icedid | d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10-2004_x64

Sharing

General

Target

d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26
Size

534KB
Sample

220707-vrpfraccbj
MD5

4191dd5636d7585cbe6a11956c254800
SHA1

6cbfc627d0cd7473ffd8659907582adb22b39197
SHA256

d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26
SHA512

2fce1d1b7e8483169a9fc50bdadaceae63327ba633fa6588e33e377be7dfb00e37c2cb6996af41a2d9c0bad00f77b38a55c1d73e48295490b9b0b01fde3f885c

Score

10^/10

icedid 227378761 banker loader suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26.dll

Resource

win10v2004-20220414-en

icedid 227378761 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

227378761

C2

blionarywesta.com

Targets

- Target
  
  d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26
- Size
  
  534KB
- MD5
  
  4191dd5636d7585cbe6a11956c254800
- SHA1
  
  6cbfc627d0cd7473ffd8659907582adb22b39197
- SHA256
  
  d95157d82c9f5aef0274334b0fff8530b82ddab21ad080010a21c972d8207f26
- SHA512
  
  2fce1d1b7e8483169a9fc50bdadaceae63327ba633fa6588e33e377be7dfb00e37c2cb6996af41a2d9c0bad00f77b38a55c1d73e48295490b9b0b01fde3f885c
Score

10^/10

icedid 227378761 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
- Blocklisted process makes network request
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid227378761bankerloadersuricatatrojan

© 2018-2024

Terms | Privacy