icedid | e853aa9e6a2b82a7051916083156049e87e76cbfa9b2db6f80e8f14b4242ef78 | Triage

Sharing

General

Target

JaffaCakes118_e853aa9e6a2b82a7051916083156049e87e76cbfa9b2db6f80e8f14b4242ef78
Size

490KB
Sample

241222-h9w74ayqc1
MD5

6ca9281c9be1797cbd9053cfd5bd3a10
SHA1

c627ba6c7fe3af49fe2743355c80225c0d1fc7f6
SHA256

e853aa9e6a2b82a7051916083156049e87e76cbfa9b2db6f80e8f14b4242ef78
SHA512

38993114e0a8348f0beb3c7abaa5305f09e792f1bb22180155871a539d6905bceb4a9d35ada66ee86b0b2cd5087a69e663b98e7094431e5bd08e1ecad6b7a92c
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e853aa9e6a2b82a7051916083156049e87e76cbfa9b2db6f80e8f14b4242ef78
- Size
  
  490KB
- MD5
  
  6ca9281c9be1797cbd9053cfd5bd3a10
- SHA1
  
  c627ba6c7fe3af49fe2743355c80225c0d1fc7f6
- SHA256
  
  e853aa9e6a2b82a7051916083156049e87e76cbfa9b2db6f80e8f14b4242ef78
- SHA512
  
  38993114e0a8348f0beb3c7abaa5305f09e792f1bb22180155871a539d6905bceb4a9d35ada66ee86b0b2cd5087a69e663b98e7094431e5bd08e1ecad6b7a92c
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan