icedid | b5399025d73dfb850df68017dfa81ce5f83bd9eeb7db056fffeca55ad3bcea65 | Triage

Submit
Reports

Overview

overview

Static

static

3

5fb43bc53a...18.dll

windows7-x64

5fb43bc53a...18.dll

windows10-2004-x64

Sharing

General

Target

5fb43bc53a57acd15ad463d2e6b7c511_JaffaCakes118
Size

414KB
Sample

240520-scyd1afd51
MD5

5fb43bc53a57acd15ad463d2e6b7c511
SHA1

4411257bd0758059737b7008e71a6b084b90418c
SHA256

b5399025d73dfb850df68017dfa81ce5f83bd9eeb7db056fffeca55ad3bcea65
SHA512

a82b20dba24e24b43c3cda3fef5a836d20e4acee06f1012e9486265ed8c6896f1902654cac3f0687cdf2fbcd955faaf003eec80f5d698dd783e6c4862a71f9e1
SSDEEP

6144:7l7Kr0ltJNgXq0KETxSInnNyduspvH/fN176+uCZV7T0zau/7Ia:7FKr0lt7g60vFSOA8spi+PZp0zau/7t

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5fb43bc53a57acd15ad463d2e6b7c511_JaffaCakes118.dll

Resource

win7-20240221-en

icedid banker loader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

5fb43bc53a57acd15ad463d2e6b7c511_JaffaCakes118.dll

Resource

win10v2004-20240426-en

icedid banker loader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

icedid

C2

ldrspace.casa

Targets

- Target
  
  5fb43bc53a57acd15ad463d2e6b7c511_JaffaCakes118
- Size
  
  414KB
- MD5
  
  5fb43bc53a57acd15ad463d2e6b7c511
- SHA1
  
  4411257bd0758059737b7008e71a6b084b90418c
- SHA256
  
  b5399025d73dfb850df68017dfa81ce5f83bd9eeb7db056fffeca55ad3bcea65
- SHA512
  
  a82b20dba24e24b43c3cda3fef5a836d20e4acee06f1012e9486265ed8c6896f1902654cac3f0687cdf2fbcd955faaf003eec80f5d698dd783e6c4862a71f9e1
- SSDEEP
  
  6144:7l7Kr0ltJNgXq0KETxSInnNyduspvH/fN176+uCZV7T0zau/7Ia:7FKr0lt7g60vFSOA8spi+PZp0zau/7t
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy