icedid | e8cf984b887b94cc29065ba22ab5f1eab960ee1615c8f533674b450fb286f08a | Triage

Sharing

General

Target

JaffaCakes118_e8cf984b887b94cc29065ba22ab5f1eab960ee1615c8f533674b450fb286f08a
Size

490KB
Sample

241222-p382msymht
MD5

38f5cf59f2f50262215e742139afffe5
SHA1

f1f4ee484357c3cba1d61eb082fc20a7ede3341d
SHA256

e8cf984b887b94cc29065ba22ab5f1eab960ee1615c8f533674b450fb286f08a
SHA512

89eaed4eaaafc1a69ff824211876fe3303e38e39e4ab79bfaf0b097fc6a31ae58ed4eb497764967a033031f03f74ed9d53c2842a0e3ea0f6f3de11af5dfaca8c
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e8cf984b887b94cc29065ba22ab5f1eab960ee1615c8f533674b450fb286f08a
- Size
  
  490KB
- MD5
  
  38f5cf59f2f50262215e742139afffe5
- SHA1
  
  f1f4ee484357c3cba1d61eb082fc20a7ede3341d
- SHA256
  
  e8cf984b887b94cc29065ba22ab5f1eab960ee1615c8f533674b450fb286f08a
- SHA512
  
  89eaed4eaaafc1a69ff824211876fe3303e38e39e4ab79bfaf0b097fc6a31ae58ed4eb497764967a033031f03f74ed9d53c2842a0e3ea0f6f3de11af5dfaca8c
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan