icedid | 5df5123519a9e78143b99797364ab00b70e4e4498b57e782bf7e629df5f3a9cb | Triage

Sharing

General

Target

JaffaCakes118_5df5123519a9e78143b99797364ab00b70e4e4498b57e782bf7e629df5f3a9cb
Size

490KB
Sample

241223-qnkk6s1jax
MD5

24950ce6e1f46aaa17bd53a17f529199
SHA1

38374eb8fc84b181d7d66a3a6935bbe84ea9be24
SHA256

5df5123519a9e78143b99797364ab00b70e4e4498b57e782bf7e629df5f3a9cb
SHA512

50341efbff49b2936c44372f98276110e3c614fba50b5f14422ea464fae92d7b648ab0e50d06561835add9b11778f858ffa3615bd26067e07b1be23e53e8f064
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5df5123519a9e78143b99797364ab00b70e4e4498b57e782bf7e629df5f3a9cb
- Size
  
  490KB
- MD5
  
  24950ce6e1f46aaa17bd53a17f529199
- SHA1
  
  38374eb8fc84b181d7d66a3a6935bbe84ea9be24
- SHA256
  
  5df5123519a9e78143b99797364ab00b70e4e4498b57e782bf7e629df5f3a9cb
- SHA512
  
  50341efbff49b2936c44372f98276110e3c614fba50b5f14422ea464fae92d7b648ab0e50d06561835add9b11778f858ffa3615bd26067e07b1be23e53e8f064
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan