Overview

overview

10

Static

static

ijexogdf64.dll

windows7-x64

10

ijexogdf64.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ijexogdf64.dll

  • Size

    337KB

  • Sample

    220811-2c3hdsdbdq

  • MD5

    d243c07128ee42bccef33bda67ec61d9

  • SHA1

    5089dd76080329877c488325bc8ef8f736d1d1e4

  • SHA256

    d45c78fa400b32c11443061dcd1c286d971881ddf35a47143e4d426a3ec6bffd

  • SHA512

    91c4ca4b3c8051e2813387191414185add498ace63ccf52d420512d6f4fdbefd704b06472250489e4ea4206c18b88299d101f2921a9661adaaadfa7b0f3d5301

Score
10/10
icedid1573268852bankercore_loadertrojan

Malware Config

Extracted

Family

icedid

Botnet

1573268852

C2

peranistaer.top

gruvihabralo.nl

klareqvino.com

ultomductingbig.pro
Attributes
  • auth_var

    16

  • url_path

    /news/

Targets

    • Target

      ijexogdf64.dll

    • Size

      337KB

    • MD5

      d243c07128ee42bccef33bda67ec61d9

    • SHA1

      5089dd76080329877c488325bc8ef8f736d1d1e4

    • SHA256

      d45c78fa400b32c11443061dcd1c286d971881ddf35a47143e4d426a3ec6bffd

    • SHA512

      91c4ca4b3c8051e2813387191414185add498ace63ccf52d420512d6f4fdbefd704b06472250489e4ea4206c18b88299d101f2921a9661adaaadfa7b0f3d5301

    Score
    10/10
    icedid1573268852bankercore_loadertrojan

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

      trojanbankericedid
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks