Overview

overview

10

Static

static

1

08b8bc650d...10.dll

windows7-x64

10

08b8bc650d...10.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08b8bc650dfa307c453bae0fe2c0057a0a6e45eeb765c3d140d2de94717f0510

  • Size

    485KB

  • Sample

    230403-v3eexsgb58

  • MD5

    36053088e669952d12b4d9e092585f51

  • SHA1

    76b681cfccd22ad783e16f4db5bdf63d95cbee72

  • SHA256

    08b8bc650dfa307c453bae0fe2c0057a0a6e45eeb765c3d140d2de94717f0510

  • SHA512

    436de617d25dff2ebd6ff5514d016f6d34326260039f4b5586c34e0bf0a2776088a87bff67c20a4980983d0a9ff376e4eb7fd9ebe6c65424f2196e8689b30420

  • SSDEEP

    12288:dFU57lwgc6chGoHcYFU57lwgc6cbGoHc:dFU553c6hSFU553c6f

Score
10/10
icedid1139942657bankercore_loadertrojan

Malware Config

Extracted

Family

icedid

Botnet

1139942657

C2

newscommercde.com

spkdeutshnewsupp.com

germanysupportspk.com

nrwmarkettoys.com
Attributes
  • auth_var

    2

  • url_path

    /news/

Targets

    • Target

      08b8bc650dfa307c453bae0fe2c0057a0a6e45eeb765c3d140d2de94717f0510

    • Size

      485KB

    • MD5

      36053088e669952d12b4d9e092585f51

    • SHA1

      76b681cfccd22ad783e16f4db5bdf63d95cbee72

    • SHA256

      08b8bc650dfa307c453bae0fe2c0057a0a6e45eeb765c3d140d2de94717f0510

    • SHA512

      436de617d25dff2ebd6ff5514d016f6d34326260039f4b5586c34e0bf0a2776088a87bff67c20a4980983d0a9ff376e4eb7fd9ebe6c65424f2196e8689b30420

    • SSDEEP

      12288:dFU57lwgc6chGoHcYFU57lwgc6cbGoHc:dFU553c6hSFU553c6f

    Score
    10/10
    icedid1139942657bankercore_loadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks