icedid | 480b990020f23aefe05ed07d5d96cf6d7c6b12b6977fdd755c6c7d7fba867fc0 | Triage

Sharing

General

Target

JaffaCakes118_480b990020f23aefe05ed07d5d96cf6d7c6b12b6977fdd755c6c7d7fba867fc0
Size

490KB
Sample

241222-ff9j8atqey
MD5

8b929fac02882cedfd223322b2a9d234
SHA1

9cc35e7bbc24c4b6c60c8fcf59f348877bf6fd7d
SHA256

480b990020f23aefe05ed07d5d96cf6d7c6b12b6977fdd755c6c7d7fba867fc0
SHA512

c277b8b477cb47a496862dffbb36adaddbeba34f36a06295e860719d9816259981c9115d67a88ab2f9bf7eeb135526d1698ae71ae5df9138dd285bc76e68a687
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_480b990020f23aefe05ed07d5d96cf6d7c6b12b6977fdd755c6c7d7fba867fc0
- Size
  
  490KB
- MD5
  
  8b929fac02882cedfd223322b2a9d234
- SHA1
  
  9cc35e7bbc24c4b6c60c8fcf59f348877bf6fd7d
- SHA256
  
  480b990020f23aefe05ed07d5d96cf6d7c6b12b6977fdd755c6c7d7fba867fc0
- SHA512
  
  c277b8b477cb47a496862dffbb36adaddbeba34f36a06295e860719d9816259981c9115d67a88ab2f9bf7eeb135526d1698ae71ae5df9138dd285bc76e68a687
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan