icedid | c2f0e74fc47f25873f02a565b88440138689d62981ffc15141d796847955ca19 | Triage

Sharing

General

Target

JaffaCakes118_c2f0e74fc47f25873f02a565b88440138689d62981ffc15141d796847955ca19
Size

490KB
Sample

241223-sgzsmasrdj
MD5

fd2eb0a8576544ff2277c35aab67f237
SHA1

e3323ac4547245f27c04a9d79f981450c04540cb
SHA256

c2f0e74fc47f25873f02a565b88440138689d62981ffc15141d796847955ca19
SHA512

01615b347875f4c0685c1fbb4fe0401c88d82eb49126c47410db26824e513b9272191c3295d35dc6539a9acf80532c491cebd0337cb3cb9f05436915f0b73de1
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c2f0e74fc47f25873f02a565b88440138689d62981ffc15141d796847955ca19
- Size
  
  490KB
- MD5
  
  fd2eb0a8576544ff2277c35aab67f237
- SHA1
  
  e3323ac4547245f27c04a9d79f981450c04540cb
- SHA256
  
  c2f0e74fc47f25873f02a565b88440138689d62981ffc15141d796847955ca19
- SHA512
  
  01615b347875f4c0685c1fbb4fe0401c88d82eb49126c47410db26824e513b9272191c3295d35dc6539a9acf80532c491cebd0337cb3cb9f05436915f0b73de1
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRi:knmj6xK1y3Ik6TZGRi
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan