icedid | 61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8 | Triage

Submit
Reports

Overview

overview

Static

static

61c7b18cb1...b8.dll

windows7_x64

1

61c7b18cb1...b8.dll

windows10-2004_x64

Sharing

General

Target

61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8
Size

345KB
Sample

220420-lpna8sfeg5
MD5

45bdaabeb6db069a6bab70c792e9840c
SHA1

9e93386834c2becd2e45bc7034528bb71febbbec
SHA256

61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8
SHA512

88289262e0d2ecce76515d7464f20fc3207c5a9a2baa11b20615a44518674febbc1ff29c3d4d9bec208009a647741b3e7ed067df4f21aa95e66e6b631c6b0118

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8.dll

Resource

win10v2004-20220414-en

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

redicilious.online

Targets

- Target
  
  61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8
- Size
  
  345KB
- MD5
  
  45bdaabeb6db069a6bab70c792e9840c
- SHA1
  
  9e93386834c2becd2e45bc7034528bb71febbbec
- SHA256
  
  61c7b18cb163279e003c585702df47f1ad8f99909f507bfae1c9d9ef9d754fb8
- SHA512
  
  88289262e0d2ecce76515d7464f20fc3207c5a9a2baa11b20615a44518674febbc1ff29c3d4d9bec208009a647741b3e7ed067df4f21aa95e66e6b631c6b0118
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy