icedid | 74f79a380395bbad77dddc973fa1d8234ba0144c94ba4d146de04dff66d98647 | Triage

Sharing

General

Target

JaffaCakes118_74f79a380395bbad77dddc973fa1d8234ba0144c94ba4d146de04dff66d98647
Size

490KB
Sample

241223-3zwh2avrgs
MD5

ce68abd77748113c2975214d01e819a3
SHA1

400d17e2ddaaebafbac6b9e64891537225bb172b
SHA256

74f79a380395bbad77dddc973fa1d8234ba0144c94ba4d146de04dff66d98647
SHA512

ef4355ceda155d61e143c0a67f479c20bafdf7922d0d408e61abdacfa07bd5ef9c12014de7614ed3fec1d50d8a4c2c49b9bdcd2f2a171443ec75700725e38b88
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRB:knmj6xK1y3Ik6TZGRB

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_74f79a380395bbad77dddc973fa1d8234ba0144c94ba4d146de04dff66d98647
- Size
  
  490KB
- MD5
  
  ce68abd77748113c2975214d01e819a3
- SHA1
  
  400d17e2ddaaebafbac6b9e64891537225bb172b
- SHA256
  
  74f79a380395bbad77dddc973fa1d8234ba0144c94ba4d146de04dff66d98647
- SHA512
  
  ef4355ceda155d61e143c0a67f479c20bafdf7922d0d408e61abdacfa07bd5ef9c12014de7614ed3fec1d50d8a4c2c49b9bdcd2f2a171443ec75700725e38b88
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRB:knmj6xK1y3Ik6TZGRB
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan