Overview

overview

10

Static

static

lbtjxtqmrfi.dll

windows7_x64

10

lbtjxtqmrfi.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    lbtjxtqmrfi.dll

  • Size

    238KB

  • Sample

    211124-vhej7agdf2

  • MD5

    a8913b58338588117e971624e77673df

  • SHA1

    42bd069c90380f45e90b48189ea67c757f7add50

  • SHA256

    275cc0e74f49684fc38ea1084b1cc332c7cdcca7ab8ac0700487bf00eda9c91d

  • SHA512

    b7a1b9324993fe582262526f2c3981408fdef835434bed22d8d885120528bfac6652ab6abfbccb073af2cacac8f4effaf42b47fdffa7617bfc27c6b104c11a57

Score
10/10
icedid4191098835bankertrojan

Malware Config

Extracted

Family

icedid

Campaign

4191098835

C2

overpasta.ink

Targets

    • Target

      lbtjxtqmrfi.dll

    • Size

      238KB

    • MD5

      a8913b58338588117e971624e77673df

    • SHA1

      42bd069c90380f45e90b48189ea67c757f7add50

    • SHA256

      275cc0e74f49684fc38ea1084b1cc332c7cdcca7ab8ac0700487bf00eda9c91d

    • SHA512

      b7a1b9324993fe582262526f2c3981408fdef835434bed22d8d885120528bfac6652ab6abfbccb073af2cacac8f4effaf42b47fdffa7617bfc27c6b104c11a57

    Score
    10/10
    icedid4191098835bankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks