icedid | 0632f7e37e742b99a6718db2620bab8054eea39fe0d3203db27b7d4bee463e9f | Triage

Sharing

General

Target

JaffaCakes118_0632f7e37e742b99a6718db2620bab8054eea39fe0d3203db27b7d4bee463e9f
Size

490KB
Sample

241222-hgpmjsyjcq
MD5

9f8970addeb4801bdac6fa7f1cfab954
SHA1

0db9f5430d8ee3f1df6defc2663dc71b6fa80420
SHA256

0632f7e37e742b99a6718db2620bab8054eea39fe0d3203db27b7d4bee463e9f
SHA512

490cafb02bec5689939a05ef3a2886837642025f8767183f069da7b0e79bbb1d9ff7aad98345e8c538e072bbaafba756e0765cd93548f275d32af4e2b38a558a
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_0632f7e37e742b99a6718db2620bab8054eea39fe0d3203db27b7d4bee463e9f
- Size
  
  490KB
- MD5
  
  9f8970addeb4801bdac6fa7f1cfab954
- SHA1
  
  0db9f5430d8ee3f1df6defc2663dc71b6fa80420
- SHA256
  
  0632f7e37e742b99a6718db2620bab8054eea39fe0d3203db27b7d4bee463e9f
- SHA512
  
  490cafb02bec5689939a05ef3a2886837642025f8767183f069da7b0e79bbb1d9ff7aad98345e8c538e072bbaafba756e0765cd93548f275d32af4e2b38a558a
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan