icedid | 335e89d0cb497a4432ad79a3d9e6f9c36c1a790629b19e27c9ca00ff39a2ebd3 | Triage

Sharing

General

Target

JaffaCakes118_335e89d0cb497a4432ad79a3d9e6f9c36c1a790629b19e27c9ca00ff39a2ebd3
Size

490KB
Sample

241222-ydhb3axlfp
MD5

0ec20fa1caf3f4d6fa917a9e268c7c6b
SHA1

7c1a7f4d2d5952c3087d474cc8783a42a8a4d9bb
SHA256

335e89d0cb497a4432ad79a3d9e6f9c36c1a790629b19e27c9ca00ff39a2ebd3
SHA512

dcce70a42f7c9085e6117c55f470915b7dc5ef2f2c6350bbc5f2495333f65244ff523aa5084a6d87e73a250b07c720ea2b65e466c02fbc1d928945681454eded
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_335e89d0cb497a4432ad79a3d9e6f9c36c1a790629b19e27c9ca00ff39a2ebd3
- Size
  
  490KB
- MD5
  
  0ec20fa1caf3f4d6fa917a9e268c7c6b
- SHA1
  
  7c1a7f4d2d5952c3087d474cc8783a42a8a4d9bb
- SHA256
  
  335e89d0cb497a4432ad79a3d9e6f9c36c1a790629b19e27c9ca00ff39a2ebd3
- SHA512
  
  dcce70a42f7c9085e6117c55f470915b7dc5ef2f2c6350bbc5f2495333f65244ff523aa5084a6d87e73a250b07c720ea2b65e466c02fbc1d928945681454eded
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR2:knmj6xK1y3Ik6TZGR2
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan