icedid | aed3af6be8245b2c7fb05b30e9290c0438ab6aba6a9e71d9051e215008d97fbe | Triage

Sharing

General

Target

JaffaCakes118_aed3af6be8245b2c7fb05b30e9290c0438ab6aba6a9e71d9051e215008d97fbe
Size

490KB
Sample

241223-xd9wmsxndx
MD5

0e9496dd91e532cf7c92181b043b4e0c
SHA1

c84493e05a29cc882c24975b4d108fce9cc23780
SHA256

aed3af6be8245b2c7fb05b30e9290c0438ab6aba6a9e71d9051e215008d97fbe
SHA512

a5da860219b289104e95f9ceef0f71dbdd17ed139238f15ba6702ab5ef35696f5f12a7ca1d9a4d0c33b92a7e99a83c4ccef321a2b82bdf422495e49dbc4ffce1
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRE1:knmj6xK1y3Ik6TZGRY

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_aed3af6be8245b2c7fb05b30e9290c0438ab6aba6a9e71d9051e215008d97fbe
- Size
  
  490KB
- MD5
  
  0e9496dd91e532cf7c92181b043b4e0c
- SHA1
  
  c84493e05a29cc882c24975b4d108fce9cc23780
- SHA256
  
  aed3af6be8245b2c7fb05b30e9290c0438ab6aba6a9e71d9051e215008d97fbe
- SHA512
  
  a5da860219b289104e95f9ceef0f71dbdd17ed139238f15ba6702ab5ef35696f5f12a7ca1d9a4d0c33b92a7e99a83c4ccef321a2b82bdf422495e49dbc4ffce1
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRE1:knmj6xK1y3Ik6TZGRY
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan