icedid | 72bc42a3581f2ec78fd5bbdb8e753853ff9c0d084e9d220a523253660061b104 | Triage

Sharing

General

Target

JaffaCakes118_72bc42a3581f2ec78fd5bbdb8e753853ff9c0d084e9d220a523253660061b104
Size

490KB
Sample

241222-j9wf8s1jdz
MD5

efa19d62eaca83c46a04bb91c0c2d286
SHA1

25122e4ee179a28fbf640ee89c19567c9b7a8c14
SHA256

72bc42a3581f2ec78fd5bbdb8e753853ff9c0d084e9d220a523253660061b104
SHA512

389560df777a1e607010068d6a4ba41c30920efb0e861d9224ea2642c6347f9caccbc8e774edcec8677833a5def61ac2d8acc053bf8062a03c7a10a1749f3742
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_72bc42a3581f2ec78fd5bbdb8e753853ff9c0d084e9d220a523253660061b104
- Size
  
  490KB
- MD5
  
  efa19d62eaca83c46a04bb91c0c2d286
- SHA1
  
  25122e4ee179a28fbf640ee89c19567c9b7a8c14
- SHA256
  
  72bc42a3581f2ec78fd5bbdb8e753853ff9c0d084e9d220a523253660061b104
- SHA512
  
  389560df777a1e607010068d6a4ba41c30920efb0e861d9224ea2642c6347f9caccbc8e774edcec8677833a5def61ac2d8acc053bf8062a03c7a10a1749f3742
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan