icedid | e75fd278008b59ee6b0377088ec244e2f0f0c8ef43db19eb31070002e71fbd23 | Triage

Submit
Reports

Overview

overview

Static

static

f733d53791...da.dll

windows7_x64

f733d53791...da.dll

windows10-2004_x64

Sharing

General

Target

f733d53791eac3af5dade593ac263ada
Size

480KB
Sample

220531-kg1e6aage6
MD5

f733d53791eac3af5dade593ac263ada
SHA1

9231f9ed4a47c89d638947b6f5aa9c86306863c2
SHA256

e75fd278008b59ee6b0377088ec244e2f0f0c8ef43db19eb31070002e71fbd23
SHA512

d9618b35c29470992b9876226e4544f3a95786dee9f1d48de8f7c5c6941b33831a5843037608b5090e34a9f829fcc9a89d5c95fc100dbf0f60823282ba12a362

Score

10^/10

icedid 2581925242 banker loader suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

f733d53791eac3af5dade593ac263ada.dll

Resource

win7-20220414-en

icedid 2581925242 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f733d53791eac3af5dade593ac263ada.dll

Resource

win10v2004-20220414-en

icedid 2581925242 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

2581925242

C2

uleoballs.com

Targets

- Target
  
  f733d53791eac3af5dade593ac263ada
- Size
  
  480KB
- MD5
  
  f733d53791eac3af5dade593ac263ada
- SHA1
  
  9231f9ed4a47c89d638947b6f5aa9c86306863c2
- SHA256
  
  e75fd278008b59ee6b0377088ec244e2f0f0c8ef43db19eb31070002e71fbd23
- SHA512
  
  d9618b35c29470992b9876226e4544f3a95786dee9f1d48de8f7c5c6941b33831a5843037608b5090e34a9f829fcc9a89d5c95fc100dbf0f60823282ba12a362
Score

10^/10

icedid 2581925242 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2581925242bankerloadersuricatatrojan

behavioral2

icedid2581925242bankerloadersuricatatrojan

© 2018-2024

Terms | Privacy