icedid | f72f0d2d36b9b5d34502b1748187774db9034e30a1a5d70e5a9749d60414f0d1 | Triage

Sharing

General

Target

JaffaCakes118_f72f0d2d36b9b5d34502b1748187774db9034e30a1a5d70e5a9749d60414f0d1
Size

490KB
Sample

241222-ds37vs1nex
MD5

89ded3be7c75266ae09fa998f16505bf
SHA1

e1cb2cbc744cea3ff628917701c44c0990e71bdd
SHA256

f72f0d2d36b9b5d34502b1748187774db9034e30a1a5d70e5a9749d60414f0d1
SHA512

9a48c4777f7b1c100bff3ae736c4e6c883966c8fc14289e0f7a4cfa644836ec185a197662293d33e90861c854413b099747ef9e2708b5397031788b32520a803
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRz:knmj6xK1y3Ik6TZGRz

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f72f0d2d36b9b5d34502b1748187774db9034e30a1a5d70e5a9749d60414f0d1
- Size
  
  490KB
- MD5
  
  89ded3be7c75266ae09fa998f16505bf
- SHA1
  
  e1cb2cbc744cea3ff628917701c44c0990e71bdd
- SHA256
  
  f72f0d2d36b9b5d34502b1748187774db9034e30a1a5d70e5a9749d60414f0d1
- SHA512
  
  9a48c4777f7b1c100bff3ae736c4e6c883966c8fc14289e0f7a4cfa644836ec185a197662293d33e90861c854413b099747ef9e2708b5397031788b32520a803
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRz:knmj6xK1y3Ik6TZGRz
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan