icedid | 5ed05407bfdef7c767d19921cf8fb99d2b806427db7cb6cef3f860382858231a | Triage

Sharing

General

Target

JaffaCakes118_5ed05407bfdef7c767d19921cf8fb99d2b806427db7cb6cef3f860382858231a
Size

490KB
Sample

241222-yn248axpfp
MD5

b400a466735b1e2889077e83ce982bf0
SHA1

83db02540902a2d1d6d33a3b8bf46216836d5479
SHA256

5ed05407bfdef7c767d19921cf8fb99d2b806427db7cb6cef3f860382858231a
SHA512

ffbc36a0fc1c449cbdc2ec6d93774271a2b73ea185383ff754ef89d8660fb9917a4d4fc8bd6744ecd160122a1c8c49af54a56ef0d19abea00c754489540850ce
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRZ:knmj6xK1y3Ik6TZGRZ

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5ed05407bfdef7c767d19921cf8fb99d2b806427db7cb6cef3f860382858231a
- Size
  
  490KB
- MD5
  
  b400a466735b1e2889077e83ce982bf0
- SHA1
  
  83db02540902a2d1d6d33a3b8bf46216836d5479
- SHA256
  
  5ed05407bfdef7c767d19921cf8fb99d2b806427db7cb6cef3f860382858231a
- SHA512
  
  ffbc36a0fc1c449cbdc2ec6d93774271a2b73ea185383ff754ef89d8660fb9917a4d4fc8bd6744ecd160122a1c8c49af54a56ef0d19abea00c754489540850ce
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRZ:knmj6xK1y3Ik6TZGRZ
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan