Overview

overview

10

Static

static

sah11.dll

windows7_x64

10

sah11.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sah11.dll

  • Size

    40KB

  • Sample

    210507-eaa5bsxdbe

  • MD5

    c9cd65d362490d6663625d057f1b107f

  • SHA1

    a2e86b2625987b272bed4460335f76e17a76a7ef

  • SHA256

    220752f17ac71a31824b3b26b7e176e71dae67a99d8ae3fe3e2401fba469c0fb

  • SHA512

    21f4823f751d23e4159a86c31b52560793665bb10baf714451331edb38d4b8e636fc9f0ca719567b6ffe07beb179333f1728e3c97c8a1fd508dd316a8f954bf9

Score
10/10
icedid2958621550bankertrojan

Malware Config

Extracted

Family

icedid

Campaign

2958621550

C2

nonprofitwerde.top

Targets

    • Target

      sah11.dll

    • Size

      40KB

    • MD5

      c9cd65d362490d6663625d057f1b107f

    • SHA1

      a2e86b2625987b272bed4460335f76e17a76a7ef

    • SHA256

      220752f17ac71a31824b3b26b7e176e71dae67a99d8ae3fe3e2401fba469c0fb

    • SHA512

      21f4823f751d23e4159a86c31b52560793665bb10baf714451331edb38d4b8e636fc9f0ca719567b6ffe07beb179333f1728e3c97c8a1fd508dd316a8f954bf9

    Score
    10/10
    icedid2958621550bankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks