icedid | d0e4be6bfb9d43bc61b558e5a3df01a10948b0b0b21a9f84dfbb9fb66679bb41 | Triage

Sharing

General

Target

JaffaCakes118_d0e4be6bfb9d43bc61b558e5a3df01a10948b0b0b21a9f84dfbb9fb66679bb41
Size

490KB
Sample

241222-dbjf5a1kbp
MD5

633736843de6aaf13f51f9c4cc202e70
SHA1

e15c68f99b2c3a97c20b3f1cb35e5dbfd5e9bac3
SHA256

d0e4be6bfb9d43bc61b558e5a3df01a10948b0b0b21a9f84dfbb9fb66679bb41
SHA512

e1639f205a68427cbeb4f318897ff63fbcf13e2f89a4e301e4f9a158885fccf4a55beab2ac350493b48487e9dd0e89bdc3705cd778105c35eac1d55fc15f23fa
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d0e4be6bfb9d43bc61b558e5a3df01a10948b0b0b21a9f84dfbb9fb66679bb41
- Size
  
  490KB
- MD5
  
  633736843de6aaf13f51f9c4cc202e70
- SHA1
  
  e15c68f99b2c3a97c20b3f1cb35e5dbfd5e9bac3
- SHA256
  
  d0e4be6bfb9d43bc61b558e5a3df01a10948b0b0b21a9f84dfbb9fb66679bb41
- SHA512
  
  e1639f205a68427cbeb4f318897ff63fbcf13e2f89a4e301e4f9a158885fccf4a55beab2ac350493b48487e9dd0e89bdc3705cd778105c35eac1d55fc15f23fa
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan