Overview

overview

10

Static

static

cmd.bat

windows7-x64

1

cmd.bat

windows10-2004-x64

1

real.dll

windows7-x64

10

real.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    core.zip

  • Size

    496KB

  • Sample

    220727-sf193aafc3

  • MD5

    8aad7c91c9ccfc7470ebea1ea1ad2987

  • SHA1

    62554896db1d9bd28d77737f831e9a98bbd3d658

  • SHA256

    4d8aaa648331adfe2ca928bea1163b3b35b480b94bdac920ed2ea537e482401d

  • SHA512

    1997894cad9f50f6a7aea38631dac45d3f87d95ad28e6c8a2e7d40d9833c2524edf51bcdd3de8f385753ced2a528e67fa577421a625371122d9ce8e641cd89d3

Score
10/10
icedid2056920153bankercore_loadertrojan

Malware Config

Extracted

Family

icedid

Botnet

2056920153

C2

mlidaxeraza.com

izzicarat.com
Attributes
  • auth_var

    23

  • url_path

    /news/

Targets

    • Target

      cmd.bat

    • Size

      181B

    • MD5

      f953de7108cd2c348c2600d1791ebd93

    • SHA1

      1fc4a526b82f567f949d3b73a3f4374d32650064

    • SHA256

      e9cabf0e959cadb7c12bc5e6c04a7fc5d16c72c533e39b04fc87e0e529282b59

    • SHA512

      b669aef5492c48f7ac87ff7575d8ad78265a411c725306ee1d3abf5c2ff2a3d4faa0b652e1f5b18cf2bf1ba29084a4e69e3fddd443629c55030f3e349fd73685

    Score
    1/10
    behavioral1behavioral2

    • Target

      real.dat

    • Size

      162KB

    • MD5

      aabecf520de38b83f4259283024a67c2

    • SHA1

      39e9d4ad96a47aab893cabc971f00c7b277e03b5

    • SHA256

      993789bb8057c093fa3a483f28c43e6d002b574c3a34b3a1c0d886f72a278833

    • SHA512

      dea3eec946c3093a9c2df5156a34ad11b4566f9e643937a6b583472fef19410eb2e12ce62fea94625b5221b4baa768b2e816718680acf1598b4ee9267502e1ec

    Score
    10/10
    icedid2056920153bankercore_loadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks