Overview

overview

10

Static

static

3

db355c0cb3...18.dll

windows7-x64

10

db355c0cb3...18.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db355c0cb3be879a1207cf8a679069ee_JaffaCakes118

  • Size

    120KB

  • Sample

    240911-ztrq4stapg

  • MD5

    db355c0cb3be879a1207cf8a679069ee

  • SHA1

    49fc991853c5a9e73824e894bfbefb45c61d322f

  • SHA256

    866aa2c9699ab1427f23c3754e7b94358366d2c55e2ff512f26f16a22fa443b8

  • SHA512

    1456cec9c3848732d12ef51679737a4486cc4788a70a557af75b44e1e6c49b740684bd20652b5c6798bdbd5e31a1f9cce402b429456ff848b2c17c08d8c7bf91

  • SSDEEP

    3072:tpteWUxswmB6cKEyYo8wNSNbgRdN1v48zdtye:cswm5KloaSNERdN1Agr

Score
10/10
icedidbankerdiscoveryloadertrojan

Malware Config

Extracted

Family

icedid

C2

loadro3.casa

Targets

    • Target

      db355c0cb3be879a1207cf8a679069ee_JaffaCakes118

    • Size

      120KB

    • MD5

      db355c0cb3be879a1207cf8a679069ee

    • SHA1

      49fc991853c5a9e73824e894bfbefb45c61d322f

    • SHA256

      866aa2c9699ab1427f23c3754e7b94358366d2c55e2ff512f26f16a22fa443b8

    • SHA512

      1456cec9c3848732d12ef51679737a4486cc4788a70a557af75b44e1e6c49b740684bd20652b5c6798bdbd5e31a1f9cce402b429456ff848b2c17c08d8c7bf91

    • SSDEEP

      3072:tpteWUxswmB6cKEyYo8wNSNbgRdN1v48zdtye:cswm5KloaSNERdN1Agr

    Score
    10/10
    icedidbankerdiscoveryloadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid

    • IcedID First Stage Loader

      loader
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks