icedid | 18e6b04e1bc76c811c9b9d9e9572e4115b01d9e2a21389799b676212332a2542 | Triage

Sharing

General

Target

JaffaCakes118_18e6b04e1bc76c811c9b9d9e9572e4115b01d9e2a21389799b676212332a2542
Size

490KB
Sample

241222-zhex6syngk
MD5

268013d7feba8449bc46a5dc645be26f
SHA1

ba535c6660547f8a57394f720e9939e6af6fb25c
SHA256

18e6b04e1bc76c811c9b9d9e9572e4115b01d9e2a21389799b676212332a2542
SHA512

98ad112234f290d7f6723c3c767ae500df43943e340feea22e95257c33a87e3ffa45d8cc0c74b89de12acf03e8e56ea52e49c8163108bda6e89ffb85b4fe7c31
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_18e6b04e1bc76c811c9b9d9e9572e4115b01d9e2a21389799b676212332a2542
- Size
  
  490KB
- MD5
  
  268013d7feba8449bc46a5dc645be26f
- SHA1
  
  ba535c6660547f8a57394f720e9939e6af6fb25c
- SHA256
  
  18e6b04e1bc76c811c9b9d9e9572e4115b01d9e2a21389799b676212332a2542
- SHA512
  
  98ad112234f290d7f6723c3c767ae500df43943e340feea22e95257c33a87e3ffa45d8cc0c74b89de12acf03e8e56ea52e49c8163108bda6e89ffb85b4fe7c31
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan