2c44f03746b69f8bd35fbb34ade1f63e971c4d45e8698fcb3d6ccdfe3497164a1e2e7eccf18509add84809408ac049
Score

10^/10

icedid 1584008337 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1584008337bankerloadertrojan

behavioral2

icedid1584008337bankerloadertrojan

© 2018-2024

Terms | Privacy