icedid | fca52291ed5eedb8ca96f25575854ae4ab79150cef40e72c60e1073a0e3ad180 | Triage

Sharing

General

Target

JaffaCakes118_fca52291ed5eedb8ca96f25575854ae4ab79150cef40e72c60e1073a0e3ad180
Size

490KB
Sample

241222-b2x14axrcv
MD5

d060453f47dbbddac0a8849082104187
SHA1

b870cb985b697a20606763165a559fa02b306708
SHA256

fca52291ed5eedb8ca96f25575854ae4ab79150cef40e72c60e1073a0e3ad180
SHA512

2958b9e86a1ac3b4b86077a599e948d12bc61dc6e50d8a2a9e5bf028b7f864f6f7d2d8400e8f4e32966a62593af00c368217fa2f66b93902082551fdedf29c90
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR1:knmj6xK1y3Ik6TZGR1

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fca52291ed5eedb8ca96f25575854ae4ab79150cef40e72c60e1073a0e3ad180
- Size
  
  490KB
- MD5
  
  d060453f47dbbddac0a8849082104187
- SHA1
  
  b870cb985b697a20606763165a559fa02b306708
- SHA256
  
  fca52291ed5eedb8ca96f25575854ae4ab79150cef40e72c60e1073a0e3ad180
- SHA512
  
  2958b9e86a1ac3b4b86077a599e948d12bc61dc6e50d8a2a9e5bf028b7f864f6f7d2d8400e8f4e32966a62593af00c368217fa2f66b93902082551fdedf29c90
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR1:knmj6xK1y3Ik6TZGR1
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan