icedid | bbd75898e0902d10171024ab7433f2921a3bf6ab8a7095d7fabcdde250db8691 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bbd75898e0902d10171024ab7433f2921a3bf6ab8a7095d7fabcdde250db8691.dll
Size

13KB
Sample

220914-dfd27shbe2
MD5

c36deef28cfca679cc5250e979f651e3
SHA1

06338dc767c1990cfb141b573d65aaebfdf2b77f
SHA256

bbd75898e0902d10171024ab7433f2921a3bf6ab8a7095d7fabcdde250db8691
SHA512

707b03c8a4792f96dcd7d2a2b96564fa69e0c08acc50c495e2f2e8a68e052678d4381811f0b2cc27e51329b495c17a53621ed203517b005ed7a59fd2b32fd5b5
SSDEEP

192:sHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgwRbZJXBAQYfPq/3KbL:s1Mf0gJSix2AA56RCiZV59GQYnq/6bL

Score

10^/10

icedid 3278515550 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3278515550

C2

qvantumbrakesz.com

Extracted

Family

icedid

Campaign

3278515550

Targets

- Target
  
  bbd75898e0902d10171024ab7433f2921a3bf6ab8a7095d7fabcdde250db8691.dll
- Size
  
  13KB
- MD5
  
  c36deef28cfca679cc5250e979f651e3
- SHA1
  
  06338dc767c1990cfb141b573d65aaebfdf2b77f
- SHA256
  
  bbd75898e0902d10171024ab7433f2921a3bf6ab8a7095d7fabcdde250db8691
- SHA512
  
  707b03c8a4792f96dcd7d2a2b96564fa69e0c08acc50c495e2f2e8a68e052678d4381811f0b2cc27e51329b495c17a53621ed203517b005ed7a59fd2b32fd5b5
- SSDEEP
  
  192:sHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgwRbZJXBAQYfPq/3KbL:s1Mf0gJSix2AA56RCiZV59GQYnq/6bL
Score

10^/10

icedid 3278515550 banker trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

loader3278515550icedid

behavioral1

icedid3278515550bankertrojan

behavioral2

icedid3278515550bankertrojan