icedid | 13fa17bdaa50b6ddeabad9b5ad62e269f81ce1295b5847027afc4fc7ceeb1904 | Triage

Submit
Reports

Overview

overview

Static

static

6e12475814...e3.dll

windows7_x64

6e12475814...e3.dll

windows10_x64

Sharing

General

Target

6e12475814e89c75ead27a22fe4d39e3.dll
Size

163KB
Sample

210506-4we1xtves2
MD5

6e12475814e89c75ead27a22fe4d39e3
SHA1

84b8d91aecf42d519c48ec1d1aeae0140d377e33
SHA256

13fa17bdaa50b6ddeabad9b5ad62e269f81ce1295b5847027afc4fc7ceeb1904
SHA512

09eb974cf50c0be102e0595c48e05537d6c8c2c28bf77b56f4d7b747f6bff718bd33c5e94a33eac7b572b19f33184c27bbbe4b824737b34f156dfbcc2199d020

Score

10^/10

icedid 861670232 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

6e12475814e89c75ead27a22fe4d39e3.dll

Resource

win7v20210408

icedid 861670232 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

6e12475814e89c75ead27a22fe4d39e3.dll

Resource

win10v20210410

icedid 861670232 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

861670232

C2

provokordino.space

Targets

- Target
  
  6e12475814e89c75ead27a22fe4d39e3.dll
- Size
  
  163KB
- MD5
  
  6e12475814e89c75ead27a22fe4d39e3
- SHA1
  
  84b8d91aecf42d519c48ec1d1aeae0140d377e33
- SHA256
  
  13fa17bdaa50b6ddeabad9b5ad62e269f81ce1295b5847027afc4fc7ceeb1904
- SHA512
  
  09eb974cf50c0be102e0595c48e05537d6c8c2c28bf77b56f4d7b747f6bff718bd33c5e94a33eac7b572b19f33184c27bbbe4b824737b34f156dfbcc2199d020
Score

10^/10

icedid 861670232 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid861670232bankerloadertrojan

behavioral2

icedid861670232bankerloadertrojan

© 2018-2024

Terms | Privacy