icedid | 00c6a1e28d1cbe12b2f42a3e070c8be0856dda5f9d72c8784d6f06f711a76e74 | Triage

Sharing

General

Target

JaffaCakes118_00c6a1e28d1cbe12b2f42a3e070c8be0856dda5f9d72c8784d6f06f711a76e74
Size

490KB
Sample

241222-a4m38swqam
MD5

569512d8afac791845bce94908134053
SHA1

c77467919ddca514b8f3526f61af9bdb001394d4
SHA256

00c6a1e28d1cbe12b2f42a3e070c8be0856dda5f9d72c8784d6f06f711a76e74
SHA512

e9bd2e5bcc7331da58b6d221c98a334e80e240e70403ded08edb81ac13e1b197a7bcfd2d4175498e11a2b23965750b51bc4888583e17440a9b3f8ea4901ebbf0
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_00c6a1e28d1cbe12b2f42a3e070c8be0856dda5f9d72c8784d6f06f711a76e74
- Size
  
  490KB
- MD5
  
  569512d8afac791845bce94908134053
- SHA1
  
  c77467919ddca514b8f3526f61af9bdb001394d4
- SHA256
  
  00c6a1e28d1cbe12b2f42a3e070c8be0856dda5f9d72c8784d6f06f711a76e74
- SHA512
  
  e9bd2e5bcc7331da58b6d221c98a334e80e240e70403ded08edb81ac13e1b197a7bcfd2d4175498e11a2b23965750b51bc4888583e17440a9b3f8ea4901ebbf0
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan