icedid | eb1dd89e7ae277b5ca1306618b5dbe179f43216fb4b68c5bbcb9b0e0a4f27b38 | Triage

Sharing

General

Target

JaffaCakes118_eb1dd89e7ae277b5ca1306618b5dbe179f43216fb4b68c5bbcb9b0e0a4f27b38
Size

490KB
Sample

241222-bjmseaxkbw
MD5

5da4a9f166eb12aee2d2bdf1ee9acbd2
SHA1

bbb91a6ff7c88526be88418a9e8890f5b880affc
SHA256

eb1dd89e7ae277b5ca1306618b5dbe179f43216fb4b68c5bbcb9b0e0a4f27b38
SHA512

852e44f46db92e29f76ad1dc0b80ba10ca04bf8c0900dfafae6eba8a482f0fa4a346c323c52b67af256bceead42cf6bb6ed9523d49f273d2db45068bbd54d110
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRk:knmj6xK1y3Ik6TZGRk

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_eb1dd89e7ae277b5ca1306618b5dbe179f43216fb4b68c5bbcb9b0e0a4f27b38
- Size
  
  490KB
- MD5
  
  5da4a9f166eb12aee2d2bdf1ee9acbd2
- SHA1
  
  bbb91a6ff7c88526be88418a9e8890f5b880affc
- SHA256
  
  eb1dd89e7ae277b5ca1306618b5dbe179f43216fb4b68c5bbcb9b0e0a4f27b38
- SHA512
  
  852e44f46db92e29f76ad1dc0b80ba10ca04bf8c0900dfafae6eba8a482f0fa4a346c323c52b67af256bceead42cf6bb6ed9523d49f273d2db45068bbd54d110
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRk:knmj6xK1y3Ik6TZGRk
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan