icedid | 20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938 | Triage

Submit
Reports

Overview

overview

Static

static

20fbdedfeb...38.dll

windows7_x64

20fbdedfeb...38.dll

windows10-2004_x64

Sharing

General

Target

20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938
Size

310KB
Sample

220326-lv46yafgfk
MD5

b964bdec89766866acda5b520bd9e3d2
SHA1

8071c747c8cd7524441fdc88f21acb999a3af68a
SHA256

20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938
SHA512

7b689347b680be1d56a09b04c73f6df95dd33590d040b6e543bb5ddb94b7177b63918a1b23ba4b6b1418b7131dd569f0cb8330301bfec22920f2d626133170ad

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938.dll

Resource

win7-20220311-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938.dll

Resource

win10v2004-en-20220113

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

revopilte3.club

aweragiprooslk.cyou

Targets

- Target
  
  20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938
- Size
  
  310KB
- MD5
  
  b964bdec89766866acda5b520bd9e3d2
- SHA1
  
  8071c747c8cd7524441fdc88f21acb999a3af68a
- SHA256
  
  20fbdedfeb0334ad02265234f4defe6e43944566d02be150df9acd3aed899938
- SHA512
  
  7b689347b680be1d56a09b04c73f6df95dd33590d040b6e543bb5ddb94b7177b63918a1b23ba4b6b1418b7131dd569f0cb8330301bfec22920f2d626133170ad
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy