icedid | c25350c1c9d557e9d6e66f266ea2c6395c03c48b1e2f36a7671c9d3aefe80601 | Triage

Sharing

General

Target

JaffaCakes118_c25350c1c9d557e9d6e66f266ea2c6395c03c48b1e2f36a7671c9d3aefe80601
Size

490KB
Sample

241223-3k5hdsvqar
MD5

68a98aedced77e55fe3912f14e666565
SHA1

2694722d8f6fb6853bb29006c7d8897aea22ce2f
SHA256

c25350c1c9d557e9d6e66f266ea2c6395c03c48b1e2f36a7671c9d3aefe80601
SHA512

4436d27a66216d8f581cb592d86ff0cf40962c7d89864a890e7eb43e540b21aa20f2907c2425cf1a98879b6d758bc08c86055584126d2e1ec710ec0d49926e95
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRy:knmj6xK1y3Ik6TZGRy

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c25350c1c9d557e9d6e66f266ea2c6395c03c48b1e2f36a7671c9d3aefe80601
- Size
  
  490KB
- MD5
  
  68a98aedced77e55fe3912f14e666565
- SHA1
  
  2694722d8f6fb6853bb29006c7d8897aea22ce2f
- SHA256
  
  c25350c1c9d557e9d6e66f266ea2c6395c03c48b1e2f36a7671c9d3aefe80601
- SHA512
  
  4436d27a66216d8f581cb592d86ff0cf40962c7d89864a890e7eb43e540b21aa20f2907c2425cf1a98879b6d758bc08c86055584126d2e1ec710ec0d49926e95
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRy:knmj6xK1y3Ik6TZGRy
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan