icedid | 3a8e32c2728494c46c8ed24f58ec26aaeb7cc91bc19f7e14e3da3cddc1b49aa1 | Triage

Sharing

General

Target

58e035ff5a8176daaf45561c46c442f6.dll
Size

251KB
Sample

211202-myek5aabe2
MD5

58e035ff5a8176daaf45561c46c442f6
SHA1

6015f9023ceb694474bb4d82ac530eb431eef8c1
SHA256

3a8e32c2728494c46c8ed24f58ec26aaeb7cc91bc19f7e14e3da3cddc1b49aa1
SHA512

7d7226c898c3c0028f048c416e26ac26ddf75acc3c789e77c4bb3bd388d6224da95feac65d81715a25bc2ccaeb047d0ee78d141ea86b433436ff80e30d0953ec

Score

10^/10

icedid 1892568649 banker trojan

Malware Config

Extracted

Family

icedid

Campaign

1892568649

C2

normyils.com

Targets

- Target
  
  58e035ff5a8176daaf45561c46c442f6.dll
- Size
  
  251KB
- MD5
  
  58e035ff5a8176daaf45561c46c442f6
- SHA1
  
  6015f9023ceb694474bb4d82ac530eb431eef8c1
- SHA256
  
  3a8e32c2728494c46c8ed24f58ec26aaeb7cc91bc19f7e14e3da3cddc1b49aa1
- SHA512
  
  7d7226c898c3c0028f048c416e26ac26ddf75acc3c789e77c4bb3bd388d6224da95feac65d81715a25bc2ccaeb047d0ee78d141ea86b433436ff80e30d0953ec
Score

10^/10

icedid 1892568649 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1892568649bankertrojan

behavioral2

icedid1892568649bankertrojan