icedid | f940af9ace1c5d66cbf7d24ad36b17db257dd7ed7d258574be65afc5479c3a5f | Triage

Sharing

General

Target

JaffaCakes118_f940af9ace1c5d66cbf7d24ad36b17db257dd7ed7d258574be65afc5479c3a5f
Size

490KB
Sample

241224-afszkswkfx
MD5

c23c32960598669bac11dac945e351c3
SHA1

b217baed739bbf5aefe1dedf06a5c1d8852be1d4
SHA256

f940af9ace1c5d66cbf7d24ad36b17db257dd7ed7d258574be65afc5479c3a5f
SHA512

63bc3e9b2f12ae2be20b5e34f462c87c49ec0bd5184dcebeaf392a8ca4550df71ff54d6bae0c86ab1efadd99b6b205782d47b116cfbf03e043df1f4ea796aee5
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f940af9ace1c5d66cbf7d24ad36b17db257dd7ed7d258574be65afc5479c3a5f
- Size
  
  490KB
- MD5
  
  c23c32960598669bac11dac945e351c3
- SHA1
  
  b217baed739bbf5aefe1dedf06a5c1d8852be1d4
- SHA256
  
  f940af9ace1c5d66cbf7d24ad36b17db257dd7ed7d258574be65afc5479c3a5f
- SHA512
  
  63bc3e9b2f12ae2be20b5e34f462c87c49ec0bd5184dcebeaf392a8ca4550df71ff54d6bae0c86ab1efadd99b6b205782d47b116cfbf03e043df1f4ea796aee5
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRj:knmj6xK1y3Ik6TZGRj
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan