icedid | 74420658fd610a4486332cd397e102ac2ab64f1c89cce8e965c7f131d00d82d8 | Triage

Sharing

General

Target

JaffaCakes118_74420658fd610a4486332cd397e102ac2ab64f1c89cce8e965c7f131d00d82d8
Size

490KB
Sample

241222-bsg9aaxnat
MD5

5c1a8a7a32f405c2009d0d3c881425c4
SHA1

e7706cca85262f17fa9748176d15db2f987be08f
SHA256

74420658fd610a4486332cd397e102ac2ab64f1c89cce8e965c7f131d00d82d8
SHA512

56cef8a0934fb33f567dbcdd4b657e41257ed2718834b7abdd7bf9b1e621a2ecff5175635f9cb8d6e176ce45c85bc3a7e55e191da2225083923bb91b6554b4b3
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRB:knmj6xK1y3Ik6TZGRB

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_74420658fd610a4486332cd397e102ac2ab64f1c89cce8e965c7f131d00d82d8
- Size
  
  490KB
- MD5
  
  5c1a8a7a32f405c2009d0d3c881425c4
- SHA1
  
  e7706cca85262f17fa9748176d15db2f987be08f
- SHA256
  
  74420658fd610a4486332cd397e102ac2ab64f1c89cce8e965c7f131d00d82d8
- SHA512
  
  56cef8a0934fb33f567dbcdd4b657e41257ed2718834b7abdd7bf9b1e621a2ecff5175635f9cb8d6e176ce45c85bc3a7e55e191da2225083923bb91b6554b4b3
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRB:knmj6xK1y3Ik6TZGRB
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan