icedid | fc11a89bb60fc26272c5c6e7a6a9d285e15df6e62fa662055a40ecff397f7ad3 | Triage

Sharing

General

Target

JaffaCakes118_fc11a89bb60fc26272c5c6e7a6a9d285e15df6e62fa662055a40ecff397f7ad3
Size

490KB
Sample

241224-ayqbeawpfv
MD5

591d4417448f2e49b44506098e760d37
SHA1

ddf6ce37c64c43716b0eb1c4bc982ffb0d58b688
SHA256

fc11a89bb60fc26272c5c6e7a6a9d285e15df6e62fa662055a40ecff397f7ad3
SHA512

0033d6b612c21c6081fc4dafeb1ad4f5a9e25f3f21139a79325eed1d59b012c264672a40c606c87840808bd12a04a9ce4a6b5aef86538a11d4c02cf246dcd684
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fc11a89bb60fc26272c5c6e7a6a9d285e15df6e62fa662055a40ecff397f7ad3
- Size
  
  490KB
- MD5
  
  591d4417448f2e49b44506098e760d37
- SHA1
  
  ddf6ce37c64c43716b0eb1c4bc982ffb0d58b688
- SHA256
  
  fc11a89bb60fc26272c5c6e7a6a9d285e15df6e62fa662055a40ecff397f7ad3
- SHA512
  
  0033d6b612c21c6081fc4dafeb1ad4f5a9e25f3f21139a79325eed1d59b012c264672a40c606c87840808bd12a04a9ce4a6b5aef86538a11d4c02cf246dcd684
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan