icedid | 195adea4e2f0dbe6a858dbfbe463c38f86c568a8b8ac5c54c676a004a9ad5176 | Triage

Sharing

General

Target

JaffaCakes118_195adea4e2f0dbe6a858dbfbe463c38f86c568a8b8ac5c54c676a004a9ad5176
Size

490KB
Sample

241221-zxv8pszkgw
MD5

254941c988de73408a3239c748ac43d0
SHA1

0ff7369d86ed9de4b5efe269b74c99ceb5362eb2
SHA256

195adea4e2f0dbe6a858dbfbe463c38f86c568a8b8ac5c54c676a004a9ad5176
SHA512

eb265ae413e14c86a189373b2c184170a0d6ee385797f9fdabc740f866d32ee14c05bd59d6c974d4452f2ed0bc5ed745fd0defb2d10dfb9fcc63039a556a8d28
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_195adea4e2f0dbe6a858dbfbe463c38f86c568a8b8ac5c54c676a004a9ad5176
- Size
  
  490KB
- MD5
  
  254941c988de73408a3239c748ac43d0
- SHA1
  
  0ff7369d86ed9de4b5efe269b74c99ceb5362eb2
- SHA256
  
  195adea4e2f0dbe6a858dbfbe463c38f86c568a8b8ac5c54c676a004a9ad5176
- SHA512
  
  eb265ae413e14c86a189373b2c184170a0d6ee385797f9fdabc740f866d32ee14c05bd59d6c974d4452f2ed0bc5ed745fd0defb2d10dfb9fcc63039a556a8d28
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan