icedid | 91b51e17fbbea3524af6957c20345165ddc2d0aa60a0a1e1b283ac21c832b5ac | Triage

Sharing

General

Target

xoeyzeae4.dll
Size

49KB
Sample

220809-hj7k5sedfm
MD5

51d77400ecd0caa0b0dca7d31ec2cf26
SHA1

6fc6fcb47b6efaafa72929e44a333af7570bd783
SHA256

91b51e17fbbea3524af6957c20345165ddc2d0aa60a0a1e1b283ac21c832b5ac
SHA512

c2fb685f1417b531423dd29c16db8060febdfd21a62aabb7e58372298586c8cb872dfb115ec874c42e335792754807c4ca7dc07c24862fecc47a7b791e41907b

Score

10^/10

icedid 3524611504 banker core_loader trojan

Malware Config

Extracted

Family

icedid

Botnet

3524611504

C2

wronigrabs.com

nokainptisarda.com

Attributes

auth_var
14
url_path
/news/

Targets

- Target
  
  xoeyzeae4.dll
- Size
  
  49KB
- MD5
  
  51d77400ecd0caa0b0dca7d31ec2cf26
- SHA1
  
  6fc6fcb47b6efaafa72929e44a333af7570bd783
- SHA256
  
  91b51e17fbbea3524af6957c20345165ddc2d0aa60a0a1e1b283ac21c832b5ac
- SHA512
  
  c2fb685f1417b531423dd29c16db8060febdfd21a62aabb7e58372298586c8cb872dfb115ec874c42e335792754807c4ca7dc07c24862fecc47a7b791e41907b
Score

10^/10

icedid 3524611504 banker core_loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3524611504bankercore_loadertrojan

behavioral2

icedid3524611504bankercore_loadertrojan