icedid | bfec7f1bf2fcced20c3e949ba3b72683591c9c05473287ea3e2e76254b49b617 | Triage

Sharing

General

Target

JaffaCakes118_bfec7f1bf2fcced20c3e949ba3b72683591c9c05473287ea3e2e76254b49b617
Size

490KB
Sample

241223-1qrsdaspbl
MD5

31c97b482faf8049c3461de9e9dba581
SHA1

a4657e3d8ea3ab6a4a6f4c2758ae493d943c0709
SHA256

bfec7f1bf2fcced20c3e949ba3b72683591c9c05473287ea3e2e76254b49b617
SHA512

9f2e8627ed085da35f61f45d7c16c9b5e425edd1792173a9622e5a27391e961560e127f691d0174f2201e14824145d8c6b1cca7f93b873dcce2866e5e64a3b4f
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR6:knmj6xK1y3Ik6TZGR6

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_bfec7f1bf2fcced20c3e949ba3b72683591c9c05473287ea3e2e76254b49b617
- Size
  
  490KB
- MD5
  
  31c97b482faf8049c3461de9e9dba581
- SHA1
  
  a4657e3d8ea3ab6a4a6f4c2758ae493d943c0709
- SHA256
  
  bfec7f1bf2fcced20c3e949ba3b72683591c9c05473287ea3e2e76254b49b617
- SHA512
  
  9f2e8627ed085da35f61f45d7c16c9b5e425edd1792173a9622e5a27391e961560e127f691d0174f2201e14824145d8c6b1cca7f93b873dcce2866e5e64a3b4f
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR6:knmj6xK1y3Ik6TZGR6
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan