icedid | 517c4d4c3c9df6607697795c14f15637c5e30f7f89aabbc3f9733cea22209968 | Triage

Sharing

General

Target

JaffaCakes118_517c4d4c3c9df6607697795c14f15637c5e30f7f89aabbc3f9733cea22209968
Size

490KB
Sample

241223-2ymztsvjfk
MD5

8e7140025b2bc6e26516bf0202323282
SHA1

e26c8b754ea460e694d2c37b912f9dca6a6c5c92
SHA256

517c4d4c3c9df6607697795c14f15637c5e30f7f89aabbc3f9733cea22209968
SHA512

1959eebfd92cc4e88b9d62c60d546d45040d6c0d1249961b03e80b0feeaeb27fbeeaf32960baf75315e9eff9bd428abbdbbd40878246f65b66fcff69e256eeb4
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_517c4d4c3c9df6607697795c14f15637c5e30f7f89aabbc3f9733cea22209968
- Size
  
  490KB
- MD5
  
  8e7140025b2bc6e26516bf0202323282
- SHA1
  
  e26c8b754ea460e694d2c37b912f9dca6a6c5c92
- SHA256
  
  517c4d4c3c9df6607697795c14f15637c5e30f7f89aabbc3f9733cea22209968
- SHA512
  
  1959eebfd92cc4e88b9d62c60d546d45040d6c0d1249961b03e80b0feeaeb27fbeeaf32960baf75315e9eff9bd428abbdbbd40878246f65b66fcff69e256eeb4
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRt:knmj6xK1y3Ik6TZGRt
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan