Overview

overview

10

Static

static

1e79c88158...13.dll

windows7_x64

10

1e79c88158...13.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1e79c881582c2c4cf58783513f9125867073f568cbe13.dll

  • Size

    199KB

  • Sample

    210402-lltjp1bken

  • MD5

    8d05451aba55f305c6567335591d9b8a

  • SHA1

    80b43e572c1323bac282a6e66e17888a24b9874e

  • SHA256

    1e79c881582c2c4cf58783513f9125867073f568cbe134c843cfb015e9b30b58

  • SHA512

    0620a3273a1a4ee9518183436f998ddd42d64466d176e46d6673fd11994802fdbb376d062b595f626a14e6fe23afa9d8a9d2099e4897233eaa946e46a02b25cd

Score
10/10
icedid1584008337bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1584008337

C2

stoikoplot.xyz

Targets

    • Target

      1e79c881582c2c4cf58783513f9125867073f568cbe13.dll

    • Size

      199KB

    • MD5

      8d05451aba55f305c6567335591d9b8a

    • SHA1

      80b43e572c1323bac282a6e66e17888a24b9874e

    • SHA256

      1e79c881582c2c4cf58783513f9125867073f568cbe134c843cfb015e9b30b58

    • SHA512

      0620a3273a1a4ee9518183436f998ddd42d64466d176e46d6673fd11994802fdbb376d062b595f626a14e6fe23afa9d8a9d2099e4897233eaa946e46a02b25cd

    Score
    10/10
    icedid1584008337bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • IcedID First Stage Loader

      loader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks