icedid | ac855a9a64c56b9a269c3e0618b2b330243962e418d125f5af1255f087b73a17 | Triage

Sharing

General

Target

JaffaCakes118_ac855a9a64c56b9a269c3e0618b2b330243962e418d125f5af1255f087b73a17
Size

490KB
Sample

241223-shrhmssqfx
MD5

b12c80cca916b4385fc7373756cc714a
SHA1

17a1d1ba10c23ca9a67312789be3e43961bb6ed7
SHA256

ac855a9a64c56b9a269c3e0618b2b330243962e418d125f5af1255f087b73a17
SHA512

910d01952619365c5452a4331e47823fbecc4219390cd2ff1754e29d0742b033728e7e0c7b196232e710f591c45a510828d5c0f280ca7de6116fa79e257c699e
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR3:knmj6xK1y3Ik6TZGR3

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ac855a9a64c56b9a269c3e0618b2b330243962e418d125f5af1255f087b73a17
- Size
  
  490KB
- MD5
  
  b12c80cca916b4385fc7373756cc714a
- SHA1
  
  17a1d1ba10c23ca9a67312789be3e43961bb6ed7
- SHA256
  
  ac855a9a64c56b9a269c3e0618b2b330243962e418d125f5af1255f087b73a17
- SHA512
  
  910d01952619365c5452a4331e47823fbecc4219390cd2ff1754e29d0742b033728e7e0c7b196232e710f591c45a510828d5c0f280ca7de6116fa79e257c699e
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR3:knmj6xK1y3Ik6TZGR3
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan