icedid | f77657e1341bee58750948e1d7ea50b052ee624937144d497787967f5f422e7f | Triage

Submit
Reports

Overview

overview

Static

static

3

bzm12%3fDU...YR.dll

windows7-x64

bzm12%3fDU...YR.dll

windows10-2004-x64

Sharing

General

Target

bzm12%3fDUHC=IlEAxkQxRpfRD&Lk_M=jJDaUNLTmiPHVoFXT&BuN_G=UytaScjGNxHYmqc_&QQvUO=GhOwZkkBdMBH&eBP=zrYRQpMykQBxbk_FS&dm=gqbPvgKocPBFWw
Size

210KB
Sample

240306-qgxxxscf97
MD5

17b50c1da7d23d686fccfa8de3d27a3a
SHA1

802c099a8a8f21f6e5cecc5c946f2cd52672c15e
SHA256

f77657e1341bee58750948e1d7ea50b052ee624937144d497787967f5f422e7f
SHA512

86eaa91e2b1fd1d29405a5beb65c5d1311a5efb1d5388322d323925145d9c58bad471e205a5105aacc9e46d4569345525b36178583a96c6be45253d4f08136e0
SSDEEP

6144:MJAOZ+QqO7x7MPf/tYDVBqV8WRzn6enYE:MJz+QqOF7geybnYE

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bzm12%3fDUHC=IlEAxkQxRpfRD&Lk_M=jJDaUNLTmiPHVoFXT&BuN_G=UytaScjGNxHYmqc_&QQvUO=GhOwZkkBdMBH&eBP=zrYR.dll

Resource

win7-20240221-en

icedid banker loader trojan

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

bzm12%3fDUHC=IlEAxkQxRpfRD&Lk_M=jJDaUNLTmiPHVoFXT&BuN_G=UytaScjGNxHYmqc_&QQvUO=GhOwZkkBdMBH&eBP=zrYR.dll

Resource

win10v2004-20240226-en

icedid banker loader trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

icedid

Targets

- Target
  
  bzm12%3fDUHC=IlEAxkQxRpfRD&Lk_M=jJDaUNLTmiPHVoFXT&BuN_G=UytaScjGNxHYmqc_&QQvUO=GhOwZkkBdMBH&eBP=zrYRQpMykQBxbk_FS&dm=gqbPvgKocPBFWw
- Size
  
  210KB
- MD5
  
  17b50c1da7d23d686fccfa8de3d27a3a
- SHA1
  
  802c099a8a8f21f6e5cecc5c946f2cd52672c15e
- SHA256
  
  f77657e1341bee58750948e1d7ea50b052ee624937144d497787967f5f422e7f
- SHA512
  
  86eaa91e2b1fd1d29405a5beb65c5d1311a5efb1d5388322d323925145d9c58bad471e205a5105aacc9e46d4569345525b36178583a96c6be45253d4f08136e0
- SSDEEP
  
  6144:MJAOZ+QqO7x7MPf/tYDVBqV8WRzn6enYE:MJz+QqOF7geybnYE
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy