icedid | c9bc8962f8f3f89ee09f86dfe341d33ff73bb0a0799adc0cc07c4fea0205bd52 | Triage

Sharing

General

Target

JaffaCakes118_c9bc8962f8f3f89ee09f86dfe341d33ff73bb0a0799adc0cc07c4fea0205bd52
Size

490KB
Sample

241223-xfyw6axngw
MD5

fcecf522f2f4393379399fe8f1693c30
SHA1

1a283dfc31c22caa7405527319a219e43d058c80
SHA256

c9bc8962f8f3f89ee09f86dfe341d33ff73bb0a0799adc0cc07c4fea0205bd52
SHA512

153d160ca492e60035f3f01051dc3ad1ef9c6001d95506dc5ea1b32f8b740fa8c35fefcf0e5b31fa9d1aee283ee29fec80f035198d9bc1e0e98aace3418ec18d
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c9bc8962f8f3f89ee09f86dfe341d33ff73bb0a0799adc0cc07c4fea0205bd52
- Size
  
  490KB
- MD5
  
  fcecf522f2f4393379399fe8f1693c30
- SHA1
  
  1a283dfc31c22caa7405527319a219e43d058c80
- SHA256
  
  c9bc8962f8f3f89ee09f86dfe341d33ff73bb0a0799adc0cc07c4fea0205bd52
- SHA512
  
  153d160ca492e60035f3f01051dc3ad1ef9c6001d95506dc5ea1b32f8b740fa8c35fefcf0e5b31fa9d1aee283ee29fec80f035198d9bc1e0e98aace3418ec18d
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRV:knmj6xK1y3Ik6TZGRV
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan