icedid | c5a7df0ff8985f3292a225002c643d5fef3adb5632a80af5224cdbfc37c51f2d | Triage

Sharing

General

Target

JaffaCakes118_c5a7df0ff8985f3292a225002c643d5fef3adb5632a80af5224cdbfc37c51f2d
Size

490KB
Sample

241222-l6lhzatreq
MD5

ddebc7292bf2b646f10d10c2d13e4d06
SHA1

e9a962fef7d5de4386ef1b2b1258af9a1d5a6c9d
SHA256

c5a7df0ff8985f3292a225002c643d5fef3adb5632a80af5224cdbfc37c51f2d
SHA512

2c8c0144ead0fa94d112ab18a84f2872c9e6e58aef38497d08f216f99245cce31856341e33422d088bd043402abcbed69f3fa41d87e990c61f37b79dcbfef328
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c5a7df0ff8985f3292a225002c643d5fef3adb5632a80af5224cdbfc37c51f2d
- Size
  
  490KB
- MD5
  
  ddebc7292bf2b646f10d10c2d13e4d06
- SHA1
  
  e9a962fef7d5de4386ef1b2b1258af9a1d5a6c9d
- SHA256
  
  c5a7df0ff8985f3292a225002c643d5fef3adb5632a80af5224cdbfc37c51f2d
- SHA512
  
  2c8c0144ead0fa94d112ab18a84f2872c9e6e58aef38497d08f216f99245cce31856341e33422d088bd043402abcbed69f3fa41d87e990c61f37b79dcbfef328
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan