icedid | bdd19b429c0a196d1c72c688db9981fac7c43911eb9ecf03c9e3d191776d0fba | Triage

Sharing

General

Target

JaffaCakes118_bdd19b429c0a196d1c72c688db9981fac7c43911eb9ecf03c9e3d191776d0fba
Size

490KB
Sample

241221-y5ltkaypfp
MD5

33038be5c92b366269e1eac026d6f983
SHA1

5a253abc7aface1849234545d2482315929eac9d
SHA256

bdd19b429c0a196d1c72c688db9981fac7c43911eb9ecf03c9e3d191776d0fba
SHA512

84582c349e1c8f6e3657c7fc37d3a5c8645e59317c7c6eb98bbd29f4648db255e8cf6ca3fcc5a6201520378aa2cd2cc489feeb5658c9ff7d5202699bc13833a6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRF:knmj6xK1y3Ik6TZGRF

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_bdd19b429c0a196d1c72c688db9981fac7c43911eb9ecf03c9e3d191776d0fba
- Size
  
  490KB
- MD5
  
  33038be5c92b366269e1eac026d6f983
- SHA1
  
  5a253abc7aface1849234545d2482315929eac9d
- SHA256
  
  bdd19b429c0a196d1c72c688db9981fac7c43911eb9ecf03c9e3d191776d0fba
- SHA512
  
  84582c349e1c8f6e3657c7fc37d3a5c8645e59317c7c6eb98bbd29f4648db255e8cf6ca3fcc5a6201520378aa2cd2cc489feeb5658c9ff7d5202699bc13833a6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRF:knmj6xK1y3Ik6TZGRF
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan