icedid | 3f530d56821ce85f183e37a6dac0ee0fa17d0d5a38b3aca332b056fa2dc05249 | Triage

Sharing

General

Target

JaffaCakes118_3f530d56821ce85f183e37a6dac0ee0fa17d0d5a38b3aca332b056fa2dc05249
Size

490KB
Sample

241222-mf7h7atrfs
MD5

5af7ae0c824b4e60c6301a759efe319c
SHA1

a245765746777f8d88c6e0758891b78815372d64
SHA256

3f530d56821ce85f183e37a6dac0ee0fa17d0d5a38b3aca332b056fa2dc05249
SHA512

e16d027f469c993e005cd666342968aab6ad55f32e639266d37ce0cad43d6693051b204a5fe0b47b4484d2007eb8a8418eff8d98d3787657d5fcdbff103d3ec2
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRKW:knmj6xK1y3Ik6TZGRr

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_3f530d56821ce85f183e37a6dac0ee0fa17d0d5a38b3aca332b056fa2dc05249
- Size
  
  490KB
- MD5
  
  5af7ae0c824b4e60c6301a759efe319c
- SHA1
  
  a245765746777f8d88c6e0758891b78815372d64
- SHA256
  
  3f530d56821ce85f183e37a6dac0ee0fa17d0d5a38b3aca332b056fa2dc05249
- SHA512
  
  e16d027f469c993e005cd666342968aab6ad55f32e639266d37ce0cad43d6693051b204a5fe0b47b4484d2007eb8a8418eff8d98d3787657d5fcdbff103d3ec2
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRKW:knmj6xK1y3Ik6TZGRr
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan