icedid | 1ccd972c1753fb6824140d85dfd7b33661d3e7cb8e0035c891bff7e257df27fd | Triage

Sharing

General

Target

JaffaCakes118_1ccd972c1753fb6824140d85dfd7b33661d3e7cb8e0035c891bff7e257df27fd
Size

490KB
Sample

241222-frpzysvnep
MD5

f5323201ba686d4a61560f991bd89e17
SHA1

cae4c03e999d3b5d6dab4de8bdc98282c62819ca
SHA256

1ccd972c1753fb6824140d85dfd7b33661d3e7cb8e0035c891bff7e257df27fd
SHA512

a7baeb298ee0c0f296fff9bdd71b859c9bace92c100d502b2b2582b61db2c4fd9e38c58845989c8ab45de6a096bc2ccbed59abd143b699a0daef1a5d15ae3808
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_1ccd972c1753fb6824140d85dfd7b33661d3e7cb8e0035c891bff7e257df27fd
- Size
  
  490KB
- MD5
  
  f5323201ba686d4a61560f991bd89e17
- SHA1
  
  cae4c03e999d3b5d6dab4de8bdc98282c62819ca
- SHA256
  
  1ccd972c1753fb6824140d85dfd7b33661d3e7cb8e0035c891bff7e257df27fd
- SHA512
  
  a7baeb298ee0c0f296fff9bdd71b859c9bace92c100d502b2b2582b61db2c4fd9e38c58845989c8ab45de6a096bc2ccbed59abd143b699a0daef1a5d15ae3808
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan