icedid | 874f17ecdd3ec575ecb228937de56a1b0521893cf854af2b0102123a731512d2 | Triage

Sharing

General

Target

JaffaCakes118_874f17ecdd3ec575ecb228937de56a1b0521893cf854af2b0102123a731512d2
Size

490KB
Sample

241221-xedvlawpfp
MD5

2bc463e5d4c548a7854e4aff14154501
SHA1

6b61a246a027a072f5ff6f880cf1e3fdda777ec8
SHA256

874f17ecdd3ec575ecb228937de56a1b0521893cf854af2b0102123a731512d2
SHA512

113515e0555e55d0cde27d928775b3e905858b645edbd92aa54d4ad1b63125371aa02c4281cb5531350affffe6552ae6bdadd68ff8bf76530afde467b575561a
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRc:knmj6xK1y3Ik6TZGRc

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_874f17ecdd3ec575ecb228937de56a1b0521893cf854af2b0102123a731512d2
- Size
  
  490KB
- MD5
  
  2bc463e5d4c548a7854e4aff14154501
- SHA1
  
  6b61a246a027a072f5ff6f880cf1e3fdda777ec8
- SHA256
  
  874f17ecdd3ec575ecb228937de56a1b0521893cf854af2b0102123a731512d2
- SHA512
  
  113515e0555e55d0cde27d928775b3e905858b645edbd92aa54d4ad1b63125371aa02c4281cb5531350affffe6552ae6bdadd68ff8bf76530afde467b575561a
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRc:knmj6xK1y3Ik6TZGRc
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan