icedid | d67e1fd5d40e841c1aedbbf65d5f72a69da5ac54e48ae92da1f428c9f18d8363 | Triage

Submit
Reports

Overview

overview

Static

static

3

7de2125eba...18.dll

windows7-x64

7de2125eba...18.dll

windows10-2004-x64

Sharing

General

Target

7de2125eba63b36cdc4f45b008a4118b_JaffaCakes118
Size

211KB
Sample

240528-wp9vcaff29
MD5

7de2125eba63b36cdc4f45b008a4118b
SHA1

b1c3ec138e2f104bac76852bf0d2bb4708e67922
SHA256

d67e1fd5d40e841c1aedbbf65d5f72a69da5ac54e48ae92da1f428c9f18d8363
SHA512

cbe3a45f1afde4e695f66d6bfb98e10a3fba41c1d2ecb5eee15c3a2e7d52b6d58ef878071452dab26427607c83040a18745a7f17227bac6d74add4969ff9b2fc
SSDEEP

6144:6ZLwQyyWMa3NIBkL6LDW8dTZdw702edvxiuYOO6umz4N:6ZLwQyyHadIBkLIi8dTL2SvguYOO1mkN

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7de2125eba63b36cdc4f45b008a4118b_JaffaCakes118.dll

Resource

win7-20240221-en

icedid banker loader trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

7de2125eba63b36cdc4f45b008a4118b_JaffaCakes118.dll

Resource

win10v2004-20240426-en

icedid banker loader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

icedid

C2

ldrstar.casa

Targets

- Target
  
  7de2125eba63b36cdc4f45b008a4118b_JaffaCakes118
- Size
  
  211KB
- MD5
  
  7de2125eba63b36cdc4f45b008a4118b
- SHA1
  
  b1c3ec138e2f104bac76852bf0d2bb4708e67922
- SHA256
  
  d67e1fd5d40e841c1aedbbf65d5f72a69da5ac54e48ae92da1f428c9f18d8363
- SHA512
  
  cbe3a45f1afde4e695f66d6bfb98e10a3fba41c1d2ecb5eee15c3a2e7d52b6d58ef878071452dab26427607c83040a18745a7f17227bac6d74add4969ff9b2fc
- SSDEEP
  
  6144:6ZLwQyyWMa3NIBkL6LDW8dTZdw702edvxiuYOO6umz4N:6ZLwQyyHadIBkLIi8dTL2SvguYOO1mkN
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy