icedid | ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682 | Triage

Submit
Reports

Overview

overview

Static

static

ccba26997d...82.dll

windows7_x64

ccba26997d...82.dll

windows10_x64

Sharing

General

Target

ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682
Size

160KB
Sample

210506-9k3b6pdhe2
MD5

cf043f2d4c073eed412785bc432c8818
SHA1

64a29e799724cbdbf304156714601dd9331e55ca
SHA256

ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682
SHA512

c12ec2d34c2fd1f6575d5118e52877e6b9335e26be31de27e5247b4c754fe9fc8ca187924a82bd68b9d1711fdea304e6263b2b5911265cb508914bb06bda8e1a

Score

10^/10

icedid 861670232 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682.dll

Resource

win7v20210408

icedid 861670232 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682.dll

Resource

win10v20210410

icedid 861670232 banker loader trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

861670232

C2

provokordino.space

Targets

- Target
  
  ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682
- Size
  
  160KB
- MD5
  
  cf043f2d4c073eed412785bc432c8818
- SHA1
  
  64a29e799724cbdbf304156714601dd9331e55ca
- SHA256
  
  ccba26997d699542b90b5147c0f2bb3ecc06f20b14a89823ac98062ef8a74682
- SHA512
  
  c12ec2d34c2fd1f6575d5118e52877e6b9335e26be31de27e5247b4c754fe9fc8ca187924a82bd68b9d1711fdea304e6263b2b5911265cb508914bb06bda8e1a
Score

10^/10

icedid 861670232 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid861670232bankerloadertrojan

behavioral2

icedid861670232bankerloadertrojan

© 2018-2024

Terms | Privacy