icedid | d5bb8c1c036529dd673124878ad2a5d82ab2f57ad85708741927db3ad2f46c93 | Triage

Sharing

General

Target

JaffaCakes118_d5bb8c1c036529dd673124878ad2a5d82ab2f57ad85708741927db3ad2f46c93
Size

490KB
Sample

241222-j84q8a1mcl
MD5

76e31efb83516e68dc15b5a9b442c29b
SHA1

94a2338b98f608e05c24e3335f8dab898593cc15
SHA256

d5bb8c1c036529dd673124878ad2a5d82ab2f57ad85708741927db3ad2f46c93
SHA512

01c6fa0a7d6c377775e4777f9c284f29f49533a8623efbcfd4fd2d8a33c6d24cbe93c6c7e06a7874ff6eb487167a367846e0f753f06ea02bae6b454fcc4920f6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d5bb8c1c036529dd673124878ad2a5d82ab2f57ad85708741927db3ad2f46c93
- Size
  
  490KB
- MD5
  
  76e31efb83516e68dc15b5a9b442c29b
- SHA1
  
  94a2338b98f608e05c24e3335f8dab898593cc15
- SHA256
  
  d5bb8c1c036529dd673124878ad2a5d82ab2f57ad85708741927db3ad2f46c93
- SHA512
  
  01c6fa0a7d6c377775e4777f9c284f29f49533a8623efbcfd4fd2d8a33c6d24cbe93c6c7e06a7874ff6eb487167a367846e0f753f06ea02bae6b454fcc4920f6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan