icedid | a2ba63d54fc9083abb180011c97e9528fb3fe343bba5b7cb4a38f34d94506beb | Triage

Sharing

General

Target

JaffaCakes118_a2ba63d54fc9083abb180011c97e9528fb3fe343bba5b7cb4a38f34d94506beb
Size

490KB
Sample

241222-jag5kayqe1
MD5

e4e20854c94eb6b7e7dca2b9cf2102b9
SHA1

95a34e9d6061b1b0342964e347f3a507addb13b1
SHA256

a2ba63d54fc9083abb180011c97e9528fb3fe343bba5b7cb4a38f34d94506beb
SHA512

e6ec75a2e4bedb9b6c2fdae65c8c862cb1c03d95a6dc84fe0ee36b5f07cdec52f7b4d5dcd08cfdfb10c23d93f40fe5697633102e6ce6315d393677b5870abdc6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a2ba63d54fc9083abb180011c97e9528fb3fe343bba5b7cb4a38f34d94506beb
- Size
  
  490KB
- MD5
  
  e4e20854c94eb6b7e7dca2b9cf2102b9
- SHA1
  
  95a34e9d6061b1b0342964e347f3a507addb13b1
- SHA256
  
  a2ba63d54fc9083abb180011c97e9528fb3fe343bba5b7cb4a38f34d94506beb
- SHA512
  
  e6ec75a2e4bedb9b6c2fdae65c8c862cb1c03d95a6dc84fe0ee36b5f07cdec52f7b4d5dcd08cfdfb10c23d93f40fe5697633102e6ce6315d393677b5870abdc6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan