icedid | 3dc661144d51f66bc5a1e2fbdba241374ed8cd6b4ff9abde9dbee1a587b47704 | Triage

Submit
Reports

Overview

overview

Static

static

5ecbff4e5c...50.dll

windows7_x64

5ecbff4e5c...50.dll

windows10-2004_x64

Sharing

General

Target

5ecbff4e5c7f9a21e9dcef7752ca4250.dll
Size

815KB
Sample

220711-wwfj3sbeep
MD5

5ecbff4e5c7f9a21e9dcef7752ca4250
SHA1

d25be788a4604ce96e698406e9b3b58ad15146db
SHA256

3dc661144d51f66bc5a1e2fbdba241374ed8cd6b4ff9abde9dbee1a587b47704
SHA512

916f6622496afbc4a1c974d414a706a1099c31e0e096ba306288d277134bee1e69d50d13346f06c1e991fc9f3d563796acb980886f943c4fba4c884a62026333

Score

10^/10

icedid 4105767744 banker loader suricata trojan

Static task

static1

Behavioral task

behavioral1

Sample

5ecbff4e5c7f9a21e9dcef7752ca4250.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5ecbff4e5c7f9a21e9dcef7752ca4250.dll

Resource

win10v2004-20220414-en

icedid 4105767744 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

icedid

Campaign

4105767744

C2

frodupshopping.com

Targets

- Target
  
  5ecbff4e5c7f9a21e9dcef7752ca4250.dll
- Size
  
  815KB
- MD5
  
  5ecbff4e5c7f9a21e9dcef7752ca4250
- SHA1
  
  d25be788a4604ce96e698406e9b3b58ad15146db
- SHA256
  
  3dc661144d51f66bc5a1e2fbdba241374ed8cd6b4ff9abde9dbee1a587b47704
- SHA512
  
  916f6622496afbc4a1c974d414a706a1099c31e0e096ba306288d277134bee1e69d50d13346f06c1e991fc9f3d563796acb980886f943c4fba4c884a62026333
Score

10^/10

icedid 4105767744 banker loader suricata trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata: ET MALWARE Win32/IcedID Request Cookie
  suricata
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

icedid4105767744bankerloadersuricatatrojan

© 2018-2024

Terms | Privacy