icedid | 5871a6343d36dd07f8497c59a405c9b7b2b9397d6fdd0c6601776b16c6f1a252 | Triage

Sharing

General

Target

041de57b2eab34b35fc35ec16d95f86a.dll
Size

266KB
Sample

211202-3samzsfhd6
MD5

041de57b2eab34b35fc35ec16d95f86a
SHA1

63a4265dadd602717befbcdc5f94dad0a7a90e20
SHA256

5871a6343d36dd07f8497c59a405c9b7b2b9397d6fdd0c6601776b16c6f1a252
SHA512

405ef524d1c5793e642cc8a3a8c08404f07e65ba607039ab395395be0471ec686f416ac674dd64774865e9db0865e0a7548c6399540f24a0ebbdba630b89c97b

Score

10^/10

icedid 1892568649 banker trojan

Malware Config

Extracted

Family

icedid

Campaign

1892568649

C2

normyils.com

Targets

- Target
  
  041de57b2eab34b35fc35ec16d95f86a.dll
- Size
  
  266KB
- MD5
  
  041de57b2eab34b35fc35ec16d95f86a
- SHA1
  
  63a4265dadd602717befbcdc5f94dad0a7a90e20
- SHA256
  
  5871a6343d36dd07f8497c59a405c9b7b2b9397d6fdd0c6601776b16c6f1a252
- SHA512
  
  405ef524d1c5793e642cc8a3a8c08404f07e65ba607039ab395395be0471ec686f416ac674dd64774865e9db0865e0a7548c6399540f24a0ebbdba630b89c97b
Score

10^/10

icedid 1892568649 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1892568649bankertrojan

behavioral2

icedid1892568649bankertrojan