icedid | e49ff3d60ff747b5459b820137a3eec9f6acb3ac51a8b8500eb88cb4eb9a5e54 | Triage

Sharing

General

Target

JaffaCakes118_e49ff3d60ff747b5459b820137a3eec9f6acb3ac51a8b8500eb88cb4eb9a5e54
Size

490KB
Sample

241222-bfp4csxjas
MD5

405032b30256e756e6d70d07c8b2177a
SHA1

86fe0f58e91ea49505ffe893149fe0aa61aa94f9
SHA256

e49ff3d60ff747b5459b820137a3eec9f6acb3ac51a8b8500eb88cb4eb9a5e54
SHA512

ab49bbfdd2da54c60399f01f1dccb8ee58b6214f88d955e618281706ae8a18f56222f7837e3f5708c24e3e4391ddf41716efb5c44c91c9c18f7eff5a286328fd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRd:knmj6xK1y3Ik6TZGRd

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e49ff3d60ff747b5459b820137a3eec9f6acb3ac51a8b8500eb88cb4eb9a5e54
- Size
  
  490KB
- MD5
  
  405032b30256e756e6d70d07c8b2177a
- SHA1
  
  86fe0f58e91ea49505ffe893149fe0aa61aa94f9
- SHA256
  
  e49ff3d60ff747b5459b820137a3eec9f6acb3ac51a8b8500eb88cb4eb9a5e54
- SHA512
  
  ab49bbfdd2da54c60399f01f1dccb8ee58b6214f88d955e618281706ae8a18f56222f7837e3f5708c24e3e4391ddf41716efb5c44c91c9c18f7eff5a286328fd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRd:knmj6xK1y3Ik6TZGRd
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan