icedid | 40f8e21ced35ee9ef36c81828cb464476e474c585c3da812cbf5569e43062f57 | Triage

Sharing

General

Target

40f8e21ced35ee9ef36c81828cb464476e474c585c3da812cbf5569e43062f57.dll
Size

13KB
Sample

220705-1q82nafcf4
MD5

06294a0afbe0d4053515971fd09ae62b
SHA1

b59cdfac0d7f2195916b7a075b10e3277ba944bf
SHA256

40f8e21ced35ee9ef36c81828cb464476e474c585c3da812cbf5569e43062f57
SHA512

74ef0ee9abb8bc0998234aaf50bbbb92c7177357cba921ce23bdc67d84c4ecff60c3d5de56368ef6369f7cb9d8c03e2ec821aea81935870d7193e3851a8916a5

Score

10^/10

icedid 1060798742 banker loader suricata trojan

Malware Config

Extracted

Family

icedid

Campaign

1060798742

C2

carismorth.com

Extracted

Family

icedid

Campaign

1060798742

Targets

- Target
  
  40f8e21ced35ee9ef36c81828cb464476e474c585c3da812cbf5569e43062f57.dll
- Size
  
  13KB
- MD5
  
  06294a0afbe0d4053515971fd09ae62b
- SHA1
  
  b59cdfac0d7f2195916b7a075b10e3277ba944bf
- SHA256
  
  40f8e21ced35ee9ef36c81828cb464476e474c585c3da812cbf5569e43062f57
- SHA512
  
  74ef0ee9abb8bc0998234aaf50bbbb92c7177357cba921ce23bdc67d84c4ecff60c3d5de56368ef6369f7cb9d8c03e2ec821aea81935870d7193e3851a8916a5
Score

10^/10

icedid 1060798742 banker suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

loader1060798742icedid

behavioral1

icedid1060798742bankersuricatatrojan

behavioral2

icedid1060798742bankersuricatatrojan