icedid | f5d7840d2e87afe1bf28a8219945dd292a4cd6177112c85123e6c926b7ce2f32 | Triage

Sharing

General

Target

JaffaCakes118_f5d7840d2e87afe1bf28a8219945dd292a4cd6177112c85123e6c926b7ce2f32
Size

490KB
Sample

241222-y2pq2sxpfs
MD5

0c1db52ded9d2205684a1322061704e1
SHA1

c84873c137525435ca0c5dbe5d68fb4913eefaa7
SHA256

f5d7840d2e87afe1bf28a8219945dd292a4cd6177112c85123e6c926b7ce2f32
SHA512

3714babe3c80eab7d4f6830de93774f5a590933de6de05001877f421b9987b9e0c4b0b09cbe5eee3a10298471533591d02dae13e6f03fcf3138d98c2556596dd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f5d7840d2e87afe1bf28a8219945dd292a4cd6177112c85123e6c926b7ce2f32
- Size
  
  490KB
- MD5
  
  0c1db52ded9d2205684a1322061704e1
- SHA1
  
  c84873c137525435ca0c5dbe5d68fb4913eefaa7
- SHA256
  
  f5d7840d2e87afe1bf28a8219945dd292a4cd6177112c85123e6c926b7ce2f32
- SHA512
  
  3714babe3c80eab7d4f6830de93774f5a590933de6de05001877f421b9987b9e0c4b0b09cbe5eee3a10298471533591d02dae13e6f03fcf3138d98c2556596dd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan