icedid | b0a943280d13c8f4d2fb130ed8c8f90bcde1c7d7274c7a703c7f81938b8ecbae | Triage

Sharing

General

Target

JaffaCakes118_b0a943280d13c8f4d2fb130ed8c8f90bcde1c7d7274c7a703c7f81938b8ecbae
Size

490KB
Sample

241222-gy63gsxjbv
MD5

4d33a48e759186741c5b1286289d2127
SHA1

70c19e316a9479ca9e6bd4d20c1e13e8460e291c
SHA256

b0a943280d13c8f4d2fb130ed8c8f90bcde1c7d7274c7a703c7f81938b8ecbae
SHA512

c0032422d6d3cc55a6f97d0eadfcf2e859a7154a88a8c7d9690e14c92cb11e5f2a64fb5d52676d9c98ba6fca326e2b04f09b5df81603145b2dcc65666c94176b
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_b0a943280d13c8f4d2fb130ed8c8f90bcde1c7d7274c7a703c7f81938b8ecbae
- Size
  
  490KB
- MD5
  
  4d33a48e759186741c5b1286289d2127
- SHA1
  
  70c19e316a9479ca9e6bd4d20c1e13e8460e291c
- SHA256
  
  b0a943280d13c8f4d2fb130ed8c8f90bcde1c7d7274c7a703c7f81938b8ecbae
- SHA512
  
  c0032422d6d3cc55a6f97d0eadfcf2e859a7154a88a8c7d9690e14c92cb11e5f2a64fb5d52676d9c98ba6fca326e2b04f09b5df81603145b2dcc65666c94176b
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan