icedid | a5a79882fc31bb1f6f0b05f19795e5fae4fffca89b13e4143f20481c17468ad5 | Triage

Sharing

General

Target

JaffaCakes118_a5a79882fc31bb1f6f0b05f19795e5fae4fffca89b13e4143f20481c17468ad5
Size

490KB
Sample

241222-as8ksswlfq
MD5

ea3a0983a4edc311f97df6866c9ef3db
SHA1

f366d0e72fb37e9555643bfb6f5490657153d86d
SHA256

a5a79882fc31bb1f6f0b05f19795e5fae4fffca89b13e4143f20481c17468ad5
SHA512

03a98267a5db9a0ec72797dda44d95fd8083f90956792f0244de188c40009e71168ce7e3203c9e2f81c98f6e695b18d29a7c6ec68822fe9225241d43483d67ef
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4:knmj6xK1y3Ik6TZGR4

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a5a79882fc31bb1f6f0b05f19795e5fae4fffca89b13e4143f20481c17468ad5
- Size
  
  490KB
- MD5
  
  ea3a0983a4edc311f97df6866c9ef3db
- SHA1
  
  f366d0e72fb37e9555643bfb6f5490657153d86d
- SHA256
  
  a5a79882fc31bb1f6f0b05f19795e5fae4fffca89b13e4143f20481c17468ad5
- SHA512
  
  03a98267a5db9a0ec72797dda44d95fd8083f90956792f0244de188c40009e71168ce7e3203c9e2f81c98f6e695b18d29a7c6ec68822fe9225241d43483d67ef
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4:knmj6xK1y3Ik6TZGR4
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan