icedid | 100e52085b2d83a6a25a62b8e8ee9e657fd284fcce755cd4d2dd19b94a3d1572 | Triage

Sharing

General

Target

JaffaCakes118_100e52085b2d83a6a25a62b8e8ee9e657fd284fcce755cd4d2dd19b94a3d1572
Size

490KB
Sample

241223-ybhvtaynel
MD5

a9be8d85c65fdd24ef0a68c9f93e9931
SHA1

754254cf8d157e68e256bf71cd510b80c21b9fd4
SHA256

100e52085b2d83a6a25a62b8e8ee9e657fd284fcce755cd4d2dd19b94a3d1572
SHA512

52dc6eadde30e87a1b01b6c7b72bd5b897679036afd188b2808fd01187746baca6cce8deb8e3a4cdfa33984d602a7a07bcfc70a0dd51107cc83ef763f5d3d18f
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_100e52085b2d83a6a25a62b8e8ee9e657fd284fcce755cd4d2dd19b94a3d1572
- Size
  
  490KB
- MD5
  
  a9be8d85c65fdd24ef0a68c9f93e9931
- SHA1
  
  754254cf8d157e68e256bf71cd510b80c21b9fd4
- SHA256
  
  100e52085b2d83a6a25a62b8e8ee9e657fd284fcce755cd4d2dd19b94a3d1572
- SHA512
  
  52dc6eadde30e87a1b01b6c7b72bd5b897679036afd188b2808fd01187746baca6cce8deb8e3a4cdfa33984d602a7a07bcfc70a0dd51107cc83ef763f5d3d18f
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR9:knmj6xK1y3Ik6TZGR9
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan