icedid | 66b391e964bfdbb9b7e33042bca4909bced931d7d1fb6c5ae0ce2f2b15318d63 | Triage

Sharing

General

Target

JaffaCakes118_66b391e964bfdbb9b7e33042bca4909bced931d7d1fb6c5ae0ce2f2b15318d63
Size

490KB
Sample

241223-thvqqstqew
MD5

fab6d882635c171ed040e5a58db608a0
SHA1

4a5c21dbb638f5b9858fb610144ebba41bca7139
SHA256

66b391e964bfdbb9b7e33042bca4909bced931d7d1fb6c5ae0ce2f2b15318d63
SHA512

bf7e7360c92012b9e0f17cafbf76adf33ca1cdfd7061f2b226967379018de0e152aca7db1dbad1ef784048ba9523d8e4c3577928d0fe5a6a7fe0477ef1e289c9
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRbX:knmj6xK1y3Ik6TZGRbX

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_66b391e964bfdbb9b7e33042bca4909bced931d7d1fb6c5ae0ce2f2b15318d63
- Size
  
  490KB
- MD5
  
  fab6d882635c171ed040e5a58db608a0
- SHA1
  
  4a5c21dbb638f5b9858fb610144ebba41bca7139
- SHA256
  
  66b391e964bfdbb9b7e33042bca4909bced931d7d1fb6c5ae0ce2f2b15318d63
- SHA512
  
  bf7e7360c92012b9e0f17cafbf76adf33ca1cdfd7061f2b226967379018de0e152aca7db1dbad1ef784048ba9523d8e4c3577928d0fe5a6a7fe0477ef1e289c9
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRbX:knmj6xK1y3Ik6TZGRbX
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan