icedid | f788bb44c920f59ad8206b9f20051c0ed4698ead824b14a090bf1a2161e8423d | Triage

Sharing

General

Target

JaffaCakes118_f788bb44c920f59ad8206b9f20051c0ed4698ead824b14a090bf1a2161e8423d
Size

490KB
Sample

241222-qp6j2azlfw
MD5

e9e4dc7b452b05f02cc3198cf64ce4e7
SHA1

d0c54fcb270ab38fe0fcd4ba7c862c3272be4306
SHA256

f788bb44c920f59ad8206b9f20051c0ed4698ead824b14a090bf1a2161e8423d
SHA512

38aacd735b3d49f2da60880acaabd68826b8d604664e7e1e336915a0a99633a46e439a20cc52593f95e6ed8e8dc625c799c9e59b0188eb6659e108be75ce233a
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRa:knmj6xK1y3Ik6TZGRa

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f788bb44c920f59ad8206b9f20051c0ed4698ead824b14a090bf1a2161e8423d
- Size
  
  490KB
- MD5
  
  e9e4dc7b452b05f02cc3198cf64ce4e7
- SHA1
  
  d0c54fcb270ab38fe0fcd4ba7c862c3272be4306
- SHA256
  
  f788bb44c920f59ad8206b9f20051c0ed4698ead824b14a090bf1a2161e8423d
- SHA512
  
  38aacd735b3d49f2da60880acaabd68826b8d604664e7e1e336915a0a99633a46e439a20cc52593f95e6ed8e8dc625c799c9e59b0188eb6659e108be75ce233a
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRa:knmj6xK1y3Ik6TZGRa
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan