icedid | d43b1329f7485a2123e25ccf5e35a9415b9f08fa80fc61b47f81665e59e53dfb | Triage

Sharing

General

Target

JaffaCakes118_d43b1329f7485a2123e25ccf5e35a9415b9f08fa80fc61b47f81665e59e53dfb
Size

490KB
Sample

241224-c1l3wazjcs
MD5

3c94ff0fe3ae1f439b27b7c5c3990f39
SHA1

42a95f406de60e48aa7ef478c21f782e63bc1bf3
SHA256

d43b1329f7485a2123e25ccf5e35a9415b9f08fa80fc61b47f81665e59e53dfb
SHA512

2a4f897a20cf65a32e1e7ff2690877ce7c93a4b001ea08146c77cba3f8c4c80a25722f6804fab785be1ab39eb5361660a3f1e968b70eade83e9f0bbd616da3ec
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0r:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d43b1329f7485a2123e25ccf5e35a9415b9f08fa80fc61b47f81665e59e53dfb
- Size
  
  490KB
- MD5
  
  3c94ff0fe3ae1f439b27b7c5c3990f39
- SHA1
  
  42a95f406de60e48aa7ef478c21f782e63bc1bf3
- SHA256
  
  d43b1329f7485a2123e25ccf5e35a9415b9f08fa80fc61b47f81665e59e53dfb
- SHA512
  
  2a4f897a20cf65a32e1e7ff2690877ce7c93a4b001ea08146c77cba3f8c4c80a25722f6804fab785be1ab39eb5361660a3f1e968b70eade83e9f0bbd616da3ec
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0r:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan