icedid | dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74 | Triage

Sharing

General

Target

JaffaCakes118_dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74
Size

708.5MB
Sample

241223-vm1yzswjbr
MD5

261631519ce1a1bb69b1a04a7700edcb
SHA1

ac807c97c169e277250f6ba3223abb6767e6c579
SHA256

dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74
SHA512

ad292300c61ac749c14f2c75fcee3734147379583d595871a3f379657a2d02214cde3fcc5cbc260d5e96da777ceea0067daec7945ec56c63007fd8b201a60a34
SSDEEP

6144:7Zgq7M6B8PwXaS6Wm8ftjcpRP8xrc6osT1o+EcxJkdfuS3tfkYohtFtvbqSnYkAC:VgEM6BNhm8flcpRPKb1hgHofFtbxqy

Score

10^/10

icedid 1494101503 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

1494101503

C2

staringgeipod.com

Targets

- Target
  
  JaffaCakes118_dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74
- Size
  
  708.5MB
- MD5
  
  261631519ce1a1bb69b1a04a7700edcb
- SHA1
  
  ac807c97c169e277250f6ba3223abb6767e6c579
- SHA256
  
  dbc3e3c4ad4a0ee6623935dbc20dbe9d765f783c10b9e1f9e5774c935b06fe74
- SHA512
  
  ad292300c61ac749c14f2c75fcee3734147379583d595871a3f379657a2d02214cde3fcc5cbc260d5e96da777ceea0067daec7945ec56c63007fd8b201a60a34
- SSDEEP
  
  6144:7Zgq7M6B8PwXaS6Wm8ftjcpRP8xrc6osT1o+EcxJkdfuS3tfkYohtFtvbqSnYkAC:VgEM6BNhm8flcpRPKb1hgHofFtbxqy
Score

10^/10

icedid 1494101503 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid1494101503bankerloadertrojan

behavioral2

icedid1494101503bankerloadertrojan