icedid | a44ce6c3d76db4d712287f5835d944dd3f8ea66cfba33b19a8f1683bcd41a2a2 | Triage

Sharing

General

Target

JaffaCakes118_a44ce6c3d76db4d712287f5835d944dd3f8ea66cfba33b19a8f1683bcd41a2a2
Size

490KB
Sample

241222-m5j47awlcn
MD5

4eef1c1d33b7dfdefd360eb7d6574405
SHA1

d96e316bdd36d6e319d37b7b623e6a7c42198f29
SHA256

a44ce6c3d76db4d712287f5835d944dd3f8ea66cfba33b19a8f1683bcd41a2a2
SHA512

402ef18b57f2a0eafbdfd22415e546f483450ade572575571d2b809f8e6a8cf016cf25002cfbb7a099ff817ea41ff1d371137bcd05a43c22618a9a4125fb7d23
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a44ce6c3d76db4d712287f5835d944dd3f8ea66cfba33b19a8f1683bcd41a2a2
- Size
  
  490KB
- MD5
  
  4eef1c1d33b7dfdefd360eb7d6574405
- SHA1
  
  d96e316bdd36d6e319d37b7b623e6a7c42198f29
- SHA256
  
  a44ce6c3d76db4d712287f5835d944dd3f8ea66cfba33b19a8f1683bcd41a2a2
- SHA512
  
  402ef18b57f2a0eafbdfd22415e546f483450ade572575571d2b809f8e6a8cf016cf25002cfbb7a099ff817ea41ff1d371137bcd05a43c22618a9a4125fb7d23
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRm:knmj6xK1y3Ik6TZGRm
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan