icedid | f91edd40268d67c605d9d831a2e98a8ba22d6308e72d45af5aad597fa9ab02e8 | Triage

Sharing

General

Target

JaffaCakes118_f91edd40268d67c605d9d831a2e98a8ba22d6308e72d45af5aad597fa9ab02e8
Size

490KB
Sample

241222-drykzs1nay
MD5

a4119fc108a479a141996541231fa86e
SHA1

ab736adcbc47404466c431fee54b2ea2a1a511aa
SHA256

f91edd40268d67c605d9d831a2e98a8ba22d6308e72d45af5aad597fa9ab02e8
SHA512

a2bddcb8c87fcf8a0ca3c7aacee1553c3b959ffa3cf8adf09cc5e59ce73579a150bde361bc7eb84c0fd70f280306fff5f8b3bd3f6d2b89943c1b3f60e6ec71a5
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRc:knmj6xK1y3Ik6TZGRc

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f91edd40268d67c605d9d831a2e98a8ba22d6308e72d45af5aad597fa9ab02e8
- Size
  
  490KB
- MD5
  
  a4119fc108a479a141996541231fa86e
- SHA1
  
  ab736adcbc47404466c431fee54b2ea2a1a511aa
- SHA256
  
  f91edd40268d67c605d9d831a2e98a8ba22d6308e72d45af5aad597fa9ab02e8
- SHA512
  
  a2bddcb8c87fcf8a0ca3c7aacee1553c3b959ffa3cf8adf09cc5e59ce73579a150bde361bc7eb84c0fd70f280306fff5f8b3bd3f6d2b89943c1b3f60e6ec71a5
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRc:knmj6xK1y3Ik6TZGRc
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan