General

  • Target

    b2715b04c731c53b81b7edad1299413a.dll

  • Size

    183KB

  • Sample

    210510-4gz1zqdxsn

  • MD5

    b2715b04c731c53b81b7edad1299413a

  • SHA1

    019c266985428e328b1efb26e803954ad9229c83

  • SHA256

    51cfaf0e7df40e783d3636b6768fed03261cee616cc84b62da787ec4520739c5

  • SHA512

    d9c9c2c4cb9b2fd098c19a021ca2110231a16f30b520af9ec908b332a2d79e114128f5df83e3e8a2a6237725113f02d9ef01ab5b8a044b9a01532aefad981312

Malware Config

Extracted

Family

icedid

Campaign

861670232

C2

provokordino.space

Targets

    • Target

      b2715b04c731c53b81b7edad1299413a.dll

    • Size

      183KB

    • MD5

      b2715b04c731c53b81b7edad1299413a

    • SHA1

      019c266985428e328b1efb26e803954ad9229c83

    • SHA256

      51cfaf0e7df40e783d3636b6768fed03261cee616cc84b62da787ec4520739c5

    • SHA512

      d9c9c2c4cb9b2fd098c19a021ca2110231a16f30b520af9ec908b332a2d79e114128f5df83e3e8a2a6237725113f02d9ef01ab5b8a044b9a01532aefad981312

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks