icedid | d1634c8dd16b4b1480065039fac62d6c1900692f0ccc9bf52c8ddc65599fbf3d | Triage

Submit
Reports

Overview

overview

Static

static

Kiod.hod.dll

windows7_x64

Kiod.hod.dll

windows10_x64

Sharing

General

Target

Kiod.hod
Size

64KB
Sample

210409-1lbtlvfs32
MD5

d7b3fe762d53da6ea7028d1d48cb11f1
SHA1

e3ff87266aa56dd14e8f5fa70e44fe0539924079
SHA256

d1634c8dd16b4b1480065039fac62d6c1900692f0ccc9bf52c8ddc65599fbf3d
SHA512

035e9a44e911a792762bdb5d58d341f4c03422f765a74d18998076b6dc7b4ac04a48a1133574fa1590cc797531a8961623923b175390e9bcb8900f844e7a9a34

Score

10^/10

icedid 2046050 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

Kiod.hod.dll

Resource

win7v20201028

icedid 2046050 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Kiod.hod.dll

Resource

win10v20201028

icedid 2046050 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

2046050

C2

calldivorce.fun

Targets

- Target
  
  Kiod.hod
- Size
  
  64KB
- MD5
  
  d7b3fe762d53da6ea7028d1d48cb11f1
- SHA1
  
  e3ff87266aa56dd14e8f5fa70e44fe0539924079
- SHA256
  
  d1634c8dd16b4b1480065039fac62d6c1900692f0ccc9bf52c8ddc65599fbf3d
- SHA512
  
  035e9a44e911a792762bdb5d58d341f4c03422f765a74d18998076b6dc7b4ac04a48a1133574fa1590cc797531a8961623923b175390e9bcb8900f844e7a9a34
Score

10^/10

icedid 2046050 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2046050bankerloadertrojan

behavioral2

icedid2046050bankerloadertrojan

© 2018-2024

Terms | Privacy