icedid | c2765979a65e902a043c3681e2a60d3b134dd019e7b49c084705a290a98946ec | Triage

Sharing

General

Target

JaffaCakes118_c2765979a65e902a043c3681e2a60d3b134dd019e7b49c084705a290a98946ec
Size

490KB
Sample

241223-x3v4saylcl
MD5

4383e3fedce361cbd2f4b3b22a8bb0f2
SHA1

e5176d427b3bc1c329ff350e42d46ba42aecef10
SHA256

c2765979a65e902a043c3681e2a60d3b134dd019e7b49c084705a290a98946ec
SHA512

2d209551d7fc6c3dc0d102d8ad05cc2cfcfae4426191703154c97e4ea591209c1e334442539c5fc1aaebe13ce6862dafa07ee21e8aecb0304be5e85994f2e135
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4:knmj6xK1y3Ik6TZGR4

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c2765979a65e902a043c3681e2a60d3b134dd019e7b49c084705a290a98946ec
- Size
  
  490KB
- MD5
  
  4383e3fedce361cbd2f4b3b22a8bb0f2
- SHA1
  
  e5176d427b3bc1c329ff350e42d46ba42aecef10
- SHA256
  
  c2765979a65e902a043c3681e2a60d3b134dd019e7b49c084705a290a98946ec
- SHA512
  
  2d209551d7fc6c3dc0d102d8ad05cc2cfcfae4426191703154c97e4ea591209c1e334442539c5fc1aaebe13ce6862dafa07ee21e8aecb0304be5e85994f2e135
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR4:knmj6xK1y3Ik6TZGR4
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan