icedid | f841aee1b3d0c042c5744f5e803544ea8bb5c7b2d50e47d3927ac9e3293eb6df | Triage

Sharing

General

Target

JaffaCakes118_f841aee1b3d0c042c5744f5e803544ea8bb5c7b2d50e47d3927ac9e3293eb6df
Size

490KB
Sample

241222-khtn1a1qbj
MD5

ca12ca93f864b8caba3cbfaa821b89fd
SHA1

ef7fc4f70bc8835617a0e3bf4b27e88716129941
SHA256

f841aee1b3d0c042c5744f5e803544ea8bb5c7b2d50e47d3927ac9e3293eb6df
SHA512

f463be3b6580cec7dc2946fda5e49c7a885ad050d16b33473749c1dfcbebf1b5fb2cacd8095f80bcb96574394138a7e6dd5b3bce48e32bb7d625e8e67b596a49
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f841aee1b3d0c042c5744f5e803544ea8bb5c7b2d50e47d3927ac9e3293eb6df
- Size
  
  490KB
- MD5
  
  ca12ca93f864b8caba3cbfaa821b89fd
- SHA1
  
  ef7fc4f70bc8835617a0e3bf4b27e88716129941
- SHA256
  
  f841aee1b3d0c042c5744f5e803544ea8bb5c7b2d50e47d3927ac9e3293eb6df
- SHA512
  
  f463be3b6580cec7dc2946fda5e49c7a885ad050d16b33473749c1dfcbebf1b5fb2cacd8095f80bcb96574394138a7e6dd5b3bce48e32bb7d625e8e67b596a49
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan