icedid | 704b478582ca6ed2a1719b801d9b1229a4d68412563983f3ef2d2dd16c712fad | Triage

Sharing

General

Target

JaffaCakes118_704b478582ca6ed2a1719b801d9b1229a4d68412563983f3ef2d2dd16c712fad
Size

366KB
Sample

241222-av722swmbm
MD5

ee19bebea554ffc94cdd16b24778e734
SHA1

b14036838459a19e557a76d7313011418c8a0570
SHA256

704b478582ca6ed2a1719b801d9b1229a4d68412563983f3ef2d2dd16c712fad
SHA512

ad75a778917d4372ebc65d2a170fa39f7131214e039b3a70c9611818624a2aebb95e0e53dc7f9868a4823000f3c5627e3ec8dc6859857cc00640523b16193f6b
SSDEEP

6144:vz2NRTR1N+PbzVdaiU0lQw82niczFJLiCc1Xva4pGXH2u+wIwEFqtwosi:mRNrWJXUEQl2niwcd/cWXwHV

Score

10^/10

icedid 3384076982 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3384076982

C2

keepfootbal.com

Targets

- Target
  
  2ebeebe48a1bc8541fa769187fef1214b5855e8979cd902b21b792c57cbd808b
- Size
  
  560KB
- MD5
  
  f2568777dae76ff37d0183d6b20d2246
- SHA1
  
  91717646d2fbf4a180911308c0348b2b5abc25c0
- SHA256
  
  2ebeebe48a1bc8541fa769187fef1214b5855e8979cd902b21b792c57cbd808b
- SHA512
  
  e453656a11a99a27498065a434880f441d65578c3c2f5aea2d1cf1590b5d4e295329f5f353df2beda56ed56897bf97145b233047b0ee56a3bd681d55d414769a
- SSDEEP
  
  12288:b99Q75veGjTRoLT3T08saWoiP5fvZn6BTo2a:5y7JFK7TtsDVhfx6k2a
Score

10^/10

icedid 3384076982 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3384076982bankerloadertrojan

behavioral2

icedid3384076982bankerloadertrojan