Overview

overview

10

Static

static

SecuriteIn...35.dll

windows7_x64

10

SecuriteIn...35.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Win64.Kryptik.CTU.29173.10935

  • Size

    502KB

  • Sample

    211215-ng5lnaadap

  • MD5

    d59fa2838f83e31ef0d2bd34bd86ef40

  • SHA1

    d9115b1a962256b6accabfee45c5654f3ee64a47

  • SHA256

    32de1e4b5582279bf16bfcad4c55b5e0f1151afddb2a96013442b3158f4a02d8

  • SHA512

    92a9888556706f4f3bf33e6cdfeddca958780438c73a6749e18b4a59b866b96e67c1736cf557ed470ae095c3385bb0818c4199bc00d2c088a5179029c587a93f

Score
10/10
icedid3372020928bankersuricatatrojan

Malware Config

Extracted

Family

icedid

Campaign

3372020928

C2

jeliskvosh.com

Targets

    • Target

      SecuriteInfo.com.Win64.Kryptik.CTU.29173.10935

    • Size

      502KB

    • MD5

      d59fa2838f83e31ef0d2bd34bd86ef40

    • SHA1

      d9115b1a962256b6accabfee45c5654f3ee64a47

    • SHA256

      32de1e4b5582279bf16bfcad4c55b5e0f1151afddb2a96013442b3158f4a02d8

    • SHA512

      92a9888556706f4f3bf33e6cdfeddca958780438c73a6749e18b4a59b866b96e67c1736cf557ed470ae095c3385bb0818c4199bc00d2c088a5179029c587a93f

    Score
    10/10
    icedid3372020928bankersuricatatrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks