icedid | 49716d27f98f3385ec564683ffe22f4152e75b7609816a05f735f59e6ae5ca74 | Triage

Sharing

General

Target

JaffaCakes118_49716d27f98f3385ec564683ffe22f4152e75b7609816a05f735f59e6ae5ca74
Size

490KB
Sample

241222-kxrg7a1rfy
MD5

dca845abc0c5fa2c36e140d5b3dbea54
SHA1

9fe389a7d025d8167682aee597e961984ec407e2
SHA256

49716d27f98f3385ec564683ffe22f4152e75b7609816a05f735f59e6ae5ca74
SHA512

5b1d1e9c12feb8827e2c1829cecfad70952fa4bbf62b40011f12012fbe0c7a5ed1b9c088cd543ec1f1e6675fc9fc0058901a451ae70941db4ad736767fa64156
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_49716d27f98f3385ec564683ffe22f4152e75b7609816a05f735f59e6ae5ca74
- Size
  
  490KB
- MD5
  
  dca845abc0c5fa2c36e140d5b3dbea54
- SHA1
  
  9fe389a7d025d8167682aee597e961984ec407e2
- SHA256
  
  49716d27f98f3385ec564683ffe22f4152e75b7609816a05f735f59e6ae5ca74
- SHA512
  
  5b1d1e9c12feb8827e2c1829cecfad70952fa4bbf62b40011f12012fbe0c7a5ed1b9c088cd543ec1f1e6675fc9fc0058901a451ae70941db4ad736767fa64156
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan