icedid | 68a261ff61676d04afb95deea18761e6f181eeaef16926183d88a5e390451a04 | Triage

Sharing

General

Target

JaffaCakes118_68a261ff61676d04afb95deea18761e6f181eeaef16926183d88a5e390451a04
Size

490KB
Sample

241222-dflgaa1jey
MD5

185cbc99c05c32e088ec4cc2e397eb6d
SHA1

6af011cf424795488b6a2a5b77d1577329be4903
SHA256

68a261ff61676d04afb95deea18761e6f181eeaef16926183d88a5e390451a04
SHA512

e5ee4530a48061b8e0aeb6a0a4334b7d991301834e7bd574a05639be0d5e3485fd6b969b87feb4b958e3a5a1a3e1d3cefa76767875460a9684b060bdd89635b9
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_68a261ff61676d04afb95deea18761e6f181eeaef16926183d88a5e390451a04
- Size
  
  490KB
- MD5
  
  185cbc99c05c32e088ec4cc2e397eb6d
- SHA1
  
  6af011cf424795488b6a2a5b77d1577329be4903
- SHA256
  
  68a261ff61676d04afb95deea18761e6f181eeaef16926183d88a5e390451a04
- SHA512
  
  e5ee4530a48061b8e0aeb6a0a4334b7d991301834e7bd574a05639be0d5e3485fd6b969b87feb4b958e3a5a1a3e1d3cefa76767875460a9684b060bdd89635b9
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan