icedid | f9a92d80639f3e2c69ba286125326116d894b54f585c69985f77e88be72a5ee9 | Triage

Sharing

General

Target

JaffaCakes118_f9a92d80639f3e2c69ba286125326116d894b54f585c69985f77e88be72a5ee9
Size

490KB
Sample

241222-j9zhws1jet
MD5

a67ab828457480dd1193e2cfd936cd29
SHA1

57b37dc2120aa29c0f3db6fd814880b427604040
SHA256

f9a92d80639f3e2c69ba286125326116d894b54f585c69985f77e88be72a5ee9
SHA512

872ec003a49a8d3fa4ff305005f70d275beab96c90b2e1de1f44c0d679a71d56ae73d2cdbb43cec134aa85e739decd37e6ab3aaedacea126f257403ec4d5b492
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_f9a92d80639f3e2c69ba286125326116d894b54f585c69985f77e88be72a5ee9
- Size
  
  490KB
- MD5
  
  a67ab828457480dd1193e2cfd936cd29
- SHA1
  
  57b37dc2120aa29c0f3db6fd814880b427604040
- SHA256
  
  f9a92d80639f3e2c69ba286125326116d894b54f585c69985f77e88be72a5ee9
- SHA512
  
  872ec003a49a8d3fa4ff305005f70d275beab96c90b2e1de1f44c0d679a71d56ae73d2cdbb43cec134aa85e739decd37e6ab3aaedacea126f257403ec4d5b492
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRJ:knmj6xK1y3Ik6TZGRJ
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan