icedid | ef6f1ebdf4edc70666e8ca2b4910b83ff2a1ca488fdde9660c31fee85f09f563 | Triage

Sharing

General

Target

JaffaCakes118_ef6f1ebdf4edc70666e8ca2b4910b83ff2a1ca488fdde9660c31fee85f09f563
Size

490KB
Sample

241222-lda7jasncx
MD5

bdfb1048954d28663f87ba808f2dc012
SHA1

43e2d575a7bd7e81a813023b3bf98afd3dbf7d42
SHA256

ef6f1ebdf4edc70666e8ca2b4910b83ff2a1ca488fdde9660c31fee85f09f563
SHA512

26b2d00fbff7b955c8c39ade028167af3e72332334dd3b50daf0786100848f91340a6e482aba6abeb58e3a78d5d17914b8b2cb4d08e446abcc92b3f0ab2893bd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ef6f1ebdf4edc70666e8ca2b4910b83ff2a1ca488fdde9660c31fee85f09f563
- Size
  
  490KB
- MD5
  
  bdfb1048954d28663f87ba808f2dc012
- SHA1
  
  43e2d575a7bd7e81a813023b3bf98afd3dbf7d42
- SHA256
  
  ef6f1ebdf4edc70666e8ca2b4910b83ff2a1ca488fdde9660c31fee85f09f563
- SHA512
  
  26b2d00fbff7b955c8c39ade028167af3e72332334dd3b50daf0786100848f91340a6e482aba6abeb58e3a78d5d17914b8b2cb4d08e446abcc92b3f0ab2893bd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRx:knmj6xK1y3Ik6TZGRx
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan