icedid | acede4e871ff7ebeda48cd568f8761e7129ed6f596cccbbdce7634e58ecbd7e8 | Triage

Submit
Reports

Overview

overview

Static

static

HUBzaedwKZmf.dll

windows7_x64

HUBzaedwKZmf.dll

windows10-2004_x64

Sharing

General

Target

HUBzaedwKZmf.bin
Size

815KB
Sample

220216-q34ycsdadk
MD5

cbe01f7b59cb028d55e02e2a91277820
SHA1

479c7c4c5fb5a1d6de5f3d0f648afff6ed3120d8
SHA256

acede4e871ff7ebeda48cd568f8761e7129ed6f596cccbbdce7634e58ecbd7e8
SHA512

722a4b458d8d5c4776d0a2f49861c92fe6268ee40efd775744e123fdfec97c8b75ed6781b84b47f5f0f407251518fc88b3b289d77cf98632cfff1c9c48449a65

Score

10^/10

icedid 3417632220 banker suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

HUBzaedwKZmf.dll

Resource

win7-en-20211208

icedid 3417632220 banker suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

HUBzaedwKZmf.dll

Resource

win10v2004-en-20220112

icedid 3417632220 banker suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

3417632220

Targets

- Target
  
  HUBzaedwKZmf.bin
- Size
  
  815KB
- MD5
  
  cbe01f7b59cb028d55e02e2a91277820
- SHA1
  
  479c7c4c5fb5a1d6de5f3d0f648afff6ed3120d8
- SHA256
  
  acede4e871ff7ebeda48cd568f8761e7129ed6f596cccbbdce7634e58ecbd7e8
- SHA512
  
  722a4b458d8d5c4776d0a2f49861c92fe6268ee40efd775744e123fdfec97c8b75ed6781b84b47f5f0f407251518fc88b3b289d77cf98632cfff1c9c48449a65
Score

10^/10

icedid 3417632220 banker suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

icedid3417632220bankersuricatatrojan

behavioral2

icedid3417632220bankersuricatatrojan

© 2018-2024

Terms | Privacy