icedid | 5024c1ef144e2958d197e241f6161b7ef9e0e7f3fd295cbfc38d6f72687d8cb0 | Triage

Sharing

General

Target

JaffaCakes118_5024c1ef144e2958d197e241f6161b7ef9e0e7f3fd295cbfc38d6f72687d8cb0
Size

490KB
Sample

241221-wvss1swkak
MD5

0c8e3fe1845b5ca5bd64ea4119da8c7b
SHA1

572abf9f590b3d0603403acd6bd9e121a25f5ddf
SHA256

5024c1ef144e2958d197e241f6161b7ef9e0e7f3fd295cbfc38d6f72687d8cb0
SHA512

ceef9598b9704fac8b9d070a86dfec176de0e5c3d92a610cafad7823bfd193e166694462451b10f21a655eeab9ed3515346909b2c1ea87d100018fe8bd87e0c1
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5024c1ef144e2958d197e241f6161b7ef9e0e7f3fd295cbfc38d6f72687d8cb0
- Size
  
  490KB
- MD5
  
  0c8e3fe1845b5ca5bd64ea4119da8c7b
- SHA1
  
  572abf9f590b3d0603403acd6bd9e121a25f5ddf
- SHA256
  
  5024c1ef144e2958d197e241f6161b7ef9e0e7f3fd295cbfc38d6f72687d8cb0
- SHA512
  
  ceef9598b9704fac8b9d070a86dfec176de0e5c3d92a610cafad7823bfd193e166694462451b10f21a655eeab9ed3515346909b2c1ea87d100018fe8bd87e0c1
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan