icedid | 6920a42c7e57d681fcb6fcf851109bc8b860be25a7fa3343fe201206033c6afd | Triage

Sharing

General

Target

JaffaCakes118_6920a42c7e57d681fcb6fcf851109bc8b860be25a7fa3343fe201206033c6afd
Size

490KB
Sample

241222-n16ytsxmdp
MD5

057055c7dbd9079f148d0c887c5bf9db
SHA1

c7640c8bf82bc969476fbcb4dd4df5678ae7bbe1
SHA256

6920a42c7e57d681fcb6fcf851109bc8b860be25a7fa3343fe201206033c6afd
SHA512

856e7317418986b4fd51d5cc36286b230792757b10f9359a16f1bcde45628a5a814f554ee5c017007291a65c61f9f1d2d1f073acb39b1dbd6742d5256769d484
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_6920a42c7e57d681fcb6fcf851109bc8b860be25a7fa3343fe201206033c6afd
- Size
  
  490KB
- MD5
  
  057055c7dbd9079f148d0c887c5bf9db
- SHA1
  
  c7640c8bf82bc969476fbcb4dd4df5678ae7bbe1
- SHA256
  
  6920a42c7e57d681fcb6fcf851109bc8b860be25a7fa3343fe201206033c6afd
- SHA512
  
  856e7317418986b4fd51d5cc36286b230792757b10f9359a16f1bcde45628a5a814f554ee5c017007291a65c61f9f1d2d1f073acb39b1dbd6742d5256769d484
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan