icedid | 27452ddbb3fc58d0f028682111c14a2838fed8f04e6e4d3b814e3bfdae74e224 | Triage

Sharing

General

Target

JaffaCakes118_27452ddbb3fc58d0f028682111c14a2838fed8f04e6e4d3b814e3bfdae74e224
Size

490KB
Sample

241222-x39l6swnev
MD5

d4e9abf1cc8d06002ec9d95f76a3af82
SHA1

b8a68f45d4b4051e86046286f69da490344f3aae
SHA256

27452ddbb3fc58d0f028682111c14a2838fed8f04e6e4d3b814e3bfdae74e224
SHA512

65ad158d11795ce546305bb76e76e5cb03efbeeba572befc5aa3e5abbd89139c05abd506fa0f3a51d4f4c3ae1a0fc5cc90f27cdfd2cda285933aa057d951b458
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRD:knmj6xK1y3Ik6TZGRD

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_27452ddbb3fc58d0f028682111c14a2838fed8f04e6e4d3b814e3bfdae74e224
- Size
  
  490KB
- MD5
  
  d4e9abf1cc8d06002ec9d95f76a3af82
- SHA1
  
  b8a68f45d4b4051e86046286f69da490344f3aae
- SHA256
  
  27452ddbb3fc58d0f028682111c14a2838fed8f04e6e4d3b814e3bfdae74e224
- SHA512
  
  65ad158d11795ce546305bb76e76e5cb03efbeeba572befc5aa3e5abbd89139c05abd506fa0f3a51d4f4c3ae1a0fc5cc90f27cdfd2cda285933aa057d951b458
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRD:knmj6xK1y3Ik6TZGRD
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan