icedid | d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4 | Triage

Submit
Reports

Overview

overview

Static

static

dridex

windows10_x64

Sharing

General

Target

d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4
Size

534KB
Sample

220707-vwvhkacebn
MD5

cf2923ac651d5ec8f8bd48733b5eee6d
SHA1

e6003df35cb912f233526162413b672adafb5423
SHA256

d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4
SHA512

e8124d12a4aeb3925d0014082e1bd213c43f4a500abb0ada00435265670fb26ba61024261c57662b3d406741d7c5fd0807fc31959e55489ed027b8859d438ba4

Score

10^/10

icedid 227378761 banker loader suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4.dll

Resource

win10-20220414-en

icedid 227378761 banker loader suricata trojan

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

227378761

C2

blionarywesta.com

Targets

- Target
  
  d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4
- Size
  
  534KB
- MD5
  
  cf2923ac651d5ec8f8bd48733b5eee6d
- SHA1
  
  e6003df35cb912f233526162413b672adafb5423
- SHA256
  
  d8fc52aea2828c5195d9643509138b1607fee84d9dd6297770e9d19f3b7d20a4
- SHA512
  
  e8124d12a4aeb3925d0014082e1bd213c43f4a500abb0ada00435265670fb26ba61024261c57662b3d406741d7c5fd0807fc31959e55489ed027b8859d438ba4
Score

10^/10

icedid 227378761 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
- Blocklisted process makes network request
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid227378761bankerloadersuricatatrojan

© 2018-2024

Terms | Privacy