icedid | 33cc76373134932f01dd52594394cc5be5dfa98bd0fd559a657ef07244edb3db | Triage

Sharing

General

Target

JaffaCakes118_33cc76373134932f01dd52594394cc5be5dfa98bd0fd559a657ef07244edb3db
Size

490KB
Sample

241223-rbhrgs1qck
MD5

b7b35a31d78c75def64aee156c5c53ec
SHA1

8fa640c80be072acc1fb1cf74f3c79cd53362b3b
SHA256

33cc76373134932f01dd52594394cc5be5dfa98bd0fd559a657ef07244edb3db
SHA512

aa4b68b8dfc2a20f7239256dbaaf741e87e4bb29801778e7c9a0b2cebef3cf6108de0221538d8dc542890bb062f82cd191c4782c7ab98a82ce48d05d293f48ca
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_33cc76373134932f01dd52594394cc5be5dfa98bd0fd559a657ef07244edb3db
- Size
  
  490KB
- MD5
  
  b7b35a31d78c75def64aee156c5c53ec
- SHA1
  
  8fa640c80be072acc1fb1cf74f3c79cd53362b3b
- SHA256
  
  33cc76373134932f01dd52594394cc5be5dfa98bd0fd559a657ef07244edb3db
- SHA512
  
  aa4b68b8dfc2a20f7239256dbaaf741e87e4bb29801778e7c9a0b2cebef3cf6108de0221538d8dc542890bb062f82cd191c4782c7ab98a82ce48d05d293f48ca
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRh:knmj6xK1y3Ik6TZGRh
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan