Overview

overview

10

Static

static

6034615ebc...8b.dll

windows7-x64

10

6034615ebc...8b.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6034615ebc1377cfdc025e8ef20b9a3fde826ab225341f0d2f5f4f23e890e18b.exe

  • Size

    82KB

  • Sample

    221111-s1cr7sgf36

  • MD5

    0573dc1e16a377c94263f7a488b107c7

  • SHA1

    5df17832887cd7c039ab2ac3fcbe0cbded8bafdd

  • SHA256

    6034615ebc1377cfdc025e8ef20b9a3fde826ab225341f0d2f5f4f23e890e18b

  • SHA512

    e40bc8b1cf6a122ffeac74456467e0c5176130d18a98787396017c8e1eec8686a4a752c9995f32e80533ec6506c626eed7e6f1a917a4903e0beff4e25ccb9595

  • SSDEEP

    1536:Yhip85zMOlGdWSJC78wTWkvz8zCV0m3bUNHlgKkPhK23S4rRr3kR0g:c4OUgSJCLTWkL8zCym3bEHlXshK2RRzQ

Score
10/10
icedid1508797464bankerloadertrojan

Malware Config

Extracted

Family

icedid

Campaign

1508797464

C2

gromsdaxert.com

Targets

    • Target

      6034615ebc1377cfdc025e8ef20b9a3fde826ab225341f0d2f5f4f23e890e18b.exe

    • Size

      82KB

    • MD5

      0573dc1e16a377c94263f7a488b107c7

    • SHA1

      5df17832887cd7c039ab2ac3fcbe0cbded8bafdd

    • SHA256

      6034615ebc1377cfdc025e8ef20b9a3fde826ab225341f0d2f5f4f23e890e18b

    • SHA512

      e40bc8b1cf6a122ffeac74456467e0c5176130d18a98787396017c8e1eec8686a4a752c9995f32e80533ec6506c626eed7e6f1a917a4903e0beff4e25ccb9595

    • SSDEEP

      1536:Yhip85zMOlGdWSJC78wTWkvz8zCV0m3bUNHlgKkPhK23S4rRr3kR0g:c4OUgSJCLTWkL8zCym3bEHlXshK2RRzQ

    Score
    10/10
    icedid1508797464bankerloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks