icedid | 761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46 | Triage

Submit
Reports

Overview

overview

Static

static

7611148408...46.exe

windows7_x64

7611148408...46.exe

windows10-2004_x64

Sharing

General

Target

761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46
Size

1.5MB
Sample

220701-d1wgzsabfk
MD5

a44128ac144b7b03b9a18a1b3b81a3ab
SHA1

9d2afb0890ece493ddd68cd372d02d0e4b2edd70
SHA256

761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46
SHA512

6d6b18856ddc7aa192528e7621cf5c4e2b817885b2c1c973428ed6ef73c66d5c81d94acf24b96765189d3e10badcdb44c9a4d52838344c114a56001ea0eafcaf

Score

10^/10

icedid 2794990697 banker loader suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46.exe

Resource

win7-20220414-en

icedid 2794990697 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46.exe

Resource

win10v2004-20220414-en

icedid 2794990697 banker loader trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Botnet

2794990697

C2

sheaffic.org

memphase.com

vulcate.com

sheaffic.com

eurobable.com

Attributes

auth_var
1
url_path
/index.php

Extracted

Family

icedid

Targets

- Target
  
  761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46
- Size
  
  1.5MB
- MD5
  
  a44128ac144b7b03b9a18a1b3b81a3ab
- SHA1
  
  9d2afb0890ece493ddd68cd372d02d0e4b2edd70
- SHA256
  
  761114840822ac2ca103b8def7f30264034b0b783bed1127ba27ae5e13987d46
- SHA512
  
  6d6b18856ddc7aa192528e7621cf5c4e2b817885b2c1c973428ed6ef73c66d5c81d94acf24b96765189d3e10badcdb44c9a4d52838344c114a56001ea0eafcaf
Score

10^/10

icedid 2794990697 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata: ET MALWARE Possible Compromised Host AnubisNetworks Sinkhole Cookie Value Snkz
  suricata
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid2794990697bankerloadersuricatatrojan

behavioral2

icedid2794990697bankerloadertrojan

© 2018-2024

Terms | Privacy