Overview

overview

10

Static

static

d2276fc146...c0.dll

windows7_x64

10

d2276fc146...c0.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d2276fc146f90775947e815b998dc4c0.dll

  • Size

    577KB

  • Sample

    220220-sx2bdscfej

  • MD5

    d2276fc146f90775947e815b998dc4c0

  • SHA1

    ec43b09a6d954ac1eaaeef81082774b015dac435

  • SHA256

    76c1e9298873358e28f93977eb97350801937187519ea63fbbb8f8dfe1ba52fc

  • SHA512

    036d2a4f99f55abb5671fdab5e0db483fe2cea4e4a4b72b61a99fca7603427352b200c5ede7dabb729eefcb5f6c724bb5ced0680092ed8a0003cc23c37209350

Score
10/10
icedid1117948791bankersuricatatrojan

Malware Config

Extracted

Family

icedid

Campaign

1117948791

C2

reseptors.com

Targets

    • Target

      d2276fc146f90775947e815b998dc4c0.dll

    • Size

      577KB

    • MD5

      d2276fc146f90775947e815b998dc4c0

    • SHA1

      ec43b09a6d954ac1eaaeef81082774b015dac435

    • SHA256

      76c1e9298873358e28f93977eb97350801937187519ea63fbbb8f8dfe1ba52fc

    • SHA512

      036d2a4f99f55abb5671fdab5e0db483fe2cea4e4a4b72b61a99fca7603427352b200c5ede7dabb729eefcb5f6c724bb5ced0680092ed8a0003cc23c37209350

    Score
    10/10
    icedid1117948791bankersuricatatrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata: ET MALWARE Win32/IcedID Request Cookie

      suricata
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks