icedid | 304932394eab96b8bcb59162a07a097b1f0dc5c90e8525025cd7be585cb42804 | Triage

Sharing

General

Target

JaffaCakes118_304932394eab96b8bcb59162a07a097b1f0dc5c90e8525025cd7be585cb42804
Size

490KB
Sample

241221-ycqxtaxqbk
MD5

20ec4be12434e5027d74be7db3e4324f
SHA1

6155ffe7c913de006f246095540fdb91a69bca1d
SHA256

304932394eab96b8bcb59162a07a097b1f0dc5c90e8525025cd7be585cb42804
SHA512

9da7cf1354a36805fe5d9f9418ec7919f4791af14aa3bdfab052a8aafbbf0a5c82c847a0479a6cdeed430f60d31d8042b5c5abba7134ca8bcafcbc8af478eb47
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0:knmj6xK1y3Ik6TZGR0

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_304932394eab96b8bcb59162a07a097b1f0dc5c90e8525025cd7be585cb42804
- Size
  
  490KB
- MD5
  
  20ec4be12434e5027d74be7db3e4324f
- SHA1
  
  6155ffe7c913de006f246095540fdb91a69bca1d
- SHA256
  
  304932394eab96b8bcb59162a07a097b1f0dc5c90e8525025cd7be585cb42804
- SHA512
  
  9da7cf1354a36805fe5d9f9418ec7919f4791af14aa3bdfab052a8aafbbf0a5c82c847a0479a6cdeed430f60d31d8042b5c5abba7134ca8bcafcbc8af478eb47
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0:knmj6xK1y3Ik6TZGR0
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan