icedid | d65cb6844bdb740cb7ebcab98de6f5b8837cd88fa2594849a2a4ba6c1a74ce37 | Triage

Sharing

General

Target

JaffaCakes118_d65cb6844bdb740cb7ebcab98de6f5b8837cd88fa2594849a2a4ba6c1a74ce37
Size

490KB
Sample

241222-cswx4szlcr
MD5

678c949b45d306a654587acc3e538fc5
SHA1

68aa39d5d5d86b3fe54dab2622b45a456e42917d
SHA256

d65cb6844bdb740cb7ebcab98de6f5b8837cd88fa2594849a2a4ba6c1a74ce37
SHA512

a6f0cbfaaf4515779437f38b98bf78e400f3f1f4f1efaa249f142e6a2c8eca39a50924650edcc9e3dfadf16e4b74bfb244a92158b5e12ccb400a0a4d26dfdcdd
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRQ:knmj6xK1y3Ik6TZGRQ

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d65cb6844bdb740cb7ebcab98de6f5b8837cd88fa2594849a2a4ba6c1a74ce37
- Size
  
  490KB
- MD5
  
  678c949b45d306a654587acc3e538fc5
- SHA1
  
  68aa39d5d5d86b3fe54dab2622b45a456e42917d
- SHA256
  
  d65cb6844bdb740cb7ebcab98de6f5b8837cd88fa2594849a2a4ba6c1a74ce37
- SHA512
  
  a6f0cbfaaf4515779437f38b98bf78e400f3f1f4f1efaa249f142e6a2c8eca39a50924650edcc9e3dfadf16e4b74bfb244a92158b5e12ccb400a0a4d26dfdcdd
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRQ:knmj6xK1y3Ik6TZGRQ
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan