icedid | 46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1 | Triage

Submit
Reports

Overview

overview

Static

static

46b9f98c5b...f1.dll

windows7_x64

46b9f98c5b...f1.dll

windows10-2004_x64

Sharing

General

Target

46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1
Size

278KB
Sample

220417-t1fpjaaggr
MD5

ed0848e23ab64f82bb5196da308c6b6f
SHA1

cef4b3dacef49c0d3c9cc49a23a9c11401277e54
SHA256

46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1
SHA512

44ed59fdd711cedb84ee4bbe5a6c9f7d095830f4a6e54f513fd675a0ec3bf30c4fc262b8aa6efae0081c9748090c91e0bc57fcfa24600e0a4460bbc7db634b7d

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1.dll

Resource

win7-20220414-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1.dll

Resource

win10v2004-20220414-en

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

kravynolu.cyou

nikushotomo.cyou

Targets

- Target
  
  46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1
- Size
  
  278KB
- MD5
  
  ed0848e23ab64f82bb5196da308c6b6f
- SHA1
  
  cef4b3dacef49c0d3c9cc49a23a9c11401277e54
- SHA256
  
  46b9f98c5b291d76ba91e43e5d8a980ab1ea24e62da044fa5173f42950bda0f1
- SHA512
  
  44ed59fdd711cedb84ee4bbe5a6c9f7d095830f4a6e54f513fd675a0ec3bf30c4fc262b8aa6efae0081c9748090c91e0bc57fcfa24600e0a4460bbc7db634b7d
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy