icedid | cc89b09b8d3918543ae732d2c3117e87be36b21bccb81470663b5324ba5083f1 | Triage

Sharing

General

Target

JaffaCakes118_cc89b09b8d3918543ae732d2c3117e87be36b21bccb81470663b5324ba5083f1
Size

366KB
Sample

241222-y876zaxraw
MD5

1167b4d39b405f59a93ab164c9845e3e
SHA1

47c95801e026431ee66eba34b6af2674d451071f
SHA256

cc89b09b8d3918543ae732d2c3117e87be36b21bccb81470663b5324ba5083f1
SHA512

6d4e780e3e92ae2ed18a4f719e93ca6d977a6dba9e98cff9b2ea592f5db90eed07d0050a4ff2505eb1b7d6ee040ed1808fc0e7f37b9b631655e88483f1d12165
SSDEEP

6144:Xz2NRTR1N+PbzVdaiU0lQw82niczFJLiCc1Xva4pGXH2u+wIwEFqtwosx:ORNrWJXUEQl2niwcd/cWXwHs

Score

10^/10

icedid 3384076982 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3384076982

C2

keepfootbal.com

Targets

- Target
  
  2c4ebb47841760e94ae3f6f26e9ffe4cc7e933d618b0721e6dce5da6f4595122
- Size
  
  560KB
- MD5
  
  c13ca54f97231f82d78513ed8b8a3442
- SHA1
  
  0fdbe2d4068498acfd1b3658ebaaee7879e23d87
- SHA256
  
  2c4ebb47841760e94ae3f6f26e9ffe4cc7e933d618b0721e6dce5da6f4595122
- SHA512
  
  6b16fd2aa0c8c210467d322ca17f2d6f905b07ddf72d448d0cca8f3654217d674e3bf898821f65224459a17a82fb987897754f961e8690494b168becd459a28b
- SSDEEP
  
  12288:b99Q75veGjTRoLT3T08saWoiP5fvZn6BTo2G:5y7JFK7TtsDVhfx6k2G
Score

10^/10

icedid 3384076982 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3384076982bankerloadertrojan

behavioral2

icedid3384076982bankerloadertrojan