icedid | 24e9d60a24f8eca6dc3ed61ece7d8e4ea73f65079851ebffe9c688f8db8d637c | Triage

Sharing

General

Target

JaffaCakes118_24e9d60a24f8eca6dc3ed61ece7d8e4ea73f65079851ebffe9c688f8db8d637c
Size

490KB
Sample

241223-wevyfawpb1
MD5

881b63baca03daa9d91a03cd78bc587b
SHA1

7f974ab47a385dda589cf3978d0bfb4677a92427
SHA256

24e9d60a24f8eca6dc3ed61ece7d8e4ea73f65079851ebffe9c688f8db8d637c
SHA512

13b1480b32b08da0f371ae3a5136365f6342d3c21b91ca1a2991e2a7863fed58880191727f2aa9f14e968dfe9ffc213a7edc90c95e63269e63aba753eb00eccb
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_24e9d60a24f8eca6dc3ed61ece7d8e4ea73f65079851ebffe9c688f8db8d637c
- Size
  
  490KB
- MD5
  
  881b63baca03daa9d91a03cd78bc587b
- SHA1
  
  7f974ab47a385dda589cf3978d0bfb4677a92427
- SHA256
  
  24e9d60a24f8eca6dc3ed61ece7d8e4ea73f65079851ebffe9c688f8db8d637c
- SHA512
  
  13b1480b32b08da0f371ae3a5136365f6342d3c21b91ca1a2991e2a7863fed58880191727f2aa9f14e968dfe9ffc213a7edc90c95e63269e63aba753eb00eccb
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan