icedid | 63243346edb5b8173bad445c479aba970d76e9c09df8c32d055c482a8215ee59 | Triage

Sharing

General

Target

JaffaCakes118_63243346edb5b8173bad445c479aba970d76e9c09df8c32d055c482a8215ee59
Size

490KB
Sample

241222-1g2afszlf1
MD5

5896ecd5bf05dab0e5b4983b11c7f62e
SHA1

26fcd1f6b381d01a04391305cf3000df9bf303e1
SHA256

63243346edb5b8173bad445c479aba970d76e9c09df8c32d055c482a8215ee59
SHA512

40088ed5e2af0d9cef640023b4df0a29d6babfe6db6329b3464198f20b12482947dd0a43649a33b3d9b49f67cf4e807b26e1fda7f4116e2a65192c411f1f4a92
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRb:knmj6xK1y3Ik6TZGRb

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_63243346edb5b8173bad445c479aba970d76e9c09df8c32d055c482a8215ee59
- Size
  
  490KB
- MD5
  
  5896ecd5bf05dab0e5b4983b11c7f62e
- SHA1
  
  26fcd1f6b381d01a04391305cf3000df9bf303e1
- SHA256
  
  63243346edb5b8173bad445c479aba970d76e9c09df8c32d055c482a8215ee59
- SHA512
  
  40088ed5e2af0d9cef640023b4df0a29d6babfe6db6329b3464198f20b12482947dd0a43649a33b3d9b49f67cf4e807b26e1fda7f4116e2a65192c411f1f4a92
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRb:knmj6xK1y3Ik6TZGRb
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan