icedid | fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4 | Triage

Submit
Reports

Overview

overview

Static

static

fa79f39d25...a4.exe

windows7_x64

fa79f39d25...a4.exe

windows10-2004_x64

Sharing

General

Target

fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4
Size

228KB
Sample

220512-pnm6mahbbj
MD5

0e582f1d214712c263429692549010ef
SHA1

50c8cbdaa3b781d00e6e8df336af7620fcb90136
SHA256

fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4
SHA512

7eac85ab9f8e9ff4d7602569d363293639b997e609694ade84e8211aa9dddeec67984281f0775da6970d41e0ed9e13d6d845afaf14a3dbd1287b819d56c010ff

Score

10^/10

icedid 3940132575 banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4.exe

Resource

win7-20220414-en

icedid 3940132575 banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4.exe

Resource

win10v2004-20220414-en

icedid 3940132575 banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Extracted

Family

icedid

Botnet

3940132575

C2

besitxavier.best

nazifestivo.best

Attributes

auth_var
2
url_path
/audio/

Targets

- Target
  
  fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4
- Size
  
  228KB
- MD5
  
  0e582f1d214712c263429692549010ef
- SHA1
  
  50c8cbdaa3b781d00e6e8df336af7620fcb90136
- SHA256
  
  fa79f39d2512326f3645ec051f32c4b0f175142bc5f43e0b869bdcfe32d18ca4
- SHA512
  
  7eac85ab9f8e9ff4d7602569d363293639b997e609694ade84e8211aa9dddeec67984281f0775da6970d41e0ed9e13d6d845afaf14a3dbd1287b819d56c010ff
Score

10^/10

icedid 3940132575 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3940132575bankerloadertrojan

behavioral2

icedid3940132575bankerloadertrojan

© 2018-2024

Terms | Privacy