icedid | d796c8a3265bd0d1c3a247683973021ecd1d154df6357a87f7d49db3d86e17e5 | Triage

Sharing

General

Target

JaffaCakes118_d796c8a3265bd0d1c3a247683973021ecd1d154df6357a87f7d49db3d86e17e5
Size

490KB
Sample

241223-1g4etaskd1
MD5

29cbb7ba641c394a709ae49a79a51842
SHA1

e7192f6c9e1863370b213a6245bdb7e8e782b658
SHA256

d796c8a3265bd0d1c3a247683973021ecd1d154df6357a87f7d49db3d86e17e5
SHA512

f34bbb60b82838d45d1539e908122aa9859a1145556a2c5824cddec14edda85a53ef3333a4393ed7fbc07a93f9052c68b1c278afcbed949da6880e3324fa27a6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d796c8a3265bd0d1c3a247683973021ecd1d154df6357a87f7d49db3d86e17e5
- Size
  
  490KB
- MD5
  
  29cbb7ba641c394a709ae49a79a51842
- SHA1
  
  e7192f6c9e1863370b213a6245bdb7e8e782b658
- SHA256
  
  d796c8a3265bd0d1c3a247683973021ecd1d154df6357a87f7d49db3d86e17e5
- SHA512
  
  f34bbb60b82838d45d1539e908122aa9859a1145556a2c5824cddec14edda85a53ef3333a4393ed7fbc07a93f9052c68b1c278afcbed949da6880e3324fa27a6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan