icedid | ee15dda02945c57204e31ab6fe8d9be016a164df90c265b686e8c9915a6f3973 | Triage

Sharing

General

Target

ee15dda02945c57204e31ab6fe8d9be016a164df90c265b686e8c9915a6f3973
Size

490KB
Sample

241221-wemxtsvmew
MD5

a1d29970b81e3e30aeeb9b426260656e
SHA1

a8186208042e51fd6eab6f9dd83741599cfc55c3
SHA256

ee15dda02945c57204e31ab6fe8d9be016a164df90c265b686e8c9915a6f3973
SHA512

fbb8e99eb6e55ec31bef35bcffcbf13ed44f6a20d2d1b71008a44c1c597462612647725382a4cbf8fc5ac519e621f91671380a70461fc78474fabb8e1791436d
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  ee15dda02945c57204e31ab6fe8d9be016a164df90c265b686e8c9915a6f3973
- Size
  
  490KB
- MD5
  
  a1d29970b81e3e30aeeb9b426260656e
- SHA1
  
  a8186208042e51fd6eab6f9dd83741599cfc55c3
- SHA256
  
  ee15dda02945c57204e31ab6fe8d9be016a164df90c265b686e8c9915a6f3973
- SHA512
  
  fbb8e99eb6e55ec31bef35bcffcbf13ed44f6a20d2d1b71008a44c1c597462612647725382a4cbf8fc5ac519e621f91671380a70461fc78474fabb8e1791436d
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan