icedid | baeb13eea3a71cfaba9d20ef373dcea69cf31f2ec21f45b83f29f699330cb3e3 | Triage

Resubmissions

09-12-2021 14:30

211209-rt5zqscca5 10

Sharing

General

Target

data.dll
Size

291KB
Sample

211209-rt5zqscca5
MD5

71c8eb081c33fd6b2c10effa92154a18
SHA1

8222ed4fcac2c7408e7fbb748af1752e72bb9b01
SHA256

baeb13eea3a71cfaba9d20ef373dcea69cf31f2ec21f45b83f29f699330cb3e3
SHA512

ca689b439edd294b38f553fd69784f70e9d011b165dc8c68f070ed95c3cb2255fc33f0b44a90f372b98973aaafb36abc903b536e38727e9465985c21c23a3a0c

Score

10^/10

icedid 870605016 banker trojan

Malware Config

Extracted

Family

icedid

Campaign

870605016

C2

guguchrome.com

Targets

- Target
  
  data.dll
- Size
  
  291KB
- MD5
  
  71c8eb081c33fd6b2c10effa92154a18
- SHA1
  
  8222ed4fcac2c7408e7fbb748af1752e72bb9b01
- SHA256
  
  baeb13eea3a71cfaba9d20ef373dcea69cf31f2ec21f45b83f29f699330cb3e3
- SHA512
  
  ca689b439edd294b38f553fd69784f70e9d011b165dc8c68f070ed95c3cb2255fc33f0b44a90f372b98973aaafb36abc903b536e38727e9465985c21c23a3a0c
Score

10^/10

icedid 870605016 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid870605016bankertrojan

behavioral2

icedid870605016bankertrojan