icedid | fa51db4f0696ddb10b9fcf77298357e352958944f796618c0ecd757fe9d87253 | Triage

Sharing

General

Target

JaffaCakes118_fa51db4f0696ddb10b9fcf77298357e352958944f796618c0ecd757fe9d87253
Size

490KB
Sample

241222-anbp9svqbz
MD5

e8b094f7a2392e28bb2b1bb6cbe0bd80
SHA1

7d04e6fd53919f60b34ca9b1058045b9b7b2ec43
SHA256

fa51db4f0696ddb10b9fcf77298357e352958944f796618c0ecd757fe9d87253
SHA512

7c57c4823f7f0aa2faf2739bd03e4f0978930175ae22f6032461acf28d40b4d808c2e3513e648ea5a9758265102a4cdbc142851c7665bdeb1c5deb1c34196491
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fa51db4f0696ddb10b9fcf77298357e352958944f796618c0ecd757fe9d87253
- Size
  
  490KB
- MD5
  
  e8b094f7a2392e28bb2b1bb6cbe0bd80
- SHA1
  
  7d04e6fd53919f60b34ca9b1058045b9b7b2ec43
- SHA256
  
  fa51db4f0696ddb10b9fcf77298357e352958944f796618c0ecd757fe9d87253
- SHA512
  
  7c57c4823f7f0aa2faf2739bd03e4f0978930175ae22f6032461acf28d40b4d808c2e3513e648ea5a9758265102a4cdbc142851c7665bdeb1c5deb1c34196491
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan