icedid | ec251d81bf1adab0b51d8954a736326be7a54d24be9b6d54ebf1ff1f3f9ba6ef | Triage

Sharing

General

Target

JaffaCakes118_ec251d81bf1adab0b51d8954a736326be7a54d24be9b6d54ebf1ff1f3f9ba6ef
Size

490KB
Sample

241222-af1pesvmh1
MD5

36a264250aab4ef600d6cad011f7736b
SHA1

591ee3864e7836f86e59c2468c9440433fcaefb1
SHA256

ec251d81bf1adab0b51d8954a736326be7a54d24be9b6d54ebf1ff1f3f9ba6ef
SHA512

77bc6df183f71c13c2c74e4c1a88f4cae5078844e561555e178b0aca63c27e6b8cbc97d4ff1f90816eb5e4733e93e331f4d25377a79ced725f69180b8977a8d2
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ec251d81bf1adab0b51d8954a736326be7a54d24be9b6d54ebf1ff1f3f9ba6ef
- Size
  
  490KB
- MD5
  
  36a264250aab4ef600d6cad011f7736b
- SHA1
  
  591ee3864e7836f86e59c2468c9440433fcaefb1
- SHA256
  
  ec251d81bf1adab0b51d8954a736326be7a54d24be9b6d54ebf1ff1f3f9ba6ef
- SHA512
  
  77bc6df183f71c13c2c74e4c1a88f4cae5078844e561555e178b0aca63c27e6b8cbc97d4ff1f90816eb5e4733e93e331f4d25377a79ced725f69180b8977a8d2
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan