icedid | e161835b73ef0966ed103f123d93dbf761696c98ba38e1ea2f752cbefa775a3e | Triage

Sharing

General

Target

JaffaCakes118_e161835b73ef0966ed103f123d93dbf761696c98ba38e1ea2f752cbefa775a3e
Size

490KB
Sample

241222-xbbaaswkgj
MD5

47ad78caeb69b0cf324cf0c675628bd5
SHA1

d249b46105eda06575c7e0c25200366abceeb133
SHA256

e161835b73ef0966ed103f123d93dbf761696c98ba38e1ea2f752cbefa775a3e
SHA512

b7f90b7068b6701bf28351863d40b816ae384cad8379b266a74e974ad805f0284305173d10913276222f84de64e0a43a5c832f0c98b836a523cbcc06be308e58
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e161835b73ef0966ed103f123d93dbf761696c98ba38e1ea2f752cbefa775a3e
- Size
  
  490KB
- MD5
  
  47ad78caeb69b0cf324cf0c675628bd5
- SHA1
  
  d249b46105eda06575c7e0c25200366abceeb133
- SHA256
  
  e161835b73ef0966ed103f123d93dbf761696c98ba38e1ea2f752cbefa775a3e
- SHA512
  
  b7f90b7068b6701bf28351863d40b816ae384cad8379b266a74e974ad805f0284305173d10913276222f84de64e0a43a5c832f0c98b836a523cbcc06be308e58
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan