icedid | 3c56575a95b5311f8a42e68b28b1c6696ad6dc76439f2d8db2886afb3495df8d | Triage

Sharing

General

Target

JaffaCakes118_3c56575a95b5311f8a42e68b28b1c6696ad6dc76439f2d8db2886afb3495df8d
Size

490KB
Sample

241223-3l9thavqej
MD5

3c9a67a0c8eff441ebcf4bd4054ad9fb
SHA1

34f90971454b0ce00d244bf5798af426c1b144f3
SHA256

3c56575a95b5311f8a42e68b28b1c6696ad6dc76439f2d8db2886afb3495df8d
SHA512

51a34040d2f8ae74c0a0b70ead1138635688fdbeaf70e05c230f4f534863c5f2e04076fb9e573f67dd0417bb9e1a2a6a26dc85bbb04fd92ab5fc1a0a06c01de6
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRo:knmj6xK1y3Ik6TZGRo

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_3c56575a95b5311f8a42e68b28b1c6696ad6dc76439f2d8db2886afb3495df8d
- Size
  
  490KB
- MD5
  
  3c9a67a0c8eff441ebcf4bd4054ad9fb
- SHA1
  
  34f90971454b0ce00d244bf5798af426c1b144f3
- SHA256
  
  3c56575a95b5311f8a42e68b28b1c6696ad6dc76439f2d8db2886afb3495df8d
- SHA512
  
  51a34040d2f8ae74c0a0b70ead1138635688fdbeaf70e05c230f4f534863c5f2e04076fb9e573f67dd0417bb9e1a2a6a26dc85bbb04fd92ab5fc1a0a06c01de6
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRo:knmj6xK1y3Ik6TZGRo
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan