Overview

overview

10

Static

static

b52088b450...89.dll

windows7_x64

10

b52088b450...89.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b52088b450c0da2ebf01390ce27ec689.dll

  • Size

    251KB

  • Sample

    211202-lv3m4secbm

  • MD5

    b52088b450c0da2ebf01390ce27ec689

  • SHA1

    35cc9607f90731f367880c8fbf6efce599bf31f3

  • SHA256

    8b556abd35d7d8914b19f9bfa9b394d15ae2a782cf8537f00b18d44db7174b5f

  • SHA512

    5954ac688db9fdead01a3e355a4e09a4bab831414e87df748c24904aa30f655fbf6f906d0c0de6bb998588358ce06ef7239ea603b94272c51f9be53fbd99b782

Score
10/10
icedid1892568649bankersuricatatrojan

Malware Config

Extracted

Family

icedid

Campaign

1892568649

C2

normyils.com

Targets

    • Target

      b52088b450c0da2ebf01390ce27ec689.dll

    • Size

      251KB

    • MD5

      b52088b450c0da2ebf01390ce27ec689

    • SHA1

      35cc9607f90731f367880c8fbf6efce599bf31f3

    • SHA256

      8b556abd35d7d8914b19f9bfa9b394d15ae2a782cf8537f00b18d44db7174b5f

    • SHA512

      5954ac688db9fdead01a3e355a4e09a4bab831414e87df748c24904aa30f655fbf6f906d0c0de6bb998588358ce06ef7239ea603b94272c51f9be53fbd99b782

    Score
    10/10
    icedid1892568649bankersuricatatrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks