icedid | 87eb968759c96a7b93b567e42c6a0c699862a90bfa65408af85dc3c69e612dc2 | Triage

Sharing

General

Target

JaffaCakes118_87eb968759c96a7b93b567e42c6a0c699862a90bfa65408af85dc3c69e612dc2
Size

490KB
Sample

241223-tawytstng1
MD5

df2e49153188f74ad33b2edd94f40ecd
SHA1

0fd1b1859f0468949e233faab68ce09d657ad041
SHA256

87eb968759c96a7b93b567e42c6a0c699862a90bfa65408af85dc3c69e612dc2
SHA512

9eb6db15e1df13b83077e30333e71f63b965cfbde4b2494c1eebb5273093541b229586eaa34a305b4dd7ed223e2555672199a3c091734104f459a6e53d2e4843
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_87eb968759c96a7b93b567e42c6a0c699862a90bfa65408af85dc3c69e612dc2
- Size
  
  490KB
- MD5
  
  df2e49153188f74ad33b2edd94f40ecd
- SHA1
  
  0fd1b1859f0468949e233faab68ce09d657ad041
- SHA256
  
  87eb968759c96a7b93b567e42c6a0c699862a90bfa65408af85dc3c69e612dc2
- SHA512
  
  9eb6db15e1df13b83077e30333e71f63b965cfbde4b2494c1eebb5273093541b229586eaa34a305b4dd7ed223e2555672199a3c091734104f459a6e53d2e4843
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan