Overview

overview

10

Static

static

1

mesoc.dll

windows7-x64

10

mesoc.dll

windows10-2004-x64

1

Resubmissions

16/10/2023, 15:02

231016-seepnshc51 10

16/10/2023, 14:55

231016-sasezaba44 1

16/10/2023, 14:14

231016-rj9vyage8y 1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mesoc

  • Size

    778KB

  • Sample

    231016-seepnshc51

  • MD5

    a443f1622069aab6d8939491859e7cdb

  • SHA1

    f5dc559c1a1dfc96dd768f0bbe3036625784039c

  • SHA256

    e87928fcddf13935c91a0b5577e28efd29bb6a5c1d98e5129dec63e231601053

  • SHA512

    167c848eba8cf44b818484381e3bb2a4be009b95c7f3a0994e3a394cc3161345b0a79aa38466398f3aa710f538a4c67ca792fa5a431d8c153ca3bb10de5a9cb0

  • SSDEEP

    6144:GhQd+ZW/3TvUCWysU2XN92nIMkS9yjygIL1ZaquKIwsjd5vRukMi/mf+0Hlqn//f:sEv9yjpIrH6BjfEkPmt+/bYujcpZ

Score
10/10
icedid3828440134bankerloaderpersistencetrojan

Malware Config

Extracted

Family

icedid

Campaign

3828440134

C2

aptekoagraliy.com

Targets

    • Target

      mesoc

    • Size

      778KB

    • MD5

      a443f1622069aab6d8939491859e7cdb

    • SHA1

      f5dc559c1a1dfc96dd768f0bbe3036625784039c

    • SHA256

      e87928fcddf13935c91a0b5577e28efd29bb6a5c1d98e5129dec63e231601053

    • SHA512

      167c848eba8cf44b818484381e3bb2a4be009b95c7f3a0994e3a394cc3161345b0a79aa38466398f3aa710f538a4c67ca792fa5a431d8c153ca3bb10de5a9cb0

    • SSDEEP

      6144:GhQd+ZW/3TvUCWysU2XN92nIMkS9yjygIL1ZaquKIwsjd5vRukMi/mf+0Hlqn//f:sEv9yjpIrH6BjfEkPmt+/bYujcpZ

    Score
    10/10
    icedid3828440134bankerloaderpersistencetrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • Modifies Installed Components in the registry

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks