icedid | fdae004e66cf3dee59380f06e27f286fc5772ce658c9e1765867c07a6fdd131b | Triage

Submit
Reports

Overview

overview

Static

static

loadfsc.dll

windows7_x64

loadfsc.dll

windows10-2004_x64

Sharing

General

Target

loadfsc.dll
Size

578KB
Sample

220219-jzg6vsafhj
MD5

602d1f74d126ae0487f8980995d7a5b1
SHA1

54c6c967c5ba6ff12a56c8298daaf84b663d409d
SHA256

fdae004e66cf3dee59380f06e27f286fc5772ce658c9e1765867c07a6fdd131b
SHA512

aad47da85168facef8b3ee19e795497c9db9914d57db79dd5462883677613c4d41c9697ce9f687dd8e2bdfe64b162a7387fbbd5fe721fb0cc4dcd08ed26fada5

Score

10^/10

icedid 412701809 banker suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

loadfsc.dll

Resource

win7-en-20211208

icedid 412701809 banker suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

loadfsc.dll

Resource

win10v2004-en-20220113

icedid 412701809 banker suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

412701809

C2

hdtrenity.com

Targets

- Target
  
  loadfsc.dll
- Size
  
  578KB
- MD5
  
  602d1f74d126ae0487f8980995d7a5b1
- SHA1
  
  54c6c967c5ba6ff12a56c8298daaf84b663d409d
- SHA256
  
  fdae004e66cf3dee59380f06e27f286fc5772ce658c9e1765867c07a6fdd131b
- SHA512
  
  aad47da85168facef8b3ee19e795497c9db9914d57db79dd5462883677613c4d41c9697ce9f687dd8e2bdfe64b162a7387fbbd5fe721fb0cc4dcd08ed26fada5
Score

10^/10

icedid 412701809 banker suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid412701809bankersuricatatrojan

behavioral2

icedid412701809bankersuricatatrojan

© 2018-2024

Terms | Privacy