icedid | 72a402161c93b561694f621a6dc404a8486bcbf678f07bf9e33505a94f75e143 | Triage

Sharing

General

Target

JaffaCakes118_72a402161c93b561694f621a6dc404a8486bcbf678f07bf9e33505a94f75e143
Size

490KB
Sample

241222-xlz2eawncj
MD5

82dc562b29131b39a8bfa1f84ac86744
SHA1

236878905922af77bc2351777a832744554f3f70
SHA256

72a402161c93b561694f621a6dc404a8486bcbf678f07bf9e33505a94f75e143
SHA512

0340d8bdd2586ab9607cdc2e9f2524f06a089ee64b17d01447bbd9b6ac3cdf6c4793a8eeb54e68bed5a802df2008b710ae5f5815440bbc87bcd2e47781a19237
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_72a402161c93b561694f621a6dc404a8486bcbf678f07bf9e33505a94f75e143
- Size
  
  490KB
- MD5
  
  82dc562b29131b39a8bfa1f84ac86744
- SHA1
  
  236878905922af77bc2351777a832744554f3f70
- SHA256
  
  72a402161c93b561694f621a6dc404a8486bcbf678f07bf9e33505a94f75e143
- SHA512
  
  0340d8bdd2586ab9607cdc2e9f2524f06a089ee64b17d01447bbd9b6ac3cdf6c4793a8eeb54e68bed5a802df2008b710ae5f5815440bbc87bcd2e47781a19237
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan