icedid | d2f60971ec27c47b32d0720b96d641b9284cb9c94db58a19e61520eaae11b7ff | Triage

Sharing

General

Target

JaffaCakes118_d2f60971ec27c47b32d0720b96d641b9284cb9c94db58a19e61520eaae11b7ff
Size

490KB
Sample

241221-ybpncsxpgp
MD5

d65c8b105905ba927ba40759171b6e70
SHA1

8a7b8add80f2325f26438e7f3bc8bee422987451
SHA256

d2f60971ec27c47b32d0720b96d641b9284cb9c94db58a19e61520eaae11b7ff
SHA512

b10276a7be3f54a6686223f8664a3062cc9e6f271163cfb6634b461f4767b0ede5b7e9625ca019f536fc8dbadf852ecc21ad7ed2a4c8d4982ee928cd61200556
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRk:knmj6xK1y3Ik6TZGRk

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d2f60971ec27c47b32d0720b96d641b9284cb9c94db58a19e61520eaae11b7ff
- Size
  
  490KB
- MD5
  
  d65c8b105905ba927ba40759171b6e70
- SHA1
  
  8a7b8add80f2325f26438e7f3bc8bee422987451
- SHA256
  
  d2f60971ec27c47b32d0720b96d641b9284cb9c94db58a19e61520eaae11b7ff
- SHA512
  
  b10276a7be3f54a6686223f8664a3062cc9e6f271163cfb6634b461f4767b0ede5b7e9625ca019f536fc8dbadf852ecc21ad7ed2a4c8d4982ee928cd61200556
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRk:knmj6xK1y3Ik6TZGRk
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan