icedid | 8d97cedf079626dde412b728798852ebe39c863e80b1cf59782b1db5726d6716 | Triage

Sharing

General

Target

JaffaCakes118_8d97cedf079626dde412b728798852ebe39c863e80b1cf59782b1db5726d6716
Size

490KB
Sample

241223-1nsa5asngj
MD5

1098b9cd18e32a804e69de7c29c9ef62
SHA1

cd5a5f0064704dff22cb19683dcac7d224142cde
SHA256

8d97cedf079626dde412b728798852ebe39c863e80b1cf59782b1db5726d6716
SHA512

07836fdb3932d3c868d72b5b1577f1899b1affc5897591d2ea4f757041389719194f27f68ca476bf00449173fb31449dbb23b01fe1abcc77929946edff82c87e
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_8d97cedf079626dde412b728798852ebe39c863e80b1cf59782b1db5726d6716
- Size
  
  490KB
- MD5
  
  1098b9cd18e32a804e69de7c29c9ef62
- SHA1
  
  cd5a5f0064704dff22cb19683dcac7d224142cde
- SHA256
  
  8d97cedf079626dde412b728798852ebe39c863e80b1cf59782b1db5726d6716
- SHA512
  
  07836fdb3932d3c868d72b5b1577f1899b1affc5897591d2ea4f757041389719194f27f68ca476bf00449173fb31449dbb23b01fe1abcc77929946edff82c87e
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan