icedid | 9c200aa9f32e466a0784349079d09f13f28c64928f5372bd99080cee5fabb1b3 | Triage

Sharing

General

Target

JaffaCakes118_9c200aa9f32e466a0784349079d09f13f28c64928f5372bd99080cee5fabb1b3
Size

490KB
Sample

241223-yavg8ayncl
MD5

40a8f1b41d80361f4708012bd139b314
SHA1

3c477befb13078f2a61412e6baa549e6f6df4222
SHA256

9c200aa9f32e466a0784349079d09f13f28c64928f5372bd99080cee5fabb1b3
SHA512

098d3f0b9cf1400438e6c8127ba760a6361542951bea7840a87ac8114e55189974de6ef5d8fd4336bb7051bd8b9c74d55b31a8345a67d736f5cfb791412bb0d8
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_9c200aa9f32e466a0784349079d09f13f28c64928f5372bd99080cee5fabb1b3
- Size
  
  490KB
- MD5
  
  40a8f1b41d80361f4708012bd139b314
- SHA1
  
  3c477befb13078f2a61412e6baa549e6f6df4222
- SHA256
  
  9c200aa9f32e466a0784349079d09f13f28c64928f5372bd99080cee5fabb1b3
- SHA512
  
  098d3f0b9cf1400438e6c8127ba760a6361542951bea7840a87ac8114e55189974de6ef5d8fd4336bb7051bd8b9c74d55b31a8345a67d736f5cfb791412bb0d8
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaR/:knmj6xK1y3Ik6TZGR/
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan