icedid | 901eef4fca3531fab4b13cf0f9208bbc5010640ed0bcd8b78e40e1737e5b30c3 | Triage

Sharing

General

Target

JaffaCakes118_901eef4fca3531fab4b13cf0f9208bbc5010640ed0bcd8b78e40e1737e5b30c3
Size

490KB
Sample

241221-yvacsaykfv
MD5

73f869024757fa13d98daf967da98e55
SHA1

13943b68dbd62b4d40860409f1665f6c2b06cf13
SHA256

901eef4fca3531fab4b13cf0f9208bbc5010640ed0bcd8b78e40e1737e5b30c3
SHA512

37ca199bf0d0c952d93e5ebc66115f6b3dd277f0af75def3c7319b6a4199c05587d5e0872ffef2350fb63753e953f61eb9107bb4035289c25e379dfeeebe99ff
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_901eef4fca3531fab4b13cf0f9208bbc5010640ed0bcd8b78e40e1737e5b30c3
- Size
  
  490KB
- MD5
  
  73f869024757fa13d98daf967da98e55
- SHA1
  
  13943b68dbd62b4d40860409f1665f6c2b06cf13
- SHA256
  
  901eef4fca3531fab4b13cf0f9208bbc5010640ed0bcd8b78e40e1737e5b30c3
- SHA512
  
  37ca199bf0d0c952d93e5ebc66115f6b3dd277f0af75def3c7319b6a4199c05587d5e0872ffef2350fb63753e953f61eb9107bb4035289c25e379dfeeebe99ff
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan