icedid | b1824253784f2bbd4f38bc13a69c25312c5800a48ead55cfd2f706fb17e6d099 | Triage

Sharing

General

Target

JaffaCakes118_b1824253784f2bbd4f38bc13a69c25312c5800a48ead55cfd2f706fb17e6d099
Size

490KB
Sample

241224-cja92syphl
MD5

bd2dfc1b3d2b4feb34d1f1a145238a9e
SHA1

7f7f698edb293ca06404388c0adcccd4169de88d
SHA256

b1824253784f2bbd4f38bc13a69c25312c5800a48ead55cfd2f706fb17e6d099
SHA512

1c6d5852428576ed3c327b1566ca1e1506f19b675f9466f83e0d91632b93c4c95017f478d777947818aaf1d356a0dbdbf9ed47c29bce28ddba015a7f5be1ba85
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRHk:knmj6xK1y3Ik6TZGRHk

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_b1824253784f2bbd4f38bc13a69c25312c5800a48ead55cfd2f706fb17e6d099
- Size
  
  490KB
- MD5
  
  bd2dfc1b3d2b4feb34d1f1a145238a9e
- SHA1
  
  7f7f698edb293ca06404388c0adcccd4169de88d
- SHA256
  
  b1824253784f2bbd4f38bc13a69c25312c5800a48ead55cfd2f706fb17e6d099
- SHA512
  
  1c6d5852428576ed3c327b1566ca1e1506f19b675f9466f83e0d91632b93c4c95017f478d777947818aaf1d356a0dbdbf9ed47c29bce28ddba015a7f5be1ba85
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRHk:knmj6xK1y3Ik6TZGRHk
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan