Overview

overview

10

Static

static

3

94999a138f...7e.dll

windows7-x64

10

94999a138f...7e.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    94999a138f8043eb849ff5446764b87e

  • Size

    498KB

  • Sample

    240206-qlstrshfhl

  • MD5

    94999a138f8043eb849ff5446764b87e

  • SHA1

    41256e6b16b1c9fa125052105765c5350a42453a

  • SHA256

    130405b145755357685a68dd095a7f8699cf228a4a10756e32401a80ef932556

  • SHA512

    6e424890abbef31706abf4f236da82825731ea433ea0062b3212b0c6053143670492ba6806354c1f1a1df27bf8b7d50cd2503d9b8a98749488293a9b2784d993

  • SSDEEP

    6144:OFScRcw0aebW0U4i4ZpRoTdPUDKywWA7Jiy+7YCAntQ0AVxN8oh8A0sjo:UFV91TB5ywBQdjkQ0w8oWF8

Score
10/10
icedid81538452bankercore_loadertrojan

Malware Config

Extracted

Family

icedid

Botnet

81538452

C2

garrozalibbo.click

disponfirules.top

mislinororv.top

twistcolseza.top
Attributes
  • auth_var

    12

  • url_path

    /news/

Targets

    • Target

      94999a138f8043eb849ff5446764b87e

    • Size

      498KB

    • MD5

      94999a138f8043eb849ff5446764b87e

    • SHA1

      41256e6b16b1c9fa125052105765c5350a42453a

    • SHA256

      130405b145755357685a68dd095a7f8699cf228a4a10756e32401a80ef932556

    • SHA512

      6e424890abbef31706abf4f236da82825731ea433ea0062b3212b0c6053143670492ba6806354c1f1a1df27bf8b7d50cd2503d9b8a98749488293a9b2784d993

    • SSDEEP

      6144:OFScRcw0aebW0U4i4ZpRoTdPUDKywWA7Jiy+7YCAntQ0AVxN8oh8A0sjo:UFV91TB5ywBQdjkQ0w8oWF8

    Score
    10/10
    icedid81538452bankercore_loadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks