icedid | a5f7c0baf2e7d9d3929ecf9ed62c9362d36d651feebac7e913745dc223c73a5e | Triage

Sharing

General

Target

JaffaCakes118_a5f7c0baf2e7d9d3929ecf9ed62c9362d36d651feebac7e913745dc223c73a5e
Size

490KB
Sample

241222-xzlqyawrcj
MD5

ac3fb9f7db4dd76df6042d38cbbb6b04
SHA1

3613a15c53d9b887e9763c862adc1f36ba2ede70
SHA256

a5f7c0baf2e7d9d3929ecf9ed62c9362d36d651feebac7e913745dc223c73a5e
SHA512

3fd3f39a8cda03999396b12cddef3f7a97024f9a59de33470dd97b6989912d93e84b079a1097d3495fdac23d6b50e2441e967cb18c3eac904762d738c4e97088
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a5f7c0baf2e7d9d3929ecf9ed62c9362d36d651feebac7e913745dc223c73a5e
- Size
  
  490KB
- MD5
  
  ac3fb9f7db4dd76df6042d38cbbb6b04
- SHA1
  
  3613a15c53d9b887e9763c862adc1f36ba2ede70
- SHA256
  
  a5f7c0baf2e7d9d3929ecf9ed62c9362d36d651feebac7e913745dc223c73a5e
- SHA512
  
  3fd3f39a8cda03999396b12cddef3f7a97024f9a59de33470dd97b6989912d93e84b079a1097d3495fdac23d6b50e2441e967cb18c3eac904762d738c4e97088
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan