70af1f4be8b7b4b4dbad4861dfa75b4b65c4697f1ab5a.dll

General
Target

70af1f4be8b7b4b4dbad4861dfa75b4b65c4697f1ab5a.dll

Size

234KB

Sample

210506-xw22g68zve

Score
10 /10
MD5

11d245d1f309022f6f59da477858f404

SHA1

2250ea4e6c6b483f2de744b733549c7da546ff27

SHA256

70af1f4be8b7b4b4dbad4861dfa75b4b65c4697f1ab5a824d273a7f302518a01

SHA512

b0aed9ee6162682b7a33e375f240e5c988fc804237c37c584ff937248d345b21dfa3c6c9f1bcc5832e0fe37ed5abdd54cca77186f6af797dd14b10133782b28d

Malware Config

Extracted

Family icedid
Campaign 3042509645
C2

dsedertyhuiokle.top

Targets
Target

70af1f4be8b7b4b4dbad4861dfa75b4b65c4697f1ab5a.dll

MD5

11d245d1f309022f6f59da477858f404

Filesize

234KB

Score
10/10
SHA1

2250ea4e6c6b483f2de744b733549c7da546ff27

SHA256

70af1f4be8b7b4b4dbad4861dfa75b4b65c4697f1ab5a824d273a7f302518a01

SHA512

b0aed9ee6162682b7a33e375f240e5c988fc804237c37c584ff937248d345b21dfa3c6c9f1bcc5832e0fe37ed5abdd54cca77186f6af797dd14b10133782b28d

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10