icedid | bac24b2f7b37407123a8defa39c9b7090535b66538850eb49a6a63af02ea29ef | Triage

Sharing

General

Target

JaffaCakes118_bac24b2f7b37407123a8defa39c9b7090535b66538850eb49a6a63af02ea29ef
Size

490KB
Sample

241224-cvzrsazkam
MD5

1ac029ba26ac65399e2a5660aa29251e
SHA1

e6a1d6d88006f1b33d7d0101073b32bb69f16e9c
SHA256

bac24b2f7b37407123a8defa39c9b7090535b66538850eb49a6a63af02ea29ef
SHA512

e8d216ca2b0d9e2f2fa578f66e1504420e605071621478db704342f37640ae76673ed09484f4a929ecbb6243f9a02890022bab9071309c1254161636558f31bf
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_bac24b2f7b37407123a8defa39c9b7090535b66538850eb49a6a63af02ea29ef
- Size
  
  490KB
- MD5
  
  1ac029ba26ac65399e2a5660aa29251e
- SHA1
  
  e6a1d6d88006f1b33d7d0101073b32bb69f16e9c
- SHA256
  
  bac24b2f7b37407123a8defa39c9b7090535b66538850eb49a6a63af02ea29ef
- SHA512
  
  e8d216ca2b0d9e2f2fa578f66e1504420e605071621478db704342f37640ae76673ed09484f4a929ecbb6243f9a02890022bab9071309c1254161636558f31bf
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan