icedid | 9dbefb61242cacef72a8428f77225b1d8ddd49e419839b2a1fe02edb7162e334 | Triage

Sharing

General

Target

JaffaCakes118_9dbefb61242cacef72a8428f77225b1d8ddd49e419839b2a1fe02edb7162e334
Size

490KB
Sample

241223-rhgg1a1rcr
MD5

42795ae3399dc3cf1e51e9358d645984
SHA1

d7d85070b88335a6cfbd745d52ae683932983af0
SHA256

9dbefb61242cacef72a8428f77225b1d8ddd49e419839b2a1fe02edb7162e334
SHA512

73d935be39de5b83c0efe9852b4edb1fa5984e838598d20b4b9482ba1b4cee4ba91608622402d99790405216b234526a5debb3b356a1977035e072b47ae78f10
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0:knmj6xK1y3Ik6TZGR0

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_9dbefb61242cacef72a8428f77225b1d8ddd49e419839b2a1fe02edb7162e334
- Size
  
  490KB
- MD5
  
  42795ae3399dc3cf1e51e9358d645984
- SHA1
  
  d7d85070b88335a6cfbd745d52ae683932983af0
- SHA256
  
  9dbefb61242cacef72a8428f77225b1d8ddd49e419839b2a1fe02edb7162e334
- SHA512
  
  73d935be39de5b83c0efe9852b4edb1fa5984e838598d20b4b9482ba1b4cee4ba91608622402d99790405216b234526a5debb3b356a1977035e072b47ae78f10
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR0:knmj6xK1y3Ik6TZGR0
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan