icedid | b967a9d510e724912f3b7c1ee06dc79b641dc28d37a4da7d68a1a4ec3f5431cf | Triage

Sharing

General

Target

JaffaCakes118_b967a9d510e724912f3b7c1ee06dc79b641dc28d37a4da7d68a1a4ec3f5431cf
Size

490KB
Sample

241222-zrct6synaw
MD5

215ee9d97e32019ebf5cf5a6acd1ce41
SHA1

6316bcdf121a346b4ba09addb8a25cbc61bbac45
SHA256

b967a9d510e724912f3b7c1ee06dc79b641dc28d37a4da7d68a1a4ec3f5431cf
SHA512

2af503d3c97e49309aa0ee48613fb770943f60ae3cdb721467c4ce35aeaf554855e2055e89f9dcfd26f37a9876012feaa9ded750809478e17d044ae5fdcbe1f6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_b967a9d510e724912f3b7c1ee06dc79b641dc28d37a4da7d68a1a4ec3f5431cf
- Size
  
  490KB
- MD5
  
  215ee9d97e32019ebf5cf5a6acd1ce41
- SHA1
  
  6316bcdf121a346b4ba09addb8a25cbc61bbac45
- SHA256
  
  b967a9d510e724912f3b7c1ee06dc79b641dc28d37a4da7d68a1a4ec3f5431cf
- SHA512
  
  2af503d3c97e49309aa0ee48613fb770943f60ae3cdb721467c4ce35aeaf554855e2055e89f9dcfd26f37a9876012feaa9ded750809478e17d044ae5fdcbe1f6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan