icedid | cb68ba9763eaea0e750354cf2e4079480ba167751246089a49c4c088cdb4e625 | Triage

Sharing

General

Target

JaffaCakes118_cb68ba9763eaea0e750354cf2e4079480ba167751246089a49c4c088cdb4e625
Size

490KB
Sample

241222-y2sspsyjhj
MD5

fa1b1594bf417a5780815f3252e970b3
SHA1

29628dcf0ff5b3876c5d1b52adaee74a6166425e
SHA256

cb68ba9763eaea0e750354cf2e4079480ba167751246089a49c4c088cdb4e625
SHA512

a89be9ab202d4ac15ff691c44ff9f4bd774f14a74e7d7432f92b30a6f82f29cf4ad19c885dec23b8bbfb4874a43d41cb5c644894760a22727e0e9ba0037a5f92
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_cb68ba9763eaea0e750354cf2e4079480ba167751246089a49c4c088cdb4e625
- Size
  
  490KB
- MD5
  
  fa1b1594bf417a5780815f3252e970b3
- SHA1
  
  29628dcf0ff5b3876c5d1b52adaee74a6166425e
- SHA256
  
  cb68ba9763eaea0e750354cf2e4079480ba167751246089a49c4c088cdb4e625
- SHA512
  
  a89be9ab202d4ac15ff691c44ff9f4bd774f14a74e7d7432f92b30a6f82f29cf4ad19c885dec23b8bbfb4874a43d41cb5c644894760a22727e0e9ba0037a5f92
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRK:knmj6xK1y3Ik6TZGRK
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan