icedid | 5892f7ad0218286a2e52a5eedbea62c80532a70fa51b2d202b38ad2fcf61cedb | Triage

Submit
Reports

Overview

overview

Static

static

3

25fb0b3b8c...18.exe

windows7-x64

25fb0b3b8c...18.exe

windows10-2004-x64

Sharing

General

Target

25fb0b3b8c84da8a31a57d065f885816_JaffaCakes118
Size

389KB
Sample

240508-v9yr5saa65
MD5

25fb0b3b8c84da8a31a57d065f885816
SHA1

266b53bc10056d5753fe55dafa78707acc872f49
SHA256

5892f7ad0218286a2e52a5eedbea62c80532a70fa51b2d202b38ad2fcf61cedb
SHA512

52c8a2c466faefa57d7e3b6787cacd1493faf132041fa2fbd9006785a8524bc5ab47bb272b36d7b0f8c24189ec792950eb3449c7ae69ec83490bdefe679753b4
SSDEEP

6144:AqWgWa3L+/4CzI5kNfTg1RtllBNic2kflJ1JIXqFLFneX5Ju3He8JWv/WuooslsX:ApVa3L+QSI5Pif0rjY3

Score

10^/10

icedid banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

25fb0b3b8c84da8a31a57d065f885816_JaffaCakes118.exe

Resource

win7-20240508-en

icedid banker loader trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

25fb0b3b8c84da8a31a57d065f885816_JaffaCakes118.exe

Resource

win10v2004-20240226-en

icedid banker loader trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

icedid

Targets

- Target
  
  25fb0b3b8c84da8a31a57d065f885816_JaffaCakes118
- Size
  
  389KB
- MD5
  
  25fb0b3b8c84da8a31a57d065f885816
- SHA1
  
  266b53bc10056d5753fe55dafa78707acc872f49
- SHA256
  
  5892f7ad0218286a2e52a5eedbea62c80532a70fa51b2d202b38ad2fcf61cedb
- SHA512
  
  52c8a2c466faefa57d7e3b6787cacd1493faf132041fa2fbd9006785a8524bc5ab47bb272b36d7b0f8c24189ec792950eb3449c7ae69ec83490bdefe679753b4
- SSDEEP
  
  6144:AqWgWa3L+/4CzI5kNfTg1RtllBNic2kflJ1JIXqFLFneX5Ju3He8JWv/WuooslsX:ApVa3L+QSI5Pif0rjY3
Score

10^/10

icedid banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- IcedID Second Stage Loader
  loader
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedidbankerloadertrojan

behavioral2

icedidbankerloadertrojan

© 2018-2024

Terms | Privacy