icedid | 7b7154eb2d1cf4bdfc9da6a5eb71bc398af62f6450abb0b1d2aad7c042d2e2bd | Triage

Sharing

General

Target

JaffaCakes118_7b7154eb2d1cf4bdfc9da6a5eb71bc398af62f6450abb0b1d2aad7c042d2e2bd
Size

490KB
Sample

241222-k2c6cssmdl
MD5

3ae761e8c873c5839ac00e4566ceb7db
SHA1

704cc11ff89f59487011d386072418ca6679c262
SHA256

7b7154eb2d1cf4bdfc9da6a5eb71bc398af62f6450abb0b1d2aad7c042d2e2bd
SHA512

4dedf3f6f0b5455b4c6ea32a1cbcd789932f606011dff6cbc6a45aa36c5e220979d024bcb46d2e28cc6f3ffa6304fa33861d868743031fe59d2a1ffc71b69736
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_7b7154eb2d1cf4bdfc9da6a5eb71bc398af62f6450abb0b1d2aad7c042d2e2bd
- Size
  
  490KB
- MD5
  
  3ae761e8c873c5839ac00e4566ceb7db
- SHA1
  
  704cc11ff89f59487011d386072418ca6679c262
- SHA256
  
  7b7154eb2d1cf4bdfc9da6a5eb71bc398af62f6450abb0b1d2aad7c042d2e2bd
- SHA512
  
  4dedf3f6f0b5455b4c6ea32a1cbcd789932f606011dff6cbc6a45aa36c5e220979d024bcb46d2e28cc6f3ffa6304fa33861d868743031fe59d2a1ffc71b69736
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan