Overview

overview

10

Static

static

manufactures.dat.dll

windows7-x64

10

manufactures.dat.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    manufactures.dat.dll

  • Size

    479KB

  • Sample

    221005-tdd77afaej

  • MD5

    bcba4757d1a738e9ac4f66feda449bb4

  • SHA1

    80d92855f53837cc3feffcbda7f6ef5b69c915b2

  • SHA256

    b804104ce569ed9ba45a5ec8b3c27c8399009c0ac518b93131f8d6739d19b256

  • SHA512

    a8491b6786a6ddc79f599c5fbd29d733092cd221f9c286b6e3b2baba41e69010469d5e15467eb11c0a53c719eacfb5dbff5743c8908b2c10c9a00f745c5afe41

  • SSDEEP

    6144:9WW0CuS2etINe5defwDGlxNVY/JYowcnzqsw1nKcpomMyi2VsEtkX7AH:k3ClUe5fSnKcp0yi2WEf

Score
10/10
icedid2348925224bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

2348925224

C2

fireskupigar.com

Targets

    • Target

      manufactures.dat.dll

    • Size

      479KB

    • MD5

      bcba4757d1a738e9ac4f66feda449bb4

    • SHA1

      80d92855f53837cc3feffcbda7f6ef5b69c915b2

    • SHA256

      b804104ce569ed9ba45a5ec8b3c27c8399009c0ac518b93131f8d6739d19b256

    • SHA512

      a8491b6786a6ddc79f599c5fbd29d733092cd221f9c286b6e3b2baba41e69010469d5e15467eb11c0a53c719eacfb5dbff5743c8908b2c10c9a00f745c5afe41

    • SSDEEP

      6144:9WW0CuS2etINe5defwDGlxNVY/JYowcnzqsw1nKcpomMyi2VsEtkX7AH:k3ClUe5fSnKcp0yi2WEf

    Score
    10/10
    icedid2348925224bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks