icedid | e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

JaffaCakes...98.dll

windows7-x64

JaffaCakes...98.dll

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198
Size

490KB
Sample

241223-wgt4xswpgs
MD5

54f298335c61d928924a7db04179a46e
SHA1

b1ff50bef03acfa5ca377f1a0789095442ecaba0
SHA256

e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198
SHA512

5a53ae2f56cc5045c9110278b096ffbbac995849183c87dcd13e668c2cb4117d81b9f141299207f576662602b0017bd9d736fb69a7e62e8ab639005147e14d1c
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRS:knmj6xK1y3Ik6TZGRS

Score

10^/10

icedid 3467965077 banker loader trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198.dll

Resource

win7-20240708-en

icedid 3467965077 banker loader trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198.dll

Resource

win10v2004-20241007-en

icedid 3467965077 banker loader trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198
- Size
  
  490KB
- MD5
  
  54f298335c61d928924a7db04179a46e
- SHA1
  
  b1ff50bef03acfa5ca377f1a0789095442ecaba0
- SHA256
  
  e5c2f012f5a1c56056ad9708c6f7a8fac0a9049e39e89176aa8b9ba7351d8198
- SHA512
  
  5a53ae2f56cc5045c9110278b096ffbbac995849183c87dcd13e668c2cb4117d81b9f141299207f576662602b0017bd9d736fb69a7e62e8ab639005147e14d1c
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRS:knmj6xK1y3Ik6TZGRS
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.