Overview

overview

10

Static

static

degrading.dll

windows7-x64

1

degrading.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    degrading.dat

  • Size

    679KB

  • Sample

    220929-ny734sbffq

  • MD5

    64c9dcf6b02c51fec502de70591776b3

  • SHA1

    9923b7539a3ae4699c502e4b89adca4be74578a5

  • SHA256

    813841e58bf68d747ce5a9a19d31b5c667724197afde3ff6c1c5e0c23b6251fb

  • SHA512

    4cca690c9ba46d78b727242b136312dc8dc0a1bd5066874c5aa43076db01d7f8716e1c96f3af66f115636b21d162cb1d93061077babf7aea342666453554dd47

  • SSDEEP

    6144:mqeyWkVBErGW1VzZ5ZjGyg8Z2QYCbOEfa98HrGVNUfEfmawOMm8MCV+/9:teyWoBQGW1G3Qr6QOMNMXV

Score
10/10
icedid2220668032bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

2220668032

C2

alockajilly.com

Targets

    • Target

      degrading.dat

    • Size

      679KB

    • MD5

      64c9dcf6b02c51fec502de70591776b3

    • SHA1

      9923b7539a3ae4699c502e4b89adca4be74578a5

    • SHA256

      813841e58bf68d747ce5a9a19d31b5c667724197afde3ff6c1c5e0c23b6251fb

    • SHA512

      4cca690c9ba46d78b727242b136312dc8dc0a1bd5066874c5aa43076db01d7f8716e1c96f3af66f115636b21d162cb1d93061077babf7aea342666453554dd47

    • SSDEEP

      6144:mqeyWkVBErGW1VzZ5ZjGyg8Z2QYCbOEfa98HrGVNUfEfmawOMm8MCV+/9:teyWoBQGW1G3Qr6QOMNMXV

    Score
    10/10
    icedid2220668032bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks