icedid | 16ccb7813cb773e54a088805f484fee369e987163c1faf4d0938492f98a9b042 | Triage

Sharing

General

Target

JaffaCakes118_16ccb7813cb773e54a088805f484fee369e987163c1faf4d0938492f98a9b042
Size

490KB
Sample

241223-qzr5ds1mhl
MD5

a70fe431428096ae3d7a5d337a04db14
SHA1

54e3686a2129f6db38964a63d58d53ff9cfff452
SHA256

16ccb7813cb773e54a088805f484fee369e987163c1faf4d0938492f98a9b042
SHA512

b835be36bc203a75a1d5a835a8d4d29ef943ceec7b8a49f60ad4738ebafec13dcd9f05582396cfcdbd84a0ff3085fe13b51cf4e30cef0b0b15268590609a9bc9
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR21:knmj6xK1y3Ik6TZGR21

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_16ccb7813cb773e54a088805f484fee369e987163c1faf4d0938492f98a9b042
- Size
  
  490KB
- MD5
  
  a70fe431428096ae3d7a5d337a04db14
- SHA1
  
  54e3686a2129f6db38964a63d58d53ff9cfff452
- SHA256
  
  16ccb7813cb773e54a088805f484fee369e987163c1faf4d0938492f98a9b042
- SHA512
  
  b835be36bc203a75a1d5a835a8d4d29ef943ceec7b8a49f60ad4738ebafec13dcd9f05582396cfcdbd84a0ff3085fe13b51cf4e30cef0b0b15268590609a9bc9
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR21:knmj6xK1y3Ik6TZGR21
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan