icedid | 827cc9fbf1cf0ff76f34697e3e86ad3bc893d18c7737995f546455c09687c41f | Triage

Sharing

General

Target

JaffaCakes118_827cc9fbf1cf0ff76f34697e3e86ad3bc893d18c7737995f546455c09687c41f
Size

490KB
Sample

241222-dlj6ea1ncr
MD5

c9c591f5d21809ba1ccc4310ff571af1
SHA1

c9d6cd9a54395f8c4cb5576ee32145563e32c683
SHA256

827cc9fbf1cf0ff76f34697e3e86ad3bc893d18c7737995f546455c09687c41f
SHA512

a633b905dd8363af7439958a5a6f14f7f64903ef6d890311989abe76ed027c7b0b50e9352739382a7950389b5b3cc64470dac1f97eaeb8ab16c5765f7147f223
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_827cc9fbf1cf0ff76f34697e3e86ad3bc893d18c7737995f546455c09687c41f
- Size
  
  490KB
- MD5
  
  c9c591f5d21809ba1ccc4310ff571af1
- SHA1
  
  c9d6cd9a54395f8c4cb5576ee32145563e32c683
- SHA256
  
  827cc9fbf1cf0ff76f34697e3e86ad3bc893d18c7737995f546455c09687c41f
- SHA512
  
  a633b905dd8363af7439958a5a6f14f7f64903ef6d890311989abe76ed027c7b0b50e9352739382a7950389b5b3cc64470dac1f97eaeb8ab16c5765f7147f223
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan