icedid | 6eea2feb5b03efa8318c0c42aa14feee4abf8d2b1fcad16b9a3365d468ad4cfa | Triage

Sharing

General

Target

JaffaCakes118_6eea2feb5b03efa8318c0c42aa14feee4abf8d2b1fcad16b9a3365d468ad4cfa
Size

490KB
Sample

241222-ea79jasla1
MD5

a64bd8c79b5b834bade2dcaba2b7a2a9
SHA1

d2ba9cbc43d8a575959dd8ca1ea0dafc94f3fa1e
SHA256

6eea2feb5b03efa8318c0c42aa14feee4abf8d2b1fcad16b9a3365d468ad4cfa
SHA512

c468360c10630d2f058129b99b89f8053e49955c471942a74a62225a80b9ec0c2f40494e8b0ac70e931012f7b62aff4ace6e38bca915e8253446a8445c4f3595
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_6eea2feb5b03efa8318c0c42aa14feee4abf8d2b1fcad16b9a3365d468ad4cfa
- Size
  
  490KB
- MD5
  
  a64bd8c79b5b834bade2dcaba2b7a2a9
- SHA1
  
  d2ba9cbc43d8a575959dd8ca1ea0dafc94f3fa1e
- SHA256
  
  6eea2feb5b03efa8318c0c42aa14feee4abf8d2b1fcad16b9a3365d468ad4cfa
- SHA512
  
  c468360c10630d2f058129b99b89f8053e49955c471942a74a62225a80b9ec0c2f40494e8b0ac70e931012f7b62aff4ace6e38bca915e8253446a8445c4f3595
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan