icedid | cc81aa9582a2002eb8f424e9aceb0605ab40ad03dd5a2e72c516739cb38df211 | Triage

Sharing

General

Target

JaffaCakes118_cc81aa9582a2002eb8f424e9aceb0605ab40ad03dd5a2e72c516739cb38df211
Size

490KB
Sample

241222-m23gcswkgp
MD5

2b1dde9cdb633f5a754e5e0775e38871
SHA1

eea4f9db66ef9f64dad8b7ede2ab63255b93bb15
SHA256

cc81aa9582a2002eb8f424e9aceb0605ab40ad03dd5a2e72c516739cb38df211
SHA512

5e67bdccb8b4f340314bbcfb0b9f4c266a88942b1eb6df79b49f45144828c87373989f7606845931bc33ad39c12e1c3533ccfd91927bd3f76ece2eb80ac70aa4
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0I:knmj6xK1y3Ik6TZGRN

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_cc81aa9582a2002eb8f424e9aceb0605ab40ad03dd5a2e72c516739cb38df211
- Size
  
  490KB
- MD5
  
  2b1dde9cdb633f5a754e5e0775e38871
- SHA1
  
  eea4f9db66ef9f64dad8b7ede2ab63255b93bb15
- SHA256
  
  cc81aa9582a2002eb8f424e9aceb0605ab40ad03dd5a2e72c516739cb38df211
- SHA512
  
  5e67bdccb8b4f340314bbcfb0b9f4c266a88942b1eb6df79b49f45144828c87373989f7606845931bc33ad39c12e1c3533ccfd91927bd3f76ece2eb80ac70aa4
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0I:knmj6xK1y3Ik6TZGRN
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan