icedid | 74aa591c95feeb1491e187351150bd36aed889e48e4ea86be1d88a2d2782c913 | Triage

Sharing

General

Target

JaffaCakes118_74aa591c95feeb1491e187351150bd36aed889e48e4ea86be1d88a2d2782c913
Size

490KB
Sample

241222-n8z59axphq
MD5

947a0e9e56d2328dacc5a1da90a7ecf7
SHA1

4bb0603c11595bcb6c19d9f84b14da8b476ee0d1
SHA256

74aa591c95feeb1491e187351150bd36aed889e48e4ea86be1d88a2d2782c913
SHA512

63643cce3cbaafa99ebc8163158d0ceecd1b0f0658fe6166b11f0ff57e9ceee89080b7ef72bba3195a4746201358696bd7f51fe6c5eaef3a77c97c318b52f6d0
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR7:knmj6xK1y3Ik6TZGR7

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_74aa591c95feeb1491e187351150bd36aed889e48e4ea86be1d88a2d2782c913
- Size
  
  490KB
- MD5
  
  947a0e9e56d2328dacc5a1da90a7ecf7
- SHA1
  
  4bb0603c11595bcb6c19d9f84b14da8b476ee0d1
- SHA256
  
  74aa591c95feeb1491e187351150bd36aed889e48e4ea86be1d88a2d2782c913
- SHA512
  
  63643cce3cbaafa99ebc8163158d0ceecd1b0f0658fe6166b11f0ff57e9ceee89080b7ef72bba3195a4746201358696bd7f51fe6c5eaef3a77c97c318b52f6d0
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR7:knmj6xK1y3Ik6TZGR7
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan