icedid | ea128a67968fa25ce3681d99954fe8b776280b95ae3332dfe5e5235d9dc641a1 | Triage

Sharing

General

Target

JaffaCakes118_ea128a67968fa25ce3681d99954fe8b776280b95ae3332dfe5e5235d9dc641a1
Size

490KB
Sample

241223-19m9astlhj
MD5

96269fc801e5a60087b5b94737dd2e4b
SHA1

c037ee2a9dffe323258237f0216a16aa77172d92
SHA256

ea128a67968fa25ce3681d99954fe8b776280b95ae3332dfe5e5235d9dc641a1
SHA512

abd7976ec34e1b9e820ac3d5693b3d6eada40d269b8a07786c4babb43e36d88420b1313b78a3798112442040d9bd750df2f85e6029cc54738bcaed0fd8128ed4
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR3:knmj6xK1y3Ik6TZGR3

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ea128a67968fa25ce3681d99954fe8b776280b95ae3332dfe5e5235d9dc641a1
- Size
  
  490KB
- MD5
  
  96269fc801e5a60087b5b94737dd2e4b
- SHA1
  
  c037ee2a9dffe323258237f0216a16aa77172d92
- SHA256
  
  ea128a67968fa25ce3681d99954fe8b776280b95ae3332dfe5e5235d9dc641a1
- SHA512
  
  abd7976ec34e1b9e820ac3d5693b3d6eada40d269b8a07786c4babb43e36d88420b1313b78a3798112442040d9bd750df2f85e6029cc54738bcaed0fd8128ed4
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR3:knmj6xK1y3Ik6TZGR3
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan