icedid | ad2563ce4ad3c6f7d2880845c0c0d0d66b640a715e963a5151e8dfef184cfa7b | Triage

Sharing

General

Target

JaffaCakes118_ad2563ce4ad3c6f7d2880845c0c0d0d66b640a715e963a5151e8dfef184cfa7b
Size

490KB
Sample

241222-hvx6vaylcy
MD5

c96edbb43203abddc386b9edc15d6a7e
SHA1

e615f7e863a2bd1ed69712db7801629f55cd8aaa
SHA256

ad2563ce4ad3c6f7d2880845c0c0d0d66b640a715e963a5151e8dfef184cfa7b
SHA512

5f7c542f65cace0e0c541bd35a724075a63bfe296d71176051565044a97db5de450419263904a08d95c76fbe368ea52c8ec203ff60cdf4ee1961bdb3d8943957
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRO:knmj6xK1y3Ik6TZGRO

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ad2563ce4ad3c6f7d2880845c0c0d0d66b640a715e963a5151e8dfef184cfa7b
- Size
  
  490KB
- MD5
  
  c96edbb43203abddc386b9edc15d6a7e
- SHA1
  
  e615f7e863a2bd1ed69712db7801629f55cd8aaa
- SHA256
  
  ad2563ce4ad3c6f7d2880845c0c0d0d66b640a715e963a5151e8dfef184cfa7b
- SHA512
  
  5f7c542f65cace0e0c541bd35a724075a63bfe296d71176051565044a97db5de450419263904a08d95c76fbe368ea52c8ec203ff60cdf4ee1961bdb3d8943957
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRO:knmj6xK1y3Ik6TZGRO
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan