icedid | fea72faed4efd5ff88691a6ef4bfd3c93db163a1cb2e6e3a211d5340f8d88c3a | Triage

Sharing

General

Target

JaffaCakes118_fea72faed4efd5ff88691a6ef4bfd3c93db163a1cb2e6e3a211d5340f8d88c3a
Size

490KB
Sample

241223-3z9qnawkgn
MD5

d84aa9afb57db9082b345f9f93c7c774
SHA1

cd38cd119821f77030c9787a7d9817bb374849ae
SHA256

fea72faed4efd5ff88691a6ef4bfd3c93db163a1cb2e6e3a211d5340f8d88c3a
SHA512

59bc2fea3ee8d9f9be4ef5c7331645bdaa38347be6c55c9c0e134798da617c8baa0073934e086c5b5629bae76e858828d89f10b282e8428286ad5d7480864468
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fea72faed4efd5ff88691a6ef4bfd3c93db163a1cb2e6e3a211d5340f8d88c3a
- Size
  
  490KB
- MD5
  
  d84aa9afb57db9082b345f9f93c7c774
- SHA1
  
  cd38cd119821f77030c9787a7d9817bb374849ae
- SHA256
  
  fea72faed4efd5ff88691a6ef4bfd3c93db163a1cb2e6e3a211d5340f8d88c3a
- SHA512
  
  59bc2fea3ee8d9f9be4ef5c7331645bdaa38347be6c55c9c0e134798da617c8baa0073934e086c5b5629bae76e858828d89f10b282e8428286ad5d7480864468
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan