icedid | 4b3821877be4a54d286bed79b21137736886c0fabb4ea03c14bda240d72533b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

JaffaCakes118_4b3821877be4a54d286bed79b21137736886c0fabb4ea03c14bda240d72533b1
Size

490KB
Sample

241222-ghz91awlh1
MD5

38dfeac505c76b7d8e74188d487428bb
SHA1

3a08130d1479302e020b85801877e78b064f2ed0
SHA256

4b3821877be4a54d286bed79b21137736886c0fabb4ea03c14bda240d72533b1
SHA512

ccff1c705df73dd1ea43bdf72d16b6a554d30195e8634c9ebcaabc9fbe2bb0a390a1c3ebda568f1c0d3b304b9f56e9fa2f976db9d57306957a48dc0bcfd6f364
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_4b3821877be4a54d286bed79b21137736886c0fabb4ea03c14bda240d72533b1
- Size
  
  490KB
- MD5
  
  38dfeac505c76b7d8e74188d487428bb
- SHA1
  
  3a08130d1479302e020b85801877e78b064f2ed0
- SHA256
  
  4b3821877be4a54d286bed79b21137736886c0fabb4ea03c14bda240d72533b1
- SHA512
  
  ccff1c705df73dd1ea43bdf72d16b6a554d30195e8634c9ebcaabc9fbe2bb0a390a1c3ebda568f1c0d3b304b9f56e9fa2f976db9d57306957a48dc0bcfd6f364
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan