icedid | 9cef86cde115e9a60e66f7fb066080a20ef90dd40e082e5a4680b7bf9d1f6266 | Triage

Sharing

General

Target

JaffaCakes118_9cef86cde115e9a60e66f7fb066080a20ef90dd40e082e5a4680b7bf9d1f6266
Size

490KB
Sample

241223-v6tzsawmhp
MD5

30ea2933a4f8c30a54377b3d8fd5b6cd
SHA1

c17e8a86a737e6736f5904cc8c837537ee063293
SHA256

9cef86cde115e9a60e66f7fb066080a20ef90dd40e082e5a4680b7bf9d1f6266
SHA512

4b3adbea8f91dd1b7bb3ae6fabb8877bbc9db300ce3b3ff22d995858a20692834f301a13cc1a9831dc4723ee33cd45800e543b0d960b9c29fc34906978ae9f58
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_9cef86cde115e9a60e66f7fb066080a20ef90dd40e082e5a4680b7bf9d1f6266
- Size
  
  490KB
- MD5
  
  30ea2933a4f8c30a54377b3d8fd5b6cd
- SHA1
  
  c17e8a86a737e6736f5904cc8c837537ee063293
- SHA256
  
  9cef86cde115e9a60e66f7fb066080a20ef90dd40e082e5a4680b7bf9d1f6266
- SHA512
  
  4b3adbea8f91dd1b7bb3ae6fabb8877bbc9db300ce3b3ff22d995858a20692834f301a13cc1a9831dc4723ee33cd45800e543b0d960b9c29fc34906978ae9f58
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR8:knmj6xK1y3Ik6TZGR8
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan