icedid | 0231318ebb921cbf34e64b49592146c0e718aa1772f69b3bf74813e27585bfb9 | Triage

Sharing

General

Target

JaffaCakes118_0231318ebb921cbf34e64b49592146c0e718aa1772f69b3bf74813e27585bfb9
Size

490KB
Sample

241223-svzpsatkep
MD5

47060cf68516527f06f6e6fca39784ab
SHA1

6e71c4a82ac2564b25017a6477965f5cd98251f1
SHA256

0231318ebb921cbf34e64b49592146c0e718aa1772f69b3bf74813e27585bfb9
SHA512

a8b13d93b2fb5f472644a0687abe17a91bc1f533cccbdb3e1f8b93da592ea1fa29af090bb4bdc450f186e171aa97916b7dd6640e33ac1a7cb260dfb283030b09
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_0231318ebb921cbf34e64b49592146c0e718aa1772f69b3bf74813e27585bfb9
- Size
  
  490KB
- MD5
  
  47060cf68516527f06f6e6fca39784ab
- SHA1
  
  6e71c4a82ac2564b25017a6477965f5cd98251f1
- SHA256
  
  0231318ebb921cbf34e64b49592146c0e718aa1772f69b3bf74813e27585bfb9
- SHA512
  
  a8b13d93b2fb5f472644a0687abe17a91bc1f533cccbdb3e1f8b93da592ea1fa29af090bb4bdc450f186e171aa97916b7dd6640e33ac1a7cb260dfb283030b09
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRg:knmj6xK1y3Ik6TZGRg
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan