icedid | bd1b8363bf5b0abde6468537914ddd09dae1a48fd57465b4a60fe84b190fabf8 | Triage

Sharing

General

Target

JaffaCakes118_bd1b8363bf5b0abde6468537914ddd09dae1a48fd57465b4a60fe84b190fabf8
Size

490KB
Sample

241222-egqcassmgt
MD5

f16dc0cf81c829bbb9710a2e5f919d2b
SHA1

5d9b4536e52485ce3668093c6e31a124c3e40f47
SHA256

bd1b8363bf5b0abde6468537914ddd09dae1a48fd57465b4a60fe84b190fabf8
SHA512

a18ace6b757bf0c28dfbcf3ec5a2e673f652b45ee18578da24a3578846afc03ee46014c0d8b71df892030145a3e4b2fe82b9dc4f4bfc9517c5bcfcde900b494b
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRf:knmj6xK1y3Ik6TZGRf

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_bd1b8363bf5b0abde6468537914ddd09dae1a48fd57465b4a60fe84b190fabf8
- Size
  
  490KB
- MD5
  
  f16dc0cf81c829bbb9710a2e5f919d2b
- SHA1
  
  5d9b4536e52485ce3668093c6e31a124c3e40f47
- SHA256
  
  bd1b8363bf5b0abde6468537914ddd09dae1a48fd57465b4a60fe84b190fabf8
- SHA512
  
  a18ace6b757bf0c28dfbcf3ec5a2e673f652b45ee18578da24a3578846afc03ee46014c0d8b71df892030145a3e4b2fe82b9dc4f4bfc9517c5bcfcde900b494b
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRf:knmj6xK1y3Ik6TZGRf
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan