icedid | 79ec58a8a5480f3664f249ece4b47ee83e5c6d2bca9e434a2bdb0e4138e69bdf | Triage

Sharing

General

Target

JaffaCakes118_79ec58a8a5480f3664f249ece4b47ee83e5c6d2bca9e434a2bdb0e4138e69bdf
Size

490KB
Sample

241222-zrv1rayrdq
MD5

94f3bfb5a4e0c85ae315afef13d6e99d
SHA1

620ca09c58d956bfd4ee8affa7e7229117a50e6d
SHA256

79ec58a8a5480f3664f249ece4b47ee83e5c6d2bca9e434a2bdb0e4138e69bdf
SHA512

585f6159962acb20939284dd89aa39e3c71e2675d59be38be3a4f60f8633021e78eb186194bcff86d187526735cbe2d8386135809067385870b07d35bd7f4c0c
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRA:knmj6xK1y3Ik6TZGRA

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_79ec58a8a5480f3664f249ece4b47ee83e5c6d2bca9e434a2bdb0e4138e69bdf
- Size
  
  490KB
- MD5
  
  94f3bfb5a4e0c85ae315afef13d6e99d
- SHA1
  
  620ca09c58d956bfd4ee8affa7e7229117a50e6d
- SHA256
  
  79ec58a8a5480f3664f249ece4b47ee83e5c6d2bca9e434a2bdb0e4138e69bdf
- SHA512
  
  585f6159962acb20939284dd89aa39e3c71e2675d59be38be3a4f60f8633021e78eb186194bcff86d187526735cbe2d8386135809067385870b07d35bd7f4c0c
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRA:knmj6xK1y3Ik6TZGRA
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan