icedid | 16cac6d61bca419882afd95dd4c5d37d264ab4c4a0cb4615ecaedf774d9bbf93 | Triage

Sharing

General

Target

JaffaCakes118_16cac6d61bca419882afd95dd4c5d37d264ab4c4a0cb4615ecaedf774d9bbf93
Size

490KB
Sample

241223-q5bdts1ngp
MD5

7cf2ccfaf88f8f16656b82553e07a717
SHA1

fde4692f0d700a7ae0a66bed91d94aafbb3ed7e0
SHA256

16cac6d61bca419882afd95dd4c5d37d264ab4c4a0cb4615ecaedf774d9bbf93
SHA512

5e4a1f5aa55fdfeb9f9b8772f547831b8f3d0d3cd569e9cf2b7c0defb1d9d2cc1e23d375b6910d51e4c9b065e5a8beb7317ce751ff2ec698719d196573bb75f7
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRvq:knmj6xK1y3Ik6TZGRvq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_16cac6d61bca419882afd95dd4c5d37d264ab4c4a0cb4615ecaedf774d9bbf93
- Size
  
  490KB
- MD5
  
  7cf2ccfaf88f8f16656b82553e07a717
- SHA1
  
  fde4692f0d700a7ae0a66bed91d94aafbb3ed7e0
- SHA256
  
  16cac6d61bca419882afd95dd4c5d37d264ab4c4a0cb4615ecaedf774d9bbf93
- SHA512
  
  5e4a1f5aa55fdfeb9f9b8772f547831b8f3d0d3cd569e9cf2b7c0defb1d9d2cc1e23d375b6910d51e4c9b065e5a8beb7317ce751ff2ec698719d196573bb75f7
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRvq:knmj6xK1y3Ik6TZGRvq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan