icedid | a0d08abacfc1ae31cecc984dc3e272c7c5cdb69ecf2e8d9ac9973cf988865781 | Triage

Sharing

General

Target

JaffaCakes118_a0d08abacfc1ae31cecc984dc3e272c7c5cdb69ecf2e8d9ac9973cf988865781
Size

490KB
Sample

241223-q433fs1ngj
MD5

7a577e8f72dd0bbc22354ac386755acb
SHA1

16f855a668bf3513945b809f9b18a5ea8d923d4b
SHA256

a0d08abacfc1ae31cecc984dc3e272c7c5cdb69ecf2e8d9ac9973cf988865781
SHA512

44d78d1900f340c1195faf27163bc8a04064b9c3540a428c5c5fa3dcb985cc9b7c082e3669ec0fdd60cf5fcee4ae2c493d6dc1d154290066d78fb8794e18a45f
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_a0d08abacfc1ae31cecc984dc3e272c7c5cdb69ecf2e8d9ac9973cf988865781
- Size
  
  490KB
- MD5
  
  7a577e8f72dd0bbc22354ac386755acb
- SHA1
  
  16f855a668bf3513945b809f9b18a5ea8d923d4b
- SHA256
  
  a0d08abacfc1ae31cecc984dc3e272c7c5cdb69ecf2e8d9ac9973cf988865781
- SHA512
  
  44d78d1900f340c1195faf27163bc8a04064b9c3540a428c5c5fa3dcb985cc9b7c082e3669ec0fdd60cf5fcee4ae2c493d6dc1d154290066d78fb8794e18a45f
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRl:knmj6xK1y3Ik6TZGRl
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan