icedid | 5c9997144d6d1b3b9079d9e76d8b01b2c55f3c7ebb5ee4dd0913b7f17ffb164c | Triage

Sharing

General

Target

JaffaCakes118_5c9997144d6d1b3b9079d9e76d8b01b2c55f3c7ebb5ee4dd0913b7f17ffb164c
Size

490KB
Sample

241223-vjf5eavrdj
MD5

58861499ecfdeda7330bb240b3b92c88
SHA1

1e77571e86ba3bfe271fced2ee8a4685b8ada0e7
SHA256

5c9997144d6d1b3b9079d9e76d8b01b2c55f3c7ebb5ee4dd0913b7f17ffb164c
SHA512

191b16acbf25567980ef40a7033f203bf1ffe6b1d122eaf4167f5e83cbd1ab4e567d5a106ae2a0e9214e4172966e0a331eb4797747da3c3c9c7f9f6d867ef42a
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_5c9997144d6d1b3b9079d9e76d8b01b2c55f3c7ebb5ee4dd0913b7f17ffb164c
- Size
  
  490KB
- MD5
  
  58861499ecfdeda7330bb240b3b92c88
- SHA1
  
  1e77571e86ba3bfe271fced2ee8a4685b8ada0e7
- SHA256
  
  5c9997144d6d1b3b9079d9e76d8b01b2c55f3c7ebb5ee4dd0913b7f17ffb164c
- SHA512
  
  191b16acbf25567980ef40a7033f203bf1ffe6b1d122eaf4167f5e83cbd1ab4e567d5a106ae2a0e9214e4172966e0a331eb4797747da3c3c9c7f9f6d867ef42a
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan