icedid | e2cd624207fe2fccf7b32de4e09a92181594fba74fd39ae3e129bbcd551ec032 | Triage

Sharing

General

Target

JaffaCakes118_e2cd624207fe2fccf7b32de4e09a92181594fba74fd39ae3e129bbcd551ec032
Size

490KB
Sample

241223-wtrvbsxjcp
MD5

e6a0109e87c9171a88729fc80448a526
SHA1

b2ddc402a4501df369a92a3b0728e0bd64b8c72b
SHA256

e2cd624207fe2fccf7b32de4e09a92181594fba74fd39ae3e129bbcd551ec032
SHA512

49d0d0ef6479dfc7a2f7d3e03737cc5e4b30c50f02ae17effa66b5f28f536132ac28daefe72fd88eed600ed3682a5c4c0d5ef523be5d334d446fcaa1c4d83358
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_e2cd624207fe2fccf7b32de4e09a92181594fba74fd39ae3e129bbcd551ec032
- Size
  
  490KB
- MD5
  
  e6a0109e87c9171a88729fc80448a526
- SHA1
  
  b2ddc402a4501df369a92a3b0728e0bd64b8c72b
- SHA256
  
  e2cd624207fe2fccf7b32de4e09a92181594fba74fd39ae3e129bbcd551ec032
- SHA512
  
  49d0d0ef6479dfc7a2f7d3e03737cc5e4b30c50f02ae17effa66b5f28f536132ac28daefe72fd88eed600ed3682a5c4c0d5ef523be5d334d446fcaa1c4d83358
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRu:knmj6xK1y3Ik6TZGRu
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan