icedid | fb9eaf167399b6bbdb1cf7553e899ba2f9fde0e62ab904f983a56d8ee3f86bec | Triage

Sharing

General

Target

JaffaCakes118_fb9eaf167399b6bbdb1cf7553e899ba2f9fde0e62ab904f983a56d8ee3f86bec
Size

490KB
Sample

241222-k26gxaska1
MD5

59d62f040491ab2484e368f017917413
SHA1

fc274a182c704037b859ba14e7c5f3fa1e430500
SHA256

fb9eaf167399b6bbdb1cf7553e899ba2f9fde0e62ab904f983a56d8ee3f86bec
SHA512

5a9ef370d5a8e8af35e82559331e818660a88f80c2131733d89462b687b78cc1754ddc8f335846e71711543b69781db60c6227155ef4fa1083c812c235c60da5
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fb9eaf167399b6bbdb1cf7553e899ba2f9fde0e62ab904f983a56d8ee3f86bec
- Size
  
  490KB
- MD5
  
  59d62f040491ab2484e368f017917413
- SHA1
  
  fc274a182c704037b859ba14e7c5f3fa1e430500
- SHA256
  
  fb9eaf167399b6bbdb1cf7553e899ba2f9fde0e62ab904f983a56d8ee3f86bec
- SHA512
  
  5a9ef370d5a8e8af35e82559331e818660a88f80c2131733d89462b687b78cc1754ddc8f335846e71711543b69781db60c6227155ef4fa1083c812c235c60da5
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan