icedid | a1c690619cc54c1296a2b10f34cb6603156aa70d30d5ed9e815b06467e6d1c42 | Triage

Sharing

General

Target

JaffaCakes118_a1c690619cc54c1296a2b10f34cb6603156aa70d30d5ed9e815b06467e6d1c42
Size

62KB
Sample

241221-x8qfgsxmev
MD5

c1c565dafdd0104fd4734f9bfa3454c5
SHA1

683c7e1352dbea91c4ee1a3dc1aa8ce7656cf68a
SHA256

a1c690619cc54c1296a2b10f34cb6603156aa70d30d5ed9e815b06467e6d1c42
SHA512

8cd2c4c8643edde0b89131ba91b30962fc54ff38a47731f1c03ecec3ec3520cf7ff59290054978c918d0e61b2861046226a6b06165fcf69fff7e674ecde8ed73
SSDEEP

1536:HEKx6h2mtn+V/uq4k68ct/g+LMvBPQtwhN7rdb0W8m1pbHM+qHvs:kKxiY/p6zjLMCw77rdmm/mk

Score

10^/10

icedid 1386562008 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1386562008

C2

zasertiokil.top

Targets

- Target
  
  1e603b5dc665ad8d5b776b41eb986aa5198526e6e2ab1bf87c0cdcfc8cdc8393
- Size
  
  226KB
- MD5
  
  cf2a3fb076436ae9ebfbd2538ee91fcd
- SHA1
  
  1d4c6a2f5bd4c04334298526c8a15f4e3c326c76
- SHA256
  
  1e603b5dc665ad8d5b776b41eb986aa5198526e6e2ab1bf87c0cdcfc8cdc8393
- SHA512
  
  334c3ceb2e6b72a2720cfb99b8e07e28c114c5297a67236f317e6dcd0840327e4e127fa80163a4e3eb0254d209dd29039da0ff655c6e87bb52f17422b936a84e
- SSDEEP
  
  6144:LbG2zudGcUvOSYQqtlyh6aN6RJ7MQH6+kbgUG0DrUOs2J:LRzuMcUvOSYQqtlyh6aN6RJ7MQH6+DUv
Score

10^/10

icedid 1386562008 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1386562008bankerloadertrojan

behavioral2

icedid1386562008bankerloadertrojan