icedid | 06a256784145ab0a71ff0c35a83deaac87699ba166d05ca73d4d347ae932fa44 | Triage

Sharing

General

Target

JaffaCakes118_06a256784145ab0a71ff0c35a83deaac87699ba166d05ca73d4d347ae932fa44
Size

490KB
Sample

241222-ysymlaxmat
MD5

4328e1fcd9e57f575e90fc18fe16ec28
SHA1

a07391634e665be4bfbbc8ac38146130b913108e
SHA256

06a256784145ab0a71ff0c35a83deaac87699ba166d05ca73d4d347ae932fa44
SHA512

e4cc952d1d437764653c0b0d31d946479500156c8990296f775a8f65a289f9aa0a1f7b58ddb00bca6ebf3bad4a46c4895cd49eddaab0ca699cec995d801d4b6d
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRry:knmj6xK1y3Ik6TZGR2

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_06a256784145ab0a71ff0c35a83deaac87699ba166d05ca73d4d347ae932fa44
- Size
  
  490KB
- MD5
  
  4328e1fcd9e57f575e90fc18fe16ec28
- SHA1
  
  a07391634e665be4bfbbc8ac38146130b913108e
- SHA256
  
  06a256784145ab0a71ff0c35a83deaac87699ba166d05ca73d4d347ae932fa44
- SHA512
  
  e4cc952d1d437764653c0b0d31d946479500156c8990296f775a8f65a289f9aa0a1f7b58ddb00bca6ebf3bad4a46c4895cd49eddaab0ca699cec995d801d4b6d
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRry:knmj6xK1y3Ik6TZGR2
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan