icedid | aa6a983e1998af635383b73c60cd22b00f0ec850b481bd4a6d6f9f8a991ae167 | Triage

Sharing

General

Target

JaffaCakes118_aa6a983e1998af635383b73c60cd22b00f0ec850b481bd4a6d6f9f8a991ae167
Size

490KB
Sample

241222-n891fsxqap
MD5

9e1b0e1e65a69ac361ce20e85d360a9c
SHA1

676c63d20676aae6200b98e7e984af3292064ad2
SHA256

aa6a983e1998af635383b73c60cd22b00f0ec850b481bd4a6d6f9f8a991ae167
SHA512

6be963677179af6a49dbd6d66c7be36038f80efe78fb60809f2cb2ae0badcc1dc93104073002a4a410635e511b31fec6e2d309e9fd0f26d59c24f78d67694e53
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRF:knmj6xK1y3Ik6TZGRF

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_aa6a983e1998af635383b73c60cd22b00f0ec850b481bd4a6d6f9f8a991ae167
- Size
  
  490KB
- MD5
  
  9e1b0e1e65a69ac361ce20e85d360a9c
- SHA1
  
  676c63d20676aae6200b98e7e984af3292064ad2
- SHA256
  
  aa6a983e1998af635383b73c60cd22b00f0ec850b481bd4a6d6f9f8a991ae167
- SHA512
  
  6be963677179af6a49dbd6d66c7be36038f80efe78fb60809f2cb2ae0badcc1dc93104073002a4a410635e511b31fec6e2d309e9fd0f26d59c24f78d67694e53
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRF:knmj6xK1y3Ik6TZGRF
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan