icedid | d08e65ad36ec1361679c9fce3b1892d455989a2463d5d6d8191f1a036cb40060 | Triage

Sharing

General

Target

JaffaCakes118_d08e65ad36ec1361679c9fce3b1892d455989a2463d5d6d8191f1a036cb40060
Size

490KB
Sample

241222-xeq5xswlfp
MD5

3f20dc6ba36bf3989e4defb36bd28a58
SHA1

60d214b022bc4c6c9e4d48041e0881be5ec8375a
SHA256

d08e65ad36ec1361679c9fce3b1892d455989a2463d5d6d8191f1a036cb40060
SHA512

6fefaeb7baf917c37ba944c6ec9e1d4fcdd4d803f2c25c252e7c33861a074db173ef18d334f35c69b3dd2b47d48b6e642f5e1d0916ed6888b827cb43f6c593bd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d08e65ad36ec1361679c9fce3b1892d455989a2463d5d6d8191f1a036cb40060
- Size
  
  490KB
- MD5
  
  3f20dc6ba36bf3989e4defb36bd28a58
- SHA1
  
  60d214b022bc4c6c9e4d48041e0881be5ec8375a
- SHA256
  
  d08e65ad36ec1361679c9fce3b1892d455989a2463d5d6d8191f1a036cb40060
- SHA512
  
  6fefaeb7baf917c37ba944c6ec9e1d4fcdd4d803f2c25c252e7c33861a074db173ef18d334f35c69b3dd2b47d48b6e642f5e1d0916ed6888b827cb43f6c593bd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan