Overview

overview

10

Static

static

5313035246...28.dll

windows7-x64

10

5313035246...28.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5313035246d6c4f181b3ad017b4fde28.dll.exe

  • Size

    452KB

  • Sample

    220928-keqg6sfde8

  • MD5

    5313035246d6c4f181b3ad017b4fde28

  • SHA1

    f905fcd98cf9ff4554452adb615d183d29129f3c

  • SHA256

    cc4d5053503831c3112293f78d7058ceec011470a844e0abaaa27c89da9ea048

  • SHA512

    e518de4b55ee27edf565248a646c6ddd07d5563c8f153555db886515ecc20b94d8831e5471ef32085e7e23fb2068a02f31253adbe87366b69268b1a5a149b162

  • SSDEEP

    3072:NtJOuzQiAIOvJ+1rzyp5cq1LGKFKHrt9F5p3BZiZqBAJLMok3n+CBrMrRZm1xAyl:3JOuZrzyp5V1LGKiBBMSkLTc+yyZmAU

Score
10/10
icedid2349072319bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

2349072319

C2

sebdgoldingor.com

Targets

    • Target

      5313035246d6c4f181b3ad017b4fde28.dll.exe

    • Size

      452KB

    • MD5

      5313035246d6c4f181b3ad017b4fde28

    • SHA1

      f905fcd98cf9ff4554452adb615d183d29129f3c

    • SHA256

      cc4d5053503831c3112293f78d7058ceec011470a844e0abaaa27c89da9ea048

    • SHA512

      e518de4b55ee27edf565248a646c6ddd07d5563c8f153555db886515ecc20b94d8831e5471ef32085e7e23fb2068a02f31253adbe87366b69268b1a5a149b162

    • SSDEEP

      3072:NtJOuzQiAIOvJ+1rzyp5cq1LGKFKHrt9F5p3BZiZqBAJLMok3n+CBrMrRZm1xAyl:3JOuZrzyp5V1LGKiBBMSkLTc+yyZmAU

    Score
    10/10
    icedid2349072319bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks