icedid | 4b92c84fc1c36252f7a38c48ab2c56b4a0f7676899a851eb1b057e6d28393e4d | Triage

Sharing

General

Target

JaffaCakes118_4b92c84fc1c36252f7a38c48ab2c56b4a0f7676899a851eb1b057e6d28393e4d
Size

490KB
Sample

241222-hpm4payjgz
MD5

755ae38de6d4f2fc6ec96748907a30bb
SHA1

02c42625e7fe68aae7a67f0679ac9272901630a3
SHA256

4b92c84fc1c36252f7a38c48ab2c56b4a0f7676899a851eb1b057e6d28393e4d
SHA512

9cfc7b9766a98a76210a3ce6601ba6f46daabe4af33118d84791011ae5e32fd678ef49e6dfd431a158a47c7e44cbe8ad1fe05078b0839092f0e20f37bc0d350f
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR1:knmj6xK1y3Ik6TZGR1

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_4b92c84fc1c36252f7a38c48ab2c56b4a0f7676899a851eb1b057e6d28393e4d
- Size
  
  490KB
- MD5
  
  755ae38de6d4f2fc6ec96748907a30bb
- SHA1
  
  02c42625e7fe68aae7a67f0679ac9272901630a3
- SHA256
  
  4b92c84fc1c36252f7a38c48ab2c56b4a0f7676899a851eb1b057e6d28393e4d
- SHA512
  
  9cfc7b9766a98a76210a3ce6601ba6f46daabe4af33118d84791011ae5e32fd678ef49e6dfd431a158a47c7e44cbe8ad1fe05078b0839092f0e20f37bc0d350f
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR1:knmj6xK1y3Ik6TZGR1
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan