Overview

overview

10

Static

static

52Ihqms5.dll

windows7-x64

10

52Ihqms5.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52Ihqms5.dll

  • Size

    452KB

  • Sample

    220926-lvgqmsbeeq

  • MD5

    468b18187b0d570102888585c18995c2

  • SHA1

    a4ac663e32f19e69d6cf271143fb9651897c844f

  • SHA256

    9806282c9cc2b05181409cd60c2e27922857916eff912f5a3424b5bec61dcc9f

  • SHA512

    e3eafc3da3a6b3a17bfad6944d92cc56dd15ebd7b8b59da74380ea01878dd2d07a8318882fd9e440776857182b2f18f4de03fead6fafa2bc19fc3f8df389f768

  • SSDEEP

    6144:McwOnhu0n/yvHtFxTv80J0TET7FWQ+ItFMu5P1rh/I9I1ezFxsbxBFtfCnYL635y:MkyfS0Gn21epxsvqYL85o3

Score
10/10
icedid775636601bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

775636601

C2

aviadronazhed.com

Targets

    • Target

      52Ihqms5.dll

    • Size

      452KB

    • MD5

      468b18187b0d570102888585c18995c2

    • SHA1

      a4ac663e32f19e69d6cf271143fb9651897c844f

    • SHA256

      9806282c9cc2b05181409cd60c2e27922857916eff912f5a3424b5bec61dcc9f

    • SHA512

      e3eafc3da3a6b3a17bfad6944d92cc56dd15ebd7b8b59da74380ea01878dd2d07a8318882fd9e440776857182b2f18f4de03fead6fafa2bc19fc3f8df389f768

    • SSDEEP

      6144:McwOnhu0n/yvHtFxTv80J0TET7FWQ+ItFMu5P1rh/I9I1ezFxsbxBFtfCnYL635y:MkyfS0Gn21epxsvqYL85o3

    Score
    10/10
    icedid775636601bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks