General

  • Target

    1a4adb9bac04ec9fc94c9dd4ba90a0f9.dll

  • Size

    271KB

  • Sample

    210505-sdt8grx1re

  • MD5

    1a4adb9bac04ec9fc94c9dd4ba90a0f9

  • SHA1

    9a08757db0e98aee9be9ced2c238e5acc284f9c1

  • SHA256

    183b4ef83bf1c9447d2af1fd30b675c398c8c84e1e4e7ac14f5b89798b74363d

  • SHA512

    db6ed1c46097fb2b43e087fa15454c5bfba4c9e715049311ede93103c7ee69200efd67383b962565beb571b0089dcf6c113bb120739fec32bd4e40753dc82f8c

Malware Config

Extracted

Family

icedid

Campaign

3616463248

C2

tvorartificialnature.xyz

Targets

    • Target

      1a4adb9bac04ec9fc94c9dd4ba90a0f9.dll

    • Size

      271KB

    • MD5

      1a4adb9bac04ec9fc94c9dd4ba90a0f9

    • SHA1

      9a08757db0e98aee9be9ced2c238e5acc284f9c1

    • SHA256

      183b4ef83bf1c9447d2af1fd30b675c398c8c84e1e4e7ac14f5b89798b74363d

    • SHA512

      db6ed1c46097fb2b43e087fa15454c5bfba4c9e715049311ede93103c7ee69200efd67383b962565beb571b0089dcf6c113bb120739fec32bd4e40753dc82f8c

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks