icedid | ec5e29a1c25b1395cb484f2df42f0a3b3aa311885c50978b3660f982293ea7dd | Triage

Sharing

General

Target

JaffaCakes118_ec5e29a1c25b1395cb484f2df42f0a3b3aa311885c50978b3660f982293ea7dd
Size

490KB
Sample

241222-m29knsvqez
MD5

77c7ebe190bf4efc969f3ebc7d84c07e
SHA1

e3425bd5393de03e64ede9fe597be8cd0e4e4376
SHA256

ec5e29a1c25b1395cb484f2df42f0a3b3aa311885c50978b3660f982293ea7dd
SHA512

10b35e9b301141981e081e91999bae49f6ae4c7247a289726154ad2376d1a0dcdbbc7e36ce1b558c7b6603d5f50cbcb275e8fe0a59fb7b8a6efd704882c4773d
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ec5e29a1c25b1395cb484f2df42f0a3b3aa311885c50978b3660f982293ea7dd
- Size
  
  490KB
- MD5
  
  77c7ebe190bf4efc969f3ebc7d84c07e
- SHA1
  
  e3425bd5393de03e64ede9fe597be8cd0e4e4376
- SHA256
  
  ec5e29a1c25b1395cb484f2df42f0a3b3aa311885c50978b3660f982293ea7dd
- SHA512
  
  10b35e9b301141981e081e91999bae49f6ae4c7247a289726154ad2376d1a0dcdbbc7e36ce1b558c7b6603d5f50cbcb275e8fe0a59fb7b8a6efd704882c4773d
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan