icedid | d3a0b600ebec0814f381f613a682d45f332c0b58dcb81af82dd4be00c64961f7 | Triage

Sharing

General

Target

JaffaCakes118_d3a0b600ebec0814f381f613a682d45f332c0b58dcb81af82dd4be00c64961f7
Size

490KB
Sample

241223-syvv1atldj
MD5

54fd4eed5bd15e279a76ec151dbdf343
SHA1

38880c8fb08e2d6aa160ab4af45a63afbe316077
SHA256

d3a0b600ebec0814f381f613a682d45f332c0b58dcb81af82dd4be00c64961f7
SHA512

6705042b95ae6b2981ca95421455461a4c97470f0699d63d631e511ed22b63050ba06d980e589fe3b420e7e1edf3ba1cea641b14a2558fae2f5811e933f644e9
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRP:knmj6xK1y3Ik6TZGRP

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d3a0b600ebec0814f381f613a682d45f332c0b58dcb81af82dd4be00c64961f7
- Size
  
  490KB
- MD5
  
  54fd4eed5bd15e279a76ec151dbdf343
- SHA1
  
  38880c8fb08e2d6aa160ab4af45a63afbe316077
- SHA256
  
  d3a0b600ebec0814f381f613a682d45f332c0b58dcb81af82dd4be00c64961f7
- SHA512
  
  6705042b95ae6b2981ca95421455461a4c97470f0699d63d631e511ed22b63050ba06d980e589fe3b420e7e1edf3ba1cea641b14a2558fae2f5811e933f644e9
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRP:knmj6xK1y3Ik6TZGRP
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan