icedid | 6c932d3c78cedf8a31df6035bf8e4924c3cd67b899f70209af67ae5f6e215624 | Triage

Submit
Reports

Overview

overview

Static

static

44285,5327...at.dll

windows7_x64

44285,5327...at.dll

windows10_x64

Sharing

General

Target

44285,5327891204.dat
Size

199KB
Sample

210402-2xnnc2apw6
MD5

48fa48c6e9f1c2a704089da688bbf95e
SHA1

8a03ebe9b44e8f0a1e3bc97eaa72a35afb38b021
SHA256

6c932d3c78cedf8a31df6035bf8e4924c3cd67b899f70209af67ae5f6e215624
SHA512

d805a62631e228bf1d8c9fb7e30e927214950a98946850533a39f7d6f09b624873a9dabd030795eb458e0ef7fded06ded22ad8c1c1fe012c8300027b47e5af32

Score

10^/10

icedid 1584008337 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

44285,5327891204.dat.dll

Resource

win7v20201028

icedid 1584008337 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

44285,5327891204.dat.dll

Resource

win10v20201028

icedid 1584008337 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

1584008337

C2

stoikoplot.xyz

Targets

- Target
  
  44285,5327891204.dat
- Size
  
  199KB
- MD5
  
  48fa48c6e9f1c2a704089da688bbf95e
- SHA1
  
  8a03ebe9b44e8f0a1e3bc97eaa72a35afb38b021
- SHA256
  
  6c932d3c78cedf8a31df6035bf8e4924c3cd67b899f70209af67ae5f6e215624
- SHA512
  
  d805a62631e228bf1d8c9fb7e30e927214950a98946850533a39f7d6f09b624873a9dabd030795eb458e0ef7fded06ded22ad8c1c1fe012c8300027b47e5af32
Score

10^/10

icedid 1584008337 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1584008337bankerloadertrojan

behavioral2

icedid1584008337bankerloadertrojan

© 2018-2024

Terms | Privacy