icedid | def7d12cdbae87c84d50647132508847d841014d51db761c4e62d26a5280e3d8 | Triage

Sharing

General

Target

JaffaCakes118_def7d12cdbae87c84d50647132508847d841014d51db761c4e62d26a5280e3d8
Size

490KB
Sample

241222-ps571ayjdy
MD5

9ae07c87dd2d627f7dba67efbde53b15
SHA1

df7ef2a4f9c013c1d7274a1f4b130beb3fc1ce67
SHA256

def7d12cdbae87c84d50647132508847d841014d51db761c4e62d26a5280e3d8
SHA512

bbbd1e42db78ea22ef598bc0a8e7acd7061c0818d67fba4cbf96d5953eaee7f42646c8843670f41a106b69efd0b714f3ee9eeff3e8c42a89f91c3cf25aad4ca7
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRPR:knmj6xK1y3Ik6TZGRPR

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_def7d12cdbae87c84d50647132508847d841014d51db761c4e62d26a5280e3d8
- Size
  
  490KB
- MD5
  
  9ae07c87dd2d627f7dba67efbde53b15
- SHA1
  
  df7ef2a4f9c013c1d7274a1f4b130beb3fc1ce67
- SHA256
  
  def7d12cdbae87c84d50647132508847d841014d51db761c4e62d26a5280e3d8
- SHA512
  
  bbbd1e42db78ea22ef598bc0a8e7acd7061c0818d67fba4cbf96d5953eaee7f42646c8843670f41a106b69efd0b714f3ee9eeff3e8c42a89f91c3cf25aad4ca7
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRPR:knmj6xK1y3Ik6TZGRPR
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan