icedid | 43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d | Triage

Submit
Reports

Overview

overview

Static

static

43128ab24e...3d.dll

windows7_x64

43128ab24e...3d.dll

windows10-2004_x64

Sharing

General

Target

43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d
Size

460KB
Sample

220316-pr63xabhdm
MD5

415bab6f39e69fbb6e82a619259c9c9f
SHA1

e2174c5f4193c1b98c9f157d2b8ea528bcd43715
SHA256

43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d
SHA512

63effab1dcd0165989d43162a85d33d9fb89cfb10916188fd48b24aefac8830ca2c30564d1c34eda0b21478cf6dbd9bc3106ec088be15e5e5e4814e67f63fa66

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d.dll

Resource

win7-20220311-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d.dll

Resource

win10v2004-en-20220113

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

karimorodrigo.pw

airtopolos.best

Targets

- Target
  
  43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d
- Size
  
  460KB
- MD5
  
  415bab6f39e69fbb6e82a619259c9c9f
- SHA1
  
  e2174c5f4193c1b98c9f157d2b8ea528bcd43715
- SHA256
  
  43128ab24e1c625999a41027b9537dbc72b97fcef3e74e7ef69887698a2c493d
- SHA512
  
  63effab1dcd0165989d43162a85d33d9fb89cfb10916188fd48b24aefac8830ca2c30564d1c34eda0b21478cf6dbd9bc3106ec088be15e5e5e4814e67f63fa66
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy