icedid | 7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1 | Triage

Submit
Reports

Overview

overview

Static

static

7fd8eddf1c...b1.dll

windows7_x64

7fd8eddf1c...b1.dll

windows10-2004_x64

Sharing

General

Target

7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1
Size

224KB
Sample

220503-zswcxafbhp
MD5

0642606a7de23c0aa28be0654f239227
SHA1

14c1b53c9d5464071ebe172b3bfea45ec2e909e8
SHA256

7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1
SHA512

a57177f2d2d6cd7fda10c922246cd53da8864527c69312bf5dc2a9f4302e3c799f5d70e7e3dd1f2a3059a41cba289720b3a41f1bc61b5874bbcd66bd774a4276

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1.dll

Resource

win7-20220414-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1.dll

Resource

win10v2004-20220414-en

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

loadberlin.casa

Targets

- Target
  
  7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1
- Size
  
  224KB
- MD5
  
  0642606a7de23c0aa28be0654f239227
- SHA1
  
  14c1b53c9d5464071ebe172b3bfea45ec2e909e8
- SHA256
  
  7fd8eddf1c48476f5c029f79e520bcf30b6e721b0e7df18ab6e9c9af167973b1
- SHA512
  
  a57177f2d2d6cd7fda10c922246cd53da8864527c69312bf5dc2a9f4302e3c799f5d70e7e3dd1f2a3059a41cba289720b3a41f1bc61b5874bbcd66bd774a4276
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy