icedid | 5e0f29fb3ccefb8b9fa02d00ee025c2c2836b54dc51b54b52fab20878331a4a3 | Triage

Sharing

General

Target

JaffaCakes118_5e0f29fb3ccefb8b9fa02d00ee025c2c2836b54dc51b54b52fab20878331a4a3
Size

490KB
Sample

241223-tp7nwavjbv
MD5

53a74267e42265ee01755efc0ab85690
SHA1

b4ce37be0a2eeb7a785400101f80d98a25a0e9c7
SHA256

5e0f29fb3ccefb8b9fa02d00ee025c2c2836b54dc51b54b52fab20878331a4a3
SHA512

5bec327064f5ac16e70c18800e29d7e127e8d9f366270b32ac9c4b478e419a83945440b50e737d308375acad4caef229b92f88fc9e9b8737bde2ed9325da5b23
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRX:knmj6xK1y3Ik6TZGRX

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5e0f29fb3ccefb8b9fa02d00ee025c2c2836b54dc51b54b52fab20878331a4a3
- Size
  
  490KB
- MD5
  
  53a74267e42265ee01755efc0ab85690
- SHA1
  
  b4ce37be0a2eeb7a785400101f80d98a25a0e9c7
- SHA256
  
  5e0f29fb3ccefb8b9fa02d00ee025c2c2836b54dc51b54b52fab20878331a4a3
- SHA512
  
  5bec327064f5ac16e70c18800e29d7e127e8d9f366270b32ac9c4b478e419a83945440b50e737d308375acad4caef229b92f88fc9e9b8737bde2ed9325da5b23
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRX:knmj6xK1y3Ik6TZGRX
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan