icedid | 0ecd11b6895afcf3cd04b65e333fd398a3ded21f45180469bdc6cc6bcce1ebab | Triage

Sharing

General

Target

JaffaCakes118_0ecd11b6895afcf3cd04b65e333fd398a3ded21f45180469bdc6cc6bcce1ebab
Size

490KB
Sample

241222-hp7hbsykav
MD5

ce605c339cb52c9f74e483ce98a04f27
SHA1

d42e0f8a215330a9229eda742d82a68d721b3ea6
SHA256

0ecd11b6895afcf3cd04b65e333fd398a3ded21f45180469bdc6cc6bcce1ebab
SHA512

d439787854b29b52982995c95f28baac47e73a188d529bdd8aba5517ffc77864daffc1a14128242bb83c1ad719044d4279beae30ec3203d0687f8dadc7d72e33
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRD:knmj6xK1y3Ik6TZGRD

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_0ecd11b6895afcf3cd04b65e333fd398a3ded21f45180469bdc6cc6bcce1ebab
- Size
  
  490KB
- MD5
  
  ce605c339cb52c9f74e483ce98a04f27
- SHA1
  
  d42e0f8a215330a9229eda742d82a68d721b3ea6
- SHA256
  
  0ecd11b6895afcf3cd04b65e333fd398a3ded21f45180469bdc6cc6bcce1ebab
- SHA512
  
  d439787854b29b52982995c95f28baac47e73a188d529bdd8aba5517ffc77864daffc1a14128242bb83c1ad719044d4279beae30ec3203d0687f8dadc7d72e33
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRD:knmj6xK1y3Ik6TZGRD
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan