icedid | 6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855 | Triage

Submit
Reports

Overview

overview

Static

static

6b9dea0ee1...55.dll

windows7_x64

6b9dea0ee1...55.dll

windows10-2004_x64

Sharing

General

Target

6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855
Size

275KB
Sample

220417-hwkbdaaagn
MD5

65170474a68cb34c8f2f2e1509ef95cd
SHA1

7884fb513decf5a218a7103e4a89ff70195b7a81
SHA256

6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855
SHA512

e217e0ed697136e8b1fd5f07747c24303d8bd511938e69aebdd5383471fad3a03fe7a0ca9cdafe4855088221418263a02a2dedf3ab1b931ff619079fb1b5623c

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855.dll

Resource

win7-20220414-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855.dll

Resource

win10v2004-20220414-en

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

balkimraklire.cyou

angarakolessi.top

Targets

- Target
  
  6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855
- Size
  
  275KB
- MD5
  
  65170474a68cb34c8f2f2e1509ef95cd
- SHA1
  
  7884fb513decf5a218a7103e4a89ff70195b7a81
- SHA256
  
  6b9dea0ee12016eb5575f80c6e146c7cc3daebfedb45d8ddbbd84f639ec83855
- SHA512
  
  e217e0ed697136e8b1fd5f07747c24303d8bd511938e69aebdd5383471fad3a03fe7a0ca9cdafe4855088221418263a02a2dedf3ab1b931ff619079fb1b5623c
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy