icedid | a4c1b901abb27cab12b38fc9d98213522dc08f2ead07062afbc28ff502105c72 | Triage

Sharing

General

Target

JaffaCakes118_a4c1b901abb27cab12b38fc9d98213522dc08f2ead07062afbc28ff502105c72
Size

490KB
Sample

241222-m5bstawlcj
MD5

ba9cd045b4f8dfcf0dbcad167d2e6b02
SHA1

b80d0008c5477e71c4747dfda4499950f4f4bd18
SHA256

a4c1b901abb27cab12b38fc9d98213522dc08f2ead07062afbc28ff502105c72
SHA512

d5948e07756b022e3c139eae2f2c0915945a210325912e7f8525a1c0ad58ce1866347079ef87834360a40e8003ac0270d21be59b08ff5bc328f3b6a813a20df4
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a4c1b901abb27cab12b38fc9d98213522dc08f2ead07062afbc28ff502105c72
- Size
  
  490KB
- MD5
  
  ba9cd045b4f8dfcf0dbcad167d2e6b02
- SHA1
  
  b80d0008c5477e71c4747dfda4499950f4f4bd18
- SHA256
  
  a4c1b901abb27cab12b38fc9d98213522dc08f2ead07062afbc28ff502105c72
- SHA512
  
  d5948e07756b022e3c139eae2f2c0915945a210325912e7f8525a1c0ad58ce1866347079ef87834360a40e8003ac0270d21be59b08ff5bc328f3b6a813a20df4
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan