icedid | 2e8c35bd58cd12860e037bed7e592894bf3d8f84aee3e0945e9b374414cb3ff7 | Triage

Sharing

General

Target

JaffaCakes118_2e8c35bd58cd12860e037bed7e592894bf3d8f84aee3e0945e9b374414cb3ff7
Size

490KB
Sample

241222-fbwskatqhj
MD5

3ef9a3c7ae226581d32149b4d87c028f
SHA1

653bb071b3aafcabc441eed0cb8503ae9e0621e5
SHA256

2e8c35bd58cd12860e037bed7e592894bf3d8f84aee3e0945e9b374414cb3ff7
SHA512

31a7a1575aaca95a9e5c92eb877a9a8977c083613113f806a6f2d107090ea06013584fa64c7017c08635bc508a575a51afa170fd14395c6ac0a48cbfcac32128
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_2e8c35bd58cd12860e037bed7e592894bf3d8f84aee3e0945e9b374414cb3ff7
- Size
  
  490KB
- MD5
  
  3ef9a3c7ae226581d32149b4d87c028f
- SHA1
  
  653bb071b3aafcabc441eed0cb8503ae9e0621e5
- SHA256
  
  2e8c35bd58cd12860e037bed7e592894bf3d8f84aee3e0945e9b374414cb3ff7
- SHA512
  
  31a7a1575aaca95a9e5c92eb877a9a8977c083613113f806a6f2d107090ea06013584fa64c7017c08635bc508a575a51afa170fd14395c6ac0a48cbfcac32128
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan