Description
IcedID is a banking trojan capable of stealing credentials.
b52c0640957e5032b5160578f8cb99f9b066fde4f9431.dll
General
Target
Size
Sample
b52c0640957e5032b5160578f8cb99f9b066fde4f9431.dll
258KB
210421-e14kya6b2s
Score
10 /10
MD5
SHA1
SHA256
SHA512
2cbed069a079c2c57946e9cccb1f1f72
18c4208d04d1b0a5d0e423cb60ca87fd64eabf80
b52c0640957e5032b5160578f8cb99f9b066fde4f9431ee6869b2eea67338f28
372cc5969492964dcbed070981b1fd443b53e1fbc23664f75bfa01ee96aefc733998ff9d586b8099f455a7f3546cfcf4190038a9dfeb54d94903d0f4beba84c4
Malware Config
Extracted
| Family | icedid |
| Campaign | 3351099083 |
| C2 |
vaclicinni.xyz |
Targets
Target
MD5
Filesize
b52c0640957e5032b5160578f8cb99f9b066fde4f9431.dll
2cbed069a079c2c57946e9cccb1f1f72
258KB
Score
10/10
SHA1
SHA256
SHA512
18c4208d04d1b0a5d0e423cb60ca87fd64eabf80
b52c0640957e5032b5160578f8cb99f9b066fde4f9431ee6869b2eea67338f28
372cc5969492964dcbed070981b1fd443b53e1fbc23664f75bfa01ee96aefc733998ff9d586b8099f455a7f3546cfcf4190038a9dfeb54d94903d0f4beba84c4
Tags
Signatures
-
IcedID, BokBot
-
IcedID First Stage Loader
Tags
Related Tasks
MITRE ATT&CK Matrix
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Tasks