icedid | 7329123e59fb3115b08ea8c93f1f09aba7bb384102dcfa643c4dec4b34919cac | Triage

Submit
Reports

Overview

overview

Static

static

3

fbbecb1d0c...d0.exe

windows7-x64

fbbecb1d0c...d0.exe

windows10-2004-x64

Sharing

General

Target

ae32802f1396d1053ccd5405fa6d3148
Size

111KB
Sample

240229-lnj77ach4z
MD5

ae32802f1396d1053ccd5405fa6d3148
SHA1

b3ce8b6440b5e4c2c8fc1e239c5ea40c6c19dac5
SHA256

7329123e59fb3115b08ea8c93f1f09aba7bb384102dcfa643c4dec4b34919cac
SHA512

4190c51fdb62da4b5cadaf16903ef33e3c1f501ee37ed613377d23b7a148193d6a0efcaeca50a9981065f0cd852cc079104ac0f96420bc0ce2e9d063f56c8fcf
SSDEEP

3072:u5RWWAe4l62fmXQrEVg/q+rQNOGH69fTLOeaR:unWlajXQgW/HnE6NyR

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fbbecb1d0c70fc6aa7e265a6fd16cb387046ee19c12f72506ddb5fc13c45a6d0.exe

Resource

win7-20240221-en

icedid banker loader trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

fbbecb1d0c70fc6aa7e265a6fd16cb387046ee19c12f72506ddb5fc13c45a6d0.exe

Resource

win10v2004-20240226-en

icedid banker loader trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

icedid

Targets

- Target
  
  fbbecb1d0c70fc6aa7e265a6fd16cb387046ee19c12f72506ddb5fc13c45a6d0
- Size
  
  228KB
- MD5
  
  c912106795fd871c8a87717c15259589
- SHA1
  
  d83e4febff4552054966a98fdd34d0a6e27fba5f
- SHA256
  
  fbbecb1d0c70fc6aa7e265a6fd16cb387046ee19c12f72506ddb5fc13c45a6d0
- SHA512
  
  30b9de90dfb720fa9aa3147aa83895be6942a4484672adb2163b14c7ebf0575c57fcee86a019ab70d962c575fb5c8e224a2c0a3fd3820b620fe570f90fbda606
- SSDEEP
  
  6144:Vk7xo+8R2jV7jd0Zsb8m0ZcOqxamF4WFL:VsnV7SZsb0WOqxZrF
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy