icedid | 29855b888ce2d8d50728f925ca511c4f8dc10539067b99586e4c129ea827ccf7 | Triage

Sharing

General

Target

JaffaCakes118_29855b888ce2d8d50728f925ca511c4f8dc10539067b99586e4c129ea827ccf7
Size

490KB
Sample

241222-z6s5pszlgr
MD5

ea0f8966b19f317dde25490cfc8d4a82
SHA1

0ef34f052faceb6c993cfc76a105c8d7d631e61b
SHA256

29855b888ce2d8d50728f925ca511c4f8dc10539067b99586e4c129ea827ccf7
SHA512

08b76171b654146027cc3d68f140edfb8657ab716b67d5ce5b76039c5a2ca8fba63d825c7c021768e17fcc1c57c6065073347c786bd8b9e76cf1e12d241e3897
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_29855b888ce2d8d50728f925ca511c4f8dc10539067b99586e4c129ea827ccf7
- Size
  
  490KB
- MD5
  
  ea0f8966b19f317dde25490cfc8d4a82
- SHA1
  
  0ef34f052faceb6c993cfc76a105c8d7d631e61b
- SHA256
  
  29855b888ce2d8d50728f925ca511c4f8dc10539067b99586e4c129ea827ccf7
- SHA512
  
  08b76171b654146027cc3d68f140edfb8657ab716b67d5ce5b76039c5a2ca8fba63d825c7c021768e17fcc1c57c6065073347c786bd8b9e76cf1e12d241e3897
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan