icedid | 35d9df4d50611331fb641b6535422150202cb81c85f8ff473be14ed383eae8fe | Triage

Sharing

General

Target

JaffaCakes118_35d9df4d50611331fb641b6535422150202cb81c85f8ff473be14ed383eae8fe
Size

490KB
Sample

241222-c895ns1jcq
MD5

62b0fd826a862579622f80187ccc37d7
SHA1

df90da545eaa9186b0764d635afa679395cb50d2
SHA256

35d9df4d50611331fb641b6535422150202cb81c85f8ff473be14ed383eae8fe
SHA512

e28ff1cbd621e350ad1aebf95d085b4686f2dc13d52c17cdb1c7a7ee796f0abb79809963d0166dc47c811aa45e15586c493437f58f8e18831000672bd396cf9d
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRv:knmj6xK1y3Ik6TZGRv

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_35d9df4d50611331fb641b6535422150202cb81c85f8ff473be14ed383eae8fe
- Size
  
  490KB
- MD5
  
  62b0fd826a862579622f80187ccc37d7
- SHA1
  
  df90da545eaa9186b0764d635afa679395cb50d2
- SHA256
  
  35d9df4d50611331fb641b6535422150202cb81c85f8ff473be14ed383eae8fe
- SHA512
  
  e28ff1cbd621e350ad1aebf95d085b4686f2dc13d52c17cdb1c7a7ee796f0abb79809963d0166dc47c811aa45e15586c493437f58f8e18831000672bd396cf9d
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRv:knmj6xK1y3Ik6TZGRv
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan