icedid | fdff84afe2feaf09dbaf0fdb315da36369fbab602714db4d423582c60c925a9d | Triage

Sharing

General

Target

JaffaCakes118_fdff84afe2feaf09dbaf0fdb315da36369fbab602714db4d423582c60c925a9d
Size

490KB
Sample

241223-rxstksslax
MD5

61bfcdf8bf2dcd100088c80242d07046
SHA1

6269edc57f974b8699ac5357603d07da167fd352
SHA256

fdff84afe2feaf09dbaf0fdb315da36369fbab602714db4d423582c60c925a9d
SHA512

944186bb00aef18c6736ce56ecc2907a0874aa52b96a38a74df4a4d4154f7c6efc2aec1d1ff23716cc3640bd683f68fd3869b26e3e7298c08b852855cee9503a
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRY:knmj6xK1y3Ik6TZGRY

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_fdff84afe2feaf09dbaf0fdb315da36369fbab602714db4d423582c60c925a9d
- Size
  
  490KB
- MD5
  
  61bfcdf8bf2dcd100088c80242d07046
- SHA1
  
  6269edc57f974b8699ac5357603d07da167fd352
- SHA256
  
  fdff84afe2feaf09dbaf0fdb315da36369fbab602714db4d423582c60c925a9d
- SHA512
  
  944186bb00aef18c6736ce56ecc2907a0874aa52b96a38a74df4a4d4154f7c6efc2aec1d1ff23716cc3640bd683f68fd3869b26e3e7298c08b852855cee9503a
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRY:knmj6xK1y3Ik6TZGRY
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan