icedid | 5b01e6c838a41cfcd8fa861ca344d16b0cb453d757585fc9be32fccb244f1803 | Triage

Sharing

General

Target

JaffaCakes118_5b01e6c838a41cfcd8fa861ca344d16b0cb453d757585fc9be32fccb244f1803
Size

490KB
Sample

241223-2h63rstnhm
MD5

f660f16213c61c5f7a8e3c975252d6b0
SHA1

41eb01a8e239fb59152e0fc8d78b3e652fbd8cf1
SHA256

5b01e6c838a41cfcd8fa861ca344d16b0cb453d757585fc9be32fccb244f1803
SHA512

e9b942b81acacc2d18e8cea70d9c3374fdbb35852c4e407374711b2aecb846b9efccb65908ca146aa3d1cb2f2375493f0894f2063883da0003bc1ee5b5b33645
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRP:knmj6xK1y3Ik6TZGRP

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5b01e6c838a41cfcd8fa861ca344d16b0cb453d757585fc9be32fccb244f1803
- Size
  
  490KB
- MD5
  
  f660f16213c61c5f7a8e3c975252d6b0
- SHA1
  
  41eb01a8e239fb59152e0fc8d78b3e652fbd8cf1
- SHA256
  
  5b01e6c838a41cfcd8fa861ca344d16b0cb453d757585fc9be32fccb244f1803
- SHA512
  
  e9b942b81acacc2d18e8cea70d9c3374fdbb35852c4e407374711b2aecb846b9efccb65908ca146aa3d1cb2f2375493f0894f2063883da0003bc1ee5b5b33645
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRP:knmj6xK1y3Ik6TZGRP
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan