icedid | 61de2115974c659608a70f1057f103f06ace4fc362e22aa456396c46e16f49f3 | Triage

Sharing

General

Target

JaffaCakes118_61de2115974c659608a70f1057f103f06ace4fc362e22aa456396c46e16f49f3
Size

490KB
Sample

241224-bxxjrsxqet
MD5

bd933577990802f535b0932075f59342
SHA1

b3edd53f60387cd575fdcc0c1fa182154f8f6cf4
SHA256

61de2115974c659608a70f1057f103f06ace4fc362e22aa456396c46e16f49f3
SHA512

fe8d89591dafe32d1e0916323c589694932a969bda4f963a94e7d3cf5cb9f32a79a94872ebd6c3837a5209ac6a2270dca889fba0c8794f593ce233c9f9e0e189
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_61de2115974c659608a70f1057f103f06ace4fc362e22aa456396c46e16f49f3
- Size
  
  490KB
- MD5
  
  bd933577990802f535b0932075f59342
- SHA1
  
  b3edd53f60387cd575fdcc0c1fa182154f8f6cf4
- SHA256
  
  61de2115974c659608a70f1057f103f06ace4fc362e22aa456396c46e16f49f3
- SHA512
  
  fe8d89591dafe32d1e0916323c589694932a969bda4f963a94e7d3cf5cb9f32a79a94872ebd6c3837a5209ac6a2270dca889fba0c8794f593ce233c9f9e0e189
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan