icedid | 4a538ba5b9a2d78b129b02f9c08cf4e5c176368636f6736440371fafeefcef65 | Triage

Sharing

General

Target

JaffaCakes118_4a538ba5b9a2d78b129b02f9c08cf4e5c176368636f6736440371fafeefcef65
Size

490KB
Sample

241222-l6bzjatrel
MD5

28097d3cf0f8e758a6258618da42a4d9
SHA1

3b935dc873d276a9383edfdf97eac45c11840839
SHA256

4a538ba5b9a2d78b129b02f9c08cf4e5c176368636f6736440371fafeefcef65
SHA512

5116b21081845f81a7b62ae15c900e0360d67143be4f97aa89cd0a85ee162652e04c5c0075a3febd7d87f94cc7009ee878badd7df1491c7d7b98ad31bee7c9d2
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRpf:knmj6xK1y3Ik6TZGRpf

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_4a538ba5b9a2d78b129b02f9c08cf4e5c176368636f6736440371fafeefcef65
- Size
  
  490KB
- MD5
  
  28097d3cf0f8e758a6258618da42a4d9
- SHA1
  
  3b935dc873d276a9383edfdf97eac45c11840839
- SHA256
  
  4a538ba5b9a2d78b129b02f9c08cf4e5c176368636f6736440371fafeefcef65
- SHA512
  
  5116b21081845f81a7b62ae15c900e0360d67143be4f97aa89cd0a85ee162652e04c5c0075a3febd7d87f94cc7009ee878badd7df1491c7d7b98ad31bee7c9d2
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRpf:knmj6xK1y3Ik6TZGRpf
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan