icedid | 4a9ae184af3bd3a1b349d8eed92a919c41ae58f6a3a7f8003dc44864d500ff05 | Triage

Sharing

General

Target

JaffaCakes118_4a9ae184af3bd3a1b349d8eed92a919c41ae58f6a3a7f8003dc44864d500ff05
Size

490KB
Sample

241223-t835ssvnex
MD5

e8b183e6717e655a39a9ef6cf2622fcf
SHA1

8e4e858f210c1ed06d95c9a916cc1ce68e152f9d
SHA256

4a9ae184af3bd3a1b349d8eed92a919c41ae58f6a3a7f8003dc44864d500ff05
SHA512

0feab96cc482b930a05a69b490497fddd7bacb92e755319e0160c71d90e344bce3a1c529e795df5f0bd1ef2872c77ed07a2b55a050c0d02596fd6c4252e5f1cc
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJc:knmj6xK1y3Ik6TZGRi

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_4a9ae184af3bd3a1b349d8eed92a919c41ae58f6a3a7f8003dc44864d500ff05
- Size
  
  490KB
- MD5
  
  e8b183e6717e655a39a9ef6cf2622fcf
- SHA1
  
  8e4e858f210c1ed06d95c9a916cc1ce68e152f9d
- SHA256
  
  4a9ae184af3bd3a1b349d8eed92a919c41ae58f6a3a7f8003dc44864d500ff05
- SHA512
  
  0feab96cc482b930a05a69b490497fddd7bacb92e755319e0160c71d90e344bce3a1c529e795df5f0bd1ef2872c77ed07a2b55a050c0d02596fd6c4252e5f1cc
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJc:knmj6xK1y3Ik6TZGRi
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan