icedid | 2a4c7a66a4bf5e1637e0251353a5b4962db2bd35ecfef234cc03bc4710a75fe6 | Triage

Sharing

General

Target

JaffaCakes118_2a4c7a66a4bf5e1637e0251353a5b4962db2bd35ecfef234cc03bc4710a75fe6
Size

490KB
Sample

241222-cgjhmsyqbm
MD5

25f3937ac4f07ac518e9fc601361bffc
SHA1

cb91a49691be088b90d82ff4bacce61f5f587bb0
SHA256

2a4c7a66a4bf5e1637e0251353a5b4962db2bd35ecfef234cc03bc4710a75fe6
SHA512

12c2ca511e2726a7b64d25ee42298a7e6683364d673a3c1c17ad6e5a48e77bade1e19c008d773605b599e351a21fcd4d56e87df7c44f24c1399e8e9c63f001bd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_2a4c7a66a4bf5e1637e0251353a5b4962db2bd35ecfef234cc03bc4710a75fe6
- Size
  
  490KB
- MD5
  
  25f3937ac4f07ac518e9fc601361bffc
- SHA1
  
  cb91a49691be088b90d82ff4bacce61f5f587bb0
- SHA256
  
  2a4c7a66a4bf5e1637e0251353a5b4962db2bd35ecfef234cc03bc4710a75fe6
- SHA512
  
  12c2ca511e2726a7b64d25ee42298a7e6683364d673a3c1c17ad6e5a48e77bade1e19c008d773605b599e351a21fcd4d56e87df7c44f24c1399e8e9c63f001bd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRr:knmj6xK1y3Ik6TZGRr
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan