icedid | f865f53cb0f7c3f4824f9ec3b36228c15c94477344eae931ce8f594899bb632b | Triage

Submit
Reports

Overview

overview

Static

static

ord_482.docm

windows7_x64

ord_482.docm

windows10-2004_x64

Sharing

General

Target

f865f53cb0f7c3f4824f9ec3b36228c15c94477344eae931ce8f594899bb632b
Size

257KB
Sample

220521-msl31sfeck
MD5

7793ceb5048b3cbda3b017e67c4b733b
SHA1

79f4e992b024ddf07d837262f0c5c78f447844c1
SHA256

f865f53cb0f7c3f4824f9ec3b36228c15c94477344eae931ce8f594899bb632b
SHA512

1cf4cee36c33f19ea01b29b05d22067c4751e937acbb5646f427249f9f8ad6011620e676d98b75e9e0c4ceed270026db4c6791ab65e55c4f51f8b94b37658b51

Score

10^/10

icedid banker loader trojan

Static task

static1

Behavioral task

behavioral1

Sample

ord_482.docm

Resource

win7-20220414-en

icedid banker loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ord_482.docm

Resource

win10v2004-20220414-en

icedid banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

C2

3chickens.pw

Targets

- Target
  
  ord_482.doc
- Size
  
  266KB
- MD5
  
  bf61de5c8c5da0b79f0fccca3c4f5e04
- SHA1
  
  ce568d2e8d9c1c86a8caf54bbaa85b80984b5cbe
- SHA256
  
  eee5599e3d990a109e7346469d8739d184628192831144da80e69244ebdb19d0
- SHA512
  
  a55fc8f2bc6cb96c730331a9bd4d5a46a86008f7ed0b09b5c587246a8a370dba01e0227926aa01ab590b3df1fb7662d48c5b2966a651d05a7fe32bc5208379e8
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy