icedid | 42be2a85d3bc9585faacd8d61eea02f6866321d9137f551edd73846730d31118 | Triage

Sharing

General

Target

JaffaCakes118_42be2a85d3bc9585faacd8d61eea02f6866321d9137f551edd73846730d31118
Size

490KB
Sample

241222-kdyr6a1lbt
MD5

f052a50a7e1d71860df1fe3cba6c171b
SHA1

9261e17649a94d69cc830883032290930cd8efd1
SHA256

42be2a85d3bc9585faacd8d61eea02f6866321d9137f551edd73846730d31118
SHA512

8ef0503c9b129eab1f9bbd806a0dc31888aa429bdc5f505dd50dc5d56eeae647a58ed476e144d31a255bbc05856cf87535681e806534c0b50b27b8707214ab29
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_42be2a85d3bc9585faacd8d61eea02f6866321d9137f551edd73846730d31118
- Size
  
  490KB
- MD5
  
  f052a50a7e1d71860df1fe3cba6c171b
- SHA1
  
  9261e17649a94d69cc830883032290930cd8efd1
- SHA256
  
  42be2a85d3bc9585faacd8d61eea02f6866321d9137f551edd73846730d31118
- SHA512
  
  8ef0503c9b129eab1f9bbd806a0dc31888aa429bdc5f505dd50dc5d56eeae647a58ed476e144d31a255bbc05856cf87535681e806534c0b50b27b8707214ab29
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan