Overview

overview

10

Static

static

628b068ebb...23.dll

windows7_x64

10

628b068ebb...23.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    628b068ebb6c34efd8b4d21d4f4c7723.dll

  • Size

    403KB

  • Sample

    211103-vb9fzsbdfn

  • MD5

    628b068ebb6c34efd8b4d21d4f4c7723

  • SHA1

    957bb67a89b7009539ecf2ac61ce83daf497a464

  • SHA256

    04d14e3e9c577b0fd56c1c63a6c9bdc5220db0b6af8d373831da2a3a79c45881

  • SHA512

    93870c1f43eba9104f5bfb7f0e58dd299e54d8958cb746f641b336da639a919b626f836914e1ad6582f2e83206984c6003c7476d84905d6cedc32cce2c3dc750

Score
10/10
icedid3022016856bankersuricatatrojan

Malware Config

Extracted

Family

icedid

Campaign

3022016856

C2

actuallyobligat.info

Targets

    • Target

      628b068ebb6c34efd8b4d21d4f4c7723.dll

    • Size

      403KB

    • MD5

      628b068ebb6c34efd8b4d21d4f4c7723

    • SHA1

      957bb67a89b7009539ecf2ac61ce83daf497a464

    • SHA256

      04d14e3e9c577b0fd56c1c63a6c9bdc5220db0b6af8d373831da2a3a79c45881

    • SHA512

      93870c1f43eba9104f5bfb7f0e58dd299e54d8958cb746f641b336da639a919b626f836914e1ad6582f2e83206984c6003c7476d84905d6cedc32cce2c3dc750

    Score
    10/10
    icedid3022016856bankersuricatatrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks