icedid | 28fa3a3f2b27b239ecaec820fba7c25d7dbd21cd7a4d6ab0a85b5b2010b75ae2 | Triage

Sharing

General

Target

JaffaCakes118_28fa3a3f2b27b239ecaec820fba7c25d7dbd21cd7a4d6ab0a85b5b2010b75ae2
Size

490KB
Sample

241221-2b18yaskbr
MD5

145590a1bc36bce6455164f5566f1007
SHA1

c82c168a99a30ed76ee8a643c3d2e3c49dc1277f
SHA256

28fa3a3f2b27b239ecaec820fba7c25d7dbd21cd7a4d6ab0a85b5b2010b75ae2
SHA512

d94ab9fba42806d6b2afc8d8870aaa2863d4efcc3c52e0715dc1035836fab0644a05b8ccee88f86280b69b5dce4c3ebab8ed3299192a79702bd6121c963e1ab1
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_28fa3a3f2b27b239ecaec820fba7c25d7dbd21cd7a4d6ab0a85b5b2010b75ae2
- Size
  
  490KB
- MD5
  
  145590a1bc36bce6455164f5566f1007
- SHA1
  
  c82c168a99a30ed76ee8a643c3d2e3c49dc1277f
- SHA256
  
  28fa3a3f2b27b239ecaec820fba7c25d7dbd21cd7a4d6ab0a85b5b2010b75ae2
- SHA512
  
  d94ab9fba42806d6b2afc8d8870aaa2863d4efcc3c52e0715dc1035836fab0644a05b8ccee88f86280b69b5dce4c3ebab8ed3299192a79702bd6121c963e1ab1
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan