icedid | 46d9449116c6fd06ca710329f203c43d66cd7b1a8d82f6f9229f6339287f5ac2 | Triage

Sharing

General

Target

JaffaCakes118_46d9449116c6fd06ca710329f203c43d66cd7b1a8d82f6f9229f6339287f5ac2
Size

490KB
Sample

241221-x4q68axlb1
MD5

85913a730eb71da61b1c6d90601b08d0
SHA1

0d3309b83df84aef21242e4bd786e1c4fee29aba
SHA256

46d9449116c6fd06ca710329f203c43d66cd7b1a8d82f6f9229f6339287f5ac2
SHA512

398388ab93e8bae830381c809665d4cab0d275acd66f30df8cee633cb5bfa5045625f7ff6c49b4ba193e819f9d2924c61ad4b5fb75faf05810eae331056b1a75
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRv:knmj6xK1y3Ik6TZGRv

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_46d9449116c6fd06ca710329f203c43d66cd7b1a8d82f6f9229f6339287f5ac2
- Size
  
  490KB
- MD5
  
  85913a730eb71da61b1c6d90601b08d0
- SHA1
  
  0d3309b83df84aef21242e4bd786e1c4fee29aba
- SHA256
  
  46d9449116c6fd06ca710329f203c43d66cd7b1a8d82f6f9229f6339287f5ac2
- SHA512
  
  398388ab93e8bae830381c809665d4cab0d275acd66f30df8cee633cb5bfa5045625f7ff6c49b4ba193e819f9d2924c61ad4b5fb75faf05810eae331056b1a75
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRv:knmj6xK1y3Ik6TZGRv
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan