icedid | 5a1a586e6a23400a6978f730d830cef671e1bd4b41d8aa8315f3a9b0788021ff | Triage

Sharing

General

Target

JaffaCakes118_5a1a586e6a23400a6978f730d830cef671e1bd4b41d8aa8315f3a9b0788021ff
Size

490KB
Sample

241222-z662kazlhn
MD5

0c32be9f066c953e1977e652f9c84c28
SHA1

09a7088690e2e5cfedf5c8baae6ab14f7b858c3c
SHA256

5a1a586e6a23400a6978f730d830cef671e1bd4b41d8aa8315f3a9b0788021ff
SHA512

bc1a19c6c779c9cf45c79b3ae969aa1b90962f290114ccb44c0fc9a03873372b0ce09a74a65fda1659ae65081ae875a337b96304b73df97a5abd4616cd1693be
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRE:knmj6xK1y3Ik6TZGRE

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5a1a586e6a23400a6978f730d830cef671e1bd4b41d8aa8315f3a9b0788021ff
- Size
  
  490KB
- MD5
  
  0c32be9f066c953e1977e652f9c84c28
- SHA1
  
  09a7088690e2e5cfedf5c8baae6ab14f7b858c3c
- SHA256
  
  5a1a586e6a23400a6978f730d830cef671e1bd4b41d8aa8315f3a9b0788021ff
- SHA512
  
  bc1a19c6c779c9cf45c79b3ae969aa1b90962f290114ccb44c0fc9a03873372b0ce09a74a65fda1659ae65081ae875a337b96304b73df97a5abd4616cd1693be
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRE:knmj6xK1y3Ik6TZGRE
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan