icedid | 415818d02dca3645a65cb02ef3cdce5a63c79b28edff6f6402a81b3f89cdce82 | Triage

Sharing

General

Target

JaffaCakes118_415818d02dca3645a65cb02ef3cdce5a63c79b28edff6f6402a81b3f89cdce82
Size

490KB
Sample

241222-lrcbratmcp
MD5

b093b3f4d44515862bc845ef670aa711
SHA1

be9d4e13ccfc83d91f4191e391bace4f1c5f9863
SHA256

415818d02dca3645a65cb02ef3cdce5a63c79b28edff6f6402a81b3f89cdce82
SHA512

5407aa1e7ceef838fa01429d5fad51aa30305d10d39782be4c5c2bbba843f4a56ba656e3d5d69156fd8dc629f7201f651f37ee1434007a9b7d81a50180aa5b2f
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRW:knmj6xK1y3Ik6TZGRW

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_415818d02dca3645a65cb02ef3cdce5a63c79b28edff6f6402a81b3f89cdce82
- Size
  
  490KB
- MD5
  
  b093b3f4d44515862bc845ef670aa711
- SHA1
  
  be9d4e13ccfc83d91f4191e391bace4f1c5f9863
- SHA256
  
  415818d02dca3645a65cb02ef3cdce5a63c79b28edff6f6402a81b3f89cdce82
- SHA512
  
  5407aa1e7ceef838fa01429d5fad51aa30305d10d39782be4c5c2bbba843f4a56ba656e3d5d69156fd8dc629f7201f651f37ee1434007a9b7d81a50180aa5b2f
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRW:knmj6xK1y3Ik6TZGRW
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan