icedid | 94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0 | Triage

Sharing

General

Target

JaffaCakes118_94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
Size

607KB
Sample

241221-2a5jzasjgp
MD5

31fe52f6b9409e7769cf32eac4457fa2
SHA1

b8cac129607a14cbbcb74e5c94a05521e6ae5652
SHA256

94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
SHA512

60cc50f269374546387f6d275b37aa95253c5cb9a9c9e627d7cd91d4961b2c3c5ec26256548611a9756f39d5fff0207d5d3b824b2203feef85e8cd86898d8945
SSDEEP

12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF

Score

10^/10

icedid 1732687004 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1732687004

C2

keepfootbal.com

Targets

- Target
  
  JaffaCakes118_94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
- Size
  
  607KB
- MD5
  
  31fe52f6b9409e7769cf32eac4457fa2
- SHA1
  
  b8cac129607a14cbbcb74e5c94a05521e6ae5652
- SHA256
  
  94f184894f0626db60f4a2be953c5634c44deefe5ba451425374822eacb24bf0
- SHA512
  
  60cc50f269374546387f6d275b37aa95253c5cb9a9c9e627d7cd91d4961b2c3c5ec26256548611a9756f39d5fff0207d5d3b824b2203feef85e8cd86898d8945
- SSDEEP
  
  12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF
Score

10^/10

icedid 1732687004 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1732687004bankerloadertrojan

behavioral2

icedid1732687004bankerloadertrojan