icedid | e1d9d8eb11aea35cf970800bc855ab7a5d7b4e6bbe84af195f353d01cb5a7cfa | Triage

Sharing

General

Target

JaffaCakes118_e1d9d8eb11aea35cf970800bc855ab7a5d7b4e6bbe84af195f353d01cb5a7cfa
Size

490KB
Sample

241222-meqt2svlcl
MD5

108ba0545d35dc53c664e4d66ec8ab67
SHA1

e05dc266504c1c6842afd8d1e3e12b2117290584
SHA256

e1d9d8eb11aea35cf970800bc855ab7a5d7b4e6bbe84af195f353d01cb5a7cfa
SHA512

44543f15352c79ebaabe817f2bf1fe2ae9ac1f67edcb141e455f5178640d249bc88032caea9f46f42940c7273a308f067ba7056f8c070155c225b06810124d2c
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4c:knmj6xK1y3Ik6TZGR4c

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e1d9d8eb11aea35cf970800bc855ab7a5d7b4e6bbe84af195f353d01cb5a7cfa
- Size
  
  490KB
- MD5
  
  108ba0545d35dc53c664e4d66ec8ab67
- SHA1
  
  e05dc266504c1c6842afd8d1e3e12b2117290584
- SHA256
  
  e1d9d8eb11aea35cf970800bc855ab7a5d7b4e6bbe84af195f353d01cb5a7cfa
- SHA512
  
  44543f15352c79ebaabe817f2bf1fe2ae9ac1f67edcb141e455f5178640d249bc88032caea9f46f42940c7273a308f067ba7056f8c070155c225b06810124d2c
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4c:knmj6xK1y3Ik6TZGR4c
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan