icedid | f95a7f5b9b459a2733b06964bfd5621948fd14f759dfeee34d95cd9958038b8c | Triage

Sharing

General

Target

JaffaCakes118_f95a7f5b9b459a2733b06964bfd5621948fd14f759dfeee34d95cd9958038b8c
Size

634KB
Sample

241222-z8dssszjb1
MD5

6c34943d8b9680c2a321f8192cdfe7bd
SHA1

d7dc1941b81ebf7c40bffac7a7bc092627615288
SHA256

f95a7f5b9b459a2733b06964bfd5621948fd14f759dfeee34d95cd9958038b8c
SHA512

0e4378fffe7c9df38d11a8a85203a361430e56001eea6a3e94c8a310568180ca9d9ea436279b8530349e5640409704c3d1438965ac93a026a4205075c014a9a6
SSDEEP

12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF

Score

10^/10

icedid 1732687004 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1732687004

C2

keepfootbal.com

Targets

- Target
  
  JaffaCakes118_f95a7f5b9b459a2733b06964bfd5621948fd14f759dfeee34d95cd9958038b8c
- Size
  
  634KB
- MD5
  
  6c34943d8b9680c2a321f8192cdfe7bd
- SHA1
  
  d7dc1941b81ebf7c40bffac7a7bc092627615288
- SHA256
  
  f95a7f5b9b459a2733b06964bfd5621948fd14f759dfeee34d95cd9958038b8c
- SHA512
  
  0e4378fffe7c9df38d11a8a85203a361430e56001eea6a3e94c8a310568180ca9d9ea436279b8530349e5640409704c3d1438965ac93a026a4205075c014a9a6
- SSDEEP
  
  12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF
Score

10^/10

icedid 1732687004 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1732687004bankerloadertrojan

behavioral2

icedid1732687004bankerloadertrojan