Overview

overview

10

Static

static

wobip7.dll

windows7_x64

10

wobip7.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wobip7.zip

  • Size

    76KB

  • Sample

    211202-t2e5dsdeg3

  • MD5

    b304c52981bc41b857bd9133be4068e7

  • SHA1

    12c0fe1b30e5141e1fd071dac1b6473f816269f6

  • SHA256

    ce09fe9cabe24b428d25c62c62e935e21e3b46ab841c86fb95112c7b36909999

  • SHA512

    f10d908b0fcf7a1f499c43f2bca225facb6773529a2a54ce6dd21a5704ce2cedf62c6b3c534bfe81d99a7546f41e1378bb1345e7f3a5e9dfc248320cc4e69333

Score
10/10
icedid1892568649bankertrojan

Malware Config

Extracted

Family

icedid

Campaign

1892568649

C2

normyils.com

Targets

    • Target

      wobip7

    • Size

      266KB

    • MD5

      d3c2536718a9c01de4b342d7df078a8f

    • SHA1

      3692cedf86418c6c3eb4103dade770b3cd959c11

    • SHA256

      4ace9341d54889255357c295e5dc4d70a06fb7e7c8ef781611f497d9efb4f6e9

    • SHA512

      a8569546024bb0297d698e04ba30228088d83cb29304ce30d42e10b3cb2a9edfcc124fda2a581469223ec946a024fc2b894171de4144c72d0ccfa2180781e81a

    Score
    10/10
    icedid1892568649bankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks