icedid | ca3ba47064666ccb8d2b4b55cf171f7401665feef15b95bce391a715d4a1a80d | Triage

Sharing

General

Target

ca3ba47064666ccb8d2b4b55cf171f7401665feef15b95bce391a715d4a1a80d
Size

490KB
Sample

241221-vzqzjstra1
MD5

fcaf711cd6088b64a6aec2c1d79adb6c
SHA1

ae475a7504e2310c71fa0162f499b29204962a04
SHA256

ca3ba47064666ccb8d2b4b55cf171f7401665feef15b95bce391a715d4a1a80d
SHA512

3f0a6250395d02009fb7594e91f4d691387b8f5065f8c7475ebe89cdbaca8aada6dd012c703481d24660ca43b4b0821d5fb429cc05f1969559fecb3fc13cff48
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRf:knmj6xK1y3Ik6TZGRf

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  ca3ba47064666ccb8d2b4b55cf171f7401665feef15b95bce391a715d4a1a80d
- Size
  
  490KB
- MD5
  
  fcaf711cd6088b64a6aec2c1d79adb6c
- SHA1
  
  ae475a7504e2310c71fa0162f499b29204962a04
- SHA256
  
  ca3ba47064666ccb8d2b4b55cf171f7401665feef15b95bce391a715d4a1a80d
- SHA512
  
  3f0a6250395d02009fb7594e91f4d691387b8f5065f8c7475ebe89cdbaca8aada6dd012c703481d24660ca43b4b0821d5fb429cc05f1969559fecb3fc13cff48
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRf:knmj6xK1y3Ik6TZGRf
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan