icedid | 13eca037f9e5dc94cf7f6d7d23dca4c4b03fc78869a70a61a42fa2191c307b42 | Triage

Sharing

General

Target

JaffaCakes118_13eca037f9e5dc94cf7f6d7d23dca4c4b03fc78869a70a61a42fa2191c307b42
Size

490KB
Sample

241223-ylbt9azjbr
MD5

5c832849162ea9a11f7b5e4dd2a1fdc0
SHA1

43207b32154b303f97fae1350191d28c2707cf9e
SHA256

13eca037f9e5dc94cf7f6d7d23dca4c4b03fc78869a70a61a42fa2191c307b42
SHA512

70a713e75a32b5ff59a1a9c0f0ae53ac73b99e227d598a78d75afac3763d69d0da2cc8ac3cdfc61825ae82c926ba59b65d74a925691b238d288eaa7282a1da70
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRG:knmj6xK1y3Ik6TZGRG

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_13eca037f9e5dc94cf7f6d7d23dca4c4b03fc78869a70a61a42fa2191c307b42
- Size
  
  490KB
- MD5
  
  5c832849162ea9a11f7b5e4dd2a1fdc0
- SHA1
  
  43207b32154b303f97fae1350191d28c2707cf9e
- SHA256
  
  13eca037f9e5dc94cf7f6d7d23dca4c4b03fc78869a70a61a42fa2191c307b42
- SHA512
  
  70a713e75a32b5ff59a1a9c0f0ae53ac73b99e227d598a78d75afac3763d69d0da2cc8ac3cdfc61825ae82c926ba59b65d74a925691b238d288eaa7282a1da70
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRG:knmj6xK1y3Ik6TZGRG
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan