icedid | 5e1da5c442ae61378d875bfb05cc46a672c7144f2c8e36b484fe0e81fcf0ae74 | Triage

Sharing

General

Target

JaffaCakes118_5e1da5c442ae61378d875bfb05cc46a672c7144f2c8e36b484fe0e81fcf0ae74
Size

490KB
Sample

241221-xmgapawpdx
MD5

8e9792384a50779d8ce74b53f4e60826
SHA1

e9d43ad4226182b0989b7d4731011d491dcd2e77
SHA256

5e1da5c442ae61378d875bfb05cc46a672c7144f2c8e36b484fe0e81fcf0ae74
SHA512

4420e7e234982ce0d2e84f8880c64d3256c166eb66d99cc3b9f2cd8a56cb289d6675ca2d40fcc04e29287f34cef284834a71e3335327076801c7966cf449c915
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5e1da5c442ae61378d875bfb05cc46a672c7144f2c8e36b484fe0e81fcf0ae74
- Size
  
  490KB
- MD5
  
  8e9792384a50779d8ce74b53f4e60826
- SHA1
  
  e9d43ad4226182b0989b7d4731011d491dcd2e77
- SHA256
  
  5e1da5c442ae61378d875bfb05cc46a672c7144f2c8e36b484fe0e81fcf0ae74
- SHA512
  
  4420e7e234982ce0d2e84f8880c64d3256c166eb66d99cc3b9f2cd8a56cb289d6675ca2d40fcc04e29287f34cef284834a71e3335327076801c7966cf449c915
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan