icedid | fa7df8f933a07f01cdd27cfee8b48b0289197f8d99dbf820b37920111aa408bd | Triage

Sharing

General

Target

JaffaCakes118_fa7df8f933a07f01cdd27cfee8b48b0289197f8d99dbf820b37920111aa408bd
Size

490KB
Sample

241221-x7yqgaxngr
MD5

d1d7938e27349027b587d47a42b757dd
SHA1

b69fdea0290f63c8c2d7d93be65c49240082aa3f
SHA256

fa7df8f933a07f01cdd27cfee8b48b0289197f8d99dbf820b37920111aa408bd
SHA512

8b13ba9ce679819a4ce474e5a14e1c69fa394cf5ef7c18d9b20bb93a7a5053b4f81eb5b727d240dacf3b84f65415b5573e360587b2cc43b92bddb070b7d45f55
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fa7df8f933a07f01cdd27cfee8b48b0289197f8d99dbf820b37920111aa408bd
- Size
  
  490KB
- MD5
  
  d1d7938e27349027b587d47a42b757dd
- SHA1
  
  b69fdea0290f63c8c2d7d93be65c49240082aa3f
- SHA256
  
  fa7df8f933a07f01cdd27cfee8b48b0289197f8d99dbf820b37920111aa408bd
- SHA512
  
  8b13ba9ce679819a4ce474e5a14e1c69fa394cf5ef7c18d9b20bb93a7a5053b4f81eb5b727d240dacf3b84f65415b5573e360587b2cc43b92bddb070b7d45f55
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan