icedid | 53a9231c0cbb9a393ef010016d8754e7da27ca35f5f66bed83b559ace1f3cb85 | Triage

Sharing

General

Target

JaffaCakes118_53a9231c0cbb9a393ef010016d8754e7da27ca35f5f66bed83b559ace1f3cb85
Size

490KB
Sample

241222-n7gmhsxpdk
MD5

b8a796d5c8bcdd2fda028ed0fe04ddd2
SHA1

958881703845ebf864393cfb18ee4cf4f4d2e3bd
SHA256

53a9231c0cbb9a393ef010016d8754e7da27ca35f5f66bed83b559ace1f3cb85
SHA512

e11e5b3a999be5f87b179c29d749e75bdc7b7f9a1f71c960642c1378a589072ead5e529a81567a1ccb7bc473ab9694d61c0e96ae71c16f05e8a7a6f4160c97cf
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_53a9231c0cbb9a393ef010016d8754e7da27ca35f5f66bed83b559ace1f3cb85
- Size
  
  490KB
- MD5
  
  b8a796d5c8bcdd2fda028ed0fe04ddd2
- SHA1
  
  958881703845ebf864393cfb18ee4cf4f4d2e3bd
- SHA256
  
  53a9231c0cbb9a393ef010016d8754e7da27ca35f5f66bed83b559ace1f3cb85
- SHA512
  
  e11e5b3a999be5f87b179c29d749e75bdc7b7f9a1f71c960642c1378a589072ead5e529a81567a1ccb7bc473ab9694d61c0e96ae71c16f05e8a7a6f4160c97cf
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan