icedid | 9f8ff8da154960d17a3225675a85372e7a70aca93df8bdfb887eb22c16b4dfe3 | Triage

Submit
Reports

Overview

overview

Static

static

3

af7676dc80...18.dll

windows7-x64

af7676dc80...18.dll

windows10-2004-x64

Sharing

General

Target

af7676dc809a385c9084b18121b56560_JaffaCakes118
Size

211KB
Sample

240615-vj3y6s1hpl
MD5

af7676dc809a385c9084b18121b56560
SHA1

5e338c4b9355c7e78639857647fa3c7af63fed49
SHA256

9f8ff8da154960d17a3225675a85372e7a70aca93df8bdfb887eb22c16b4dfe3
SHA512

8093abff8e988f0563fa30ac8ca0158b6bf7a870180163d2c7e7b922998714775674fc5f1e497bc82db9f7b1702905d73584bafea18c4ac80b44e859437f1f4a
SSDEEP

6144:6ZLwpyyWMa3NIBkL6LDW8dTZdw702edvxiuYOO6umz4:6ZLwpyyHadIBkLIi8dTL2SvguYOO1mk

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

af7676dc809a385c9084b18121b56560_JaffaCakes118.dll

Resource

win7-20240508-en

icedid banker loader trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

af7676dc809a385c9084b18121b56560_JaffaCakes118.dll

Resource

win10v2004-20240611-en

icedid banker loader trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

icedid

C2

ldrstar.casa

Targets

- Target
  
  af7676dc809a385c9084b18121b56560_JaffaCakes118
- Size
  
  211KB
- MD5
  
  af7676dc809a385c9084b18121b56560
- SHA1
  
  5e338c4b9355c7e78639857647fa3c7af63fed49
- SHA256
  
  9f8ff8da154960d17a3225675a85372e7a70aca93df8bdfb887eb22c16b4dfe3
- SHA512
  
  8093abff8e988f0563fa30ac8ca0158b6bf7a870180163d2c7e7b922998714775674fc5f1e497bc82db9f7b1702905d73584bafea18c4ac80b44e859437f1f4a
- SSDEEP
  
  6144:6ZLwpyyWMa3NIBkL6LDW8dTZdw702edvxiuYOO6umz4:6ZLwpyyHadIBkLIi8dTL2SvguYOO1mk
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID First Stage Loader
  loader
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy