icedid | c0c44a9d68614564386fa30c60f7d068abd82a3c8fb7172fa6d1b295a1356371 | Triage

Sharing

General

Target

JaffaCakes118_c0c44a9d68614564386fa30c60f7d068abd82a3c8fb7172fa6d1b295a1356371
Size

534KB
Sample

241223-rd7tds1qgk
MD5

11c05642b2bdf2fc8525ca3cc65735cd
SHA1

0f7a6ec8f93dc32eca19a217c87347f858fdcaad
SHA256

c0c44a9d68614564386fa30c60f7d068abd82a3c8fb7172fa6d1b295a1356371
SHA512

59bbb45ccf5a2122b17243736d44c449cd48c8087ad14ec795218c3d87d8c197318ddacdcaae8e5ebf059cb026a43783d8997b59bae0c18302bc07ba82165390
SSDEEP

12288:sS5YBh+z8zl6j+lMo0/BmkEg0w9wqL8iqKSI/YVG:sS2BhoAl6yOF83g0OLuPIgV

Score

10^/10

icedid 227378761 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

227378761

C2

blionarywesta.com

Targets

- Target
  
  JaffaCakes118_c0c44a9d68614564386fa30c60f7d068abd82a3c8fb7172fa6d1b295a1356371
- Size
  
  534KB
- MD5
  
  11c05642b2bdf2fc8525ca3cc65735cd
- SHA1
  
  0f7a6ec8f93dc32eca19a217c87347f858fdcaad
- SHA256
  
  c0c44a9d68614564386fa30c60f7d068abd82a3c8fb7172fa6d1b295a1356371
- SHA512
  
  59bbb45ccf5a2122b17243736d44c449cd48c8087ad14ec795218c3d87d8c197318ddacdcaae8e5ebf059cb026a43783d8997b59bae0c18302bc07ba82165390
- SSDEEP
  
  12288:sS5YBh+z8zl6j+lMo0/BmkEg0w9wqL8iqKSI/YVG:sS2BhoAl6yOF83g0OLuPIgV
Score

10^/10

icedid 227378761 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid227378761bankerloadertrojan

behavioral2

icedid227378761bankerloadertrojan