icedid | 19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0 | Triage

Submit
Reports

Overview

overview

Static

static

19ef0d590a...d0.dll

windows7_x64

19ef0d590a...d0.dll

windows10_x64

Sharing

General

Target

19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0
Size

191KB
Sample

210505-cfrgkehxfs
MD5

97dfb40b46ea9bc51a256bb1b1aa472e
SHA1

290e46431cd9fc6cca5308f77fb75f203cc4df6d
SHA256

19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0
SHA512

8ff54099008f2a1d75df3cff1caa8be88642047775fc46140c4f26017372203636981471a6f8bda5db15628d7bc41744201ce96e37dc5e3ff06ecf2f8b1234a7

Score

10^/10

icedid 861670232 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0.dll

Resource

win7v20210410

icedid 861670232 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0.dll

Resource

win10v20210410

icedid 861670232 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

861670232

C2

provokordino.space

Targets

- Target
  
  19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0
- Size
  
  191KB
- MD5
  
  97dfb40b46ea9bc51a256bb1b1aa472e
- SHA1
  
  290e46431cd9fc6cca5308f77fb75f203cc4df6d
- SHA256
  
  19ef0d590ae1ce128b0c96eeb58e95c5d5572f75d8b443648410300a57d4e8d0
- SHA512
  
  8ff54099008f2a1d75df3cff1caa8be88642047775fc46140c4f26017372203636981471a6f8bda5db15628d7bc41744201ce96e37dc5e3ff06ecf2f8b1234a7
Score

10^/10

icedid 861670232 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid861670232bankerloadertrojan

behavioral2

icedid861670232bankerloadertrojan

© 2018-2024

Terms | Privacy