icedid | 370980b64362bd39e07f4c4da59dd5bcccc54765660b8ec1b2f7147f4d7bb857 | Triage

Sharing

General

Target

JaffaCakes118_370980b64362bd39e07f4c4da59dd5bcccc54765660b8ec1b2f7147f4d7bb857
Size

490KB
Sample

241223-tk7s3strax
MD5

dd70731ebdf756d7331eda386ad2ca73
SHA1

11382e6c6139c8da804fdbc110f8117afdb7805f
SHA256

370980b64362bd39e07f4c4da59dd5bcccc54765660b8ec1b2f7147f4d7bb857
SHA512

203620e30bf77063f0227e8f4e3063c25311f30c29ffd21322e09c7f63ad3fb2ffcccc73c233c645d2bc597569f479b4e6a2e045d77e8878fc20faa56d6896f4
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_370980b64362bd39e07f4c4da59dd5bcccc54765660b8ec1b2f7147f4d7bb857
- Size
  
  490KB
- MD5
  
  dd70731ebdf756d7331eda386ad2ca73
- SHA1
  
  11382e6c6139c8da804fdbc110f8117afdb7805f
- SHA256
  
  370980b64362bd39e07f4c4da59dd5bcccc54765660b8ec1b2f7147f4d7bb857
- SHA512
  
  203620e30bf77063f0227e8f4e3063c25311f30c29ffd21322e09c7f63ad3fb2ffcccc73c233c645d2bc597569f479b4e6a2e045d77e8878fc20faa56d6896f4
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRw:knmj6xK1y3Ik6TZGRw
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan