icedid | ddb6435d1449fb7d381df097629cfa7bb3edd5cd514fdfbaad0e3dde324d4aef | Triage

Sharing

General

Target

JaffaCakes118_ddb6435d1449fb7d381df097629cfa7bb3edd5cd514fdfbaad0e3dde324d4aef
Size

490KB
Sample

241222-j8pbja1jay
MD5

ff934609ded313206aee1749f662da33
SHA1

80bc1dcb20f1271f344d866a7fade527cb21ec39
SHA256

ddb6435d1449fb7d381df097629cfa7bb3edd5cd514fdfbaad0e3dde324d4aef
SHA512

05fafc951e23c33e83da284601d17b48514c9568ddde5952b63fad2ef0d43cf7ca31f7317d5a402fad77be96b0d10b19ae1381747b9dc772cff87d5ab38352e7
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_ddb6435d1449fb7d381df097629cfa7bb3edd5cd514fdfbaad0e3dde324d4aef
- Size
  
  490KB
- MD5
  
  ff934609ded313206aee1749f662da33
- SHA1
  
  80bc1dcb20f1271f344d866a7fade527cb21ec39
- SHA256
  
  ddb6435d1449fb7d381df097629cfa7bb3edd5cd514fdfbaad0e3dde324d4aef
- SHA512
  
  05fafc951e23c33e83da284601d17b48514c9568ddde5952b63fad2ef0d43cf7ca31f7317d5a402fad77be96b0d10b19ae1381747b9dc772cff87d5ab38352e7
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan