icedid | be1eef337a51923083b1f2a9bc914399c019ba5a862c54e80a3928ac3dab28e4 | Triage

Sharing

General

Target

JaffaCakes118_be1eef337a51923083b1f2a9bc914399c019ba5a862c54e80a3928ac3dab28e4
Size

490KB
Sample

241221-2akvkasjer
MD5

187d88cbd34656cd176b4572c84599a0
SHA1

a54f81ce979e3dbf6e7b1845d1a343634ad60f46
SHA256

be1eef337a51923083b1f2a9bc914399c019ba5a862c54e80a3928ac3dab28e4
SHA512

a16d40c576570c2c2cc3ec9aa2b4744023a26aaeb7930d3116831acc262c7f9cf456beebacb14d341bcdec2dc8a8bba8d6cc21727a715e249a57f8d2f9f0cef1
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_be1eef337a51923083b1f2a9bc914399c019ba5a862c54e80a3928ac3dab28e4
- Size
  
  490KB
- MD5
  
  187d88cbd34656cd176b4572c84599a0
- SHA1
  
  a54f81ce979e3dbf6e7b1845d1a343634ad60f46
- SHA256
  
  be1eef337a51923083b1f2a9bc914399c019ba5a862c54e80a3928ac3dab28e4
- SHA512
  
  a16d40c576570c2c2cc3ec9aa2b4744023a26aaeb7930d3116831acc262c7f9cf456beebacb14d341bcdec2dc8a8bba8d6cc21727a715e249a57f8d2f9f0cef1
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan