4af51e1230519e63f96e7dbbbd8b688575bddd2c33bbf.dll

General
Target

4af51e1230519e63f96e7dbbbd8b688575bddd2c33bbf.dll

Size

234KB

Sample

210507-gb33qarbdn

Score
10 /10
MD5

e63214b520465927432a040ce7cc538c

SHA1

78b50b0f796dea283e707dcb3a5a547b7c67af2b

SHA256

4af51e1230519e63f96e7dbbbd8b688575bddd2c33bbf34e1638dd6dced9f8de

SHA512

8c0a493d25bc54c3ab68f0174fc17a8ce9f78b6a664af8c451d3671644d9b30f3d2cba6665fe73d6a96d1356bad62cd07b004e90390dfef3b4988166477a3019

Malware Config

Extracted

Family icedid
Campaign 3042509645
C2

dsedertyhuiokle.top

Targets
Target

4af51e1230519e63f96e7dbbbd8b688575bddd2c33bbf.dll

MD5

e63214b520465927432a040ce7cc538c

Filesize

234KB

Score
10/10
SHA1

78b50b0f796dea283e707dcb3a5a547b7c67af2b

SHA256

4af51e1230519e63f96e7dbbbd8b688575bddd2c33bbf34e1638dd6dced9f8de

SHA512

8c0a493d25bc54c3ab68f0174fc17a8ce9f78b6a664af8c451d3671644d9b30f3d2cba6665fe73d6a96d1356bad62cd07b004e90390dfef3b4988166477a3019

Tags

Signatures

  • IcedID, BokBot

    Description

    IcedID is a banking trojan capable of stealing credentials.

    Tags

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10