icedid | f5f7a19f2cfbac77252a1320539f4a9a88108bbebbd04f78bbc013820c2cf4a2 | Triage

Sharing

General

Target

JaffaCakes118_f5f7a19f2cfbac77252a1320539f4a9a88108bbebbd04f78bbc013820c2cf4a2
Size

490KB
Sample

241221-yemyyaxqgl
MD5

d1969143846d4ba88f991a2d0f7eb9a8
SHA1

10e9308366ecf6d5522f852a417172c70420ce7b
SHA256

f5f7a19f2cfbac77252a1320539f4a9a88108bbebbd04f78bbc013820c2cf4a2
SHA512

0a6225f5e98d5119592ff9a6419c8816e21d791fc1530829adedd9aba75cd2a77c17af270ce23b24c0acfab87c078c965d61f771299d216a75d2d7871e407896
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRa:knmj6xK1y3Ik6TZGRa

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f5f7a19f2cfbac77252a1320539f4a9a88108bbebbd04f78bbc013820c2cf4a2
- Size
  
  490KB
- MD5
  
  d1969143846d4ba88f991a2d0f7eb9a8
- SHA1
  
  10e9308366ecf6d5522f852a417172c70420ce7b
- SHA256
  
  f5f7a19f2cfbac77252a1320539f4a9a88108bbebbd04f78bbc013820c2cf4a2
- SHA512
  
  0a6225f5e98d5119592ff9a6419c8816e21d791fc1530829adedd9aba75cd2a77c17af270ce23b24c0acfab87c078c965d61f771299d216a75d2d7871e407896
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRa:knmj6xK1y3Ik6TZGRa
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan