Overview

overview

10

Static

static

GLdh1CKp.dll

windows7_x64

10

GLdh1CKp.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GLdh1CKp.dll

  • Size

    144KB

  • Sample

    220308-vw3tyahfb8

  • MD5

    2472891d8fc307d184b4bdad6721aea3

  • SHA1

    6b0611b597a08906d0e80f231011be487bec38cb

  • SHA256

    63d06f257647514c56b7a8cbe5ee182c834dc8bf09663d4f99a8b568d9e7ff95

  • SHA512

    d712ab5983f9a74ce49db45adf2ae4a9eb3c95710b384de97de857ef0f9577c5459b5cb85354d943ca3e14783ecd1733ebc746c4dcf557470ebbbab3fcb9fba1

Score
10/10
icedid1865677378bankertrojan

Malware Config

Extracted

Family

icedid

Campaign

1865677378

C2

golinisye.top

Targets

    • Target

      GLdh1CKp.dll

    • Size

      144KB

    • MD5

      2472891d8fc307d184b4bdad6721aea3

    • SHA1

      6b0611b597a08906d0e80f231011be487bec38cb

    • SHA256

      63d06f257647514c56b7a8cbe5ee182c834dc8bf09663d4f99a8b568d9e7ff95

    • SHA512

      d712ab5983f9a74ce49db45adf2ae4a9eb3c95710b384de97de857ef0f9577c5459b5cb85354d943ca3e14783ecd1733ebc746c4dcf557470ebbbab3fcb9fba1

    Score
    10/10
    icedid1865677378bankertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks