icedid | 4786bab974f899355634be167aa2c689923ab38b00cdd71f678b988c09cd6414 | Triage

Sharing

General

Target

4786bab974f899355634be167aa2c689923ab38b00cdd.dll
Size

134KB
Sample

211130-g8cavshbd7
MD5

6424dcd52f8329de1d4ae5f9329e78a2
SHA1

91cc57703a1d8d0b9c9c3aa80d06d186a53230a7
SHA256

4786bab974f899355634be167aa2c689923ab38b00cdd71f678b988c09cd6414
SHA512

a5970c835090ede89b3d150cb50d2c7ec239f6434e9e0a53d31fe5e63236f108d24be60a197a496f4656c0564608f9d1c5c1a98231e9541480765f1dc115dfc8

Score

10^/10

icedid 3858400908 banker trojan

Malware Config

Extracted

Family

icedid

Campaign

3858400908

C2

mchinamoz.com

Targets

- Target
  
  4786bab974f899355634be167aa2c689923ab38b00cdd.dll
- Size
  
  134KB
- MD5
  
  6424dcd52f8329de1d4ae5f9329e78a2
- SHA1
  
  91cc57703a1d8d0b9c9c3aa80d06d186a53230a7
- SHA256
  
  4786bab974f899355634be167aa2c689923ab38b00cdd71f678b988c09cd6414
- SHA512
  
  a5970c835090ede89b3d150cb50d2c7ec239f6434e9e0a53d31fe5e63236f108d24be60a197a496f4656c0564608f9d1c5c1a98231e9541480765f1dc115dfc8
Score

10^/10

icedid 3858400908 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3858400908bankertrojan

behavioral2

icedid3858400908bankertrojan