icedid | 2628401133b83a1cbb7fa6626261daad14bc77a254a0f15a477b388508487953 | Triage

Sharing

General

Target

JaffaCakes118_2628401133b83a1cbb7fa6626261daad14bc77a254a0f15a477b388508487953
Size

490KB
Sample

241223-rwhl8askgw
MD5

7f0f519b0e6969ecd58721d17bff6aab
SHA1

7e903de793985b6193d2bfecb0f8a7159d618cb9
SHA256

2628401133b83a1cbb7fa6626261daad14bc77a254a0f15a477b388508487953
SHA512

2868b968f2b4ffb3db00533310dbe9b2971a873865f652fcaeaacd29374986666842795757ff94c8139c75b7c784947ed9bec3c20ddc7acd4b3b8aa89bf7d227
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_2628401133b83a1cbb7fa6626261daad14bc77a254a0f15a477b388508487953
- Size
  
  490KB
- MD5
  
  7f0f519b0e6969ecd58721d17bff6aab
- SHA1
  
  7e903de793985b6193d2bfecb0f8a7159d618cb9
- SHA256
  
  2628401133b83a1cbb7fa6626261daad14bc77a254a0f15a477b388508487953
- SHA512
  
  2868b968f2b4ffb3db00533310dbe9b2971a873865f652fcaeaacd29374986666842795757ff94c8139c75b7c784947ed9bec3c20ddc7acd4b3b8aa89bf7d227
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan