icedid | 24403b138019711bc44b8915e52fe7a801381bf9fcab22f6f86f4691e4e0baff | Triage

Sharing

General

Target

JaffaCakes118_24403b138019711bc44b8915e52fe7a801381bf9fcab22f6f86f4691e4e0baff
Size

490KB
Sample

241221-wxx6hsvrhw
MD5

ce605ce18bac96a67e2379329c8c741d
SHA1

fa7e5a9bc5f136d1d9d64f10210750a18a969d50
SHA256

24403b138019711bc44b8915e52fe7a801381bf9fcab22f6f86f4691e4e0baff
SHA512

a58e09c2095e868014a63361e6ce8b3494d2018f04e016274a23bf5bc0df11ee95d04d7536cc4f4e36d8f9186a1e62f1968f24bf71a3bedabb87b59dd0f067af
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR+:knmj6xK1y3Ik6TZGR+

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_24403b138019711bc44b8915e52fe7a801381bf9fcab22f6f86f4691e4e0baff
- Size
  
  490KB
- MD5
  
  ce605ce18bac96a67e2379329c8c741d
- SHA1
  
  fa7e5a9bc5f136d1d9d64f10210750a18a969d50
- SHA256
  
  24403b138019711bc44b8915e52fe7a801381bf9fcab22f6f86f4691e4e0baff
- SHA512
  
  a58e09c2095e868014a63361e6ce8b3494d2018f04e016274a23bf5bc0df11ee95d04d7536cc4f4e36d8f9186a1e62f1968f24bf71a3bedabb87b59dd0f067af
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR+:knmj6xK1y3Ik6TZGR+
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan