icedid | c9d111472f6fec4b803ad59b6c93ddf34d91afe5f92f9fff927e0d7088b09c64 | Triage

Sharing

General

Target

JaffaCakes118_c9d111472f6fec4b803ad59b6c93ddf34d91afe5f92f9fff927e0d7088b09c64
Size

490KB
Sample

241223-yvebqszlfq
MD5

fc9769ce573b02948d979c020c05c078
SHA1

aa6afe422e335669222d64059ec876f06660d2c0
SHA256

c9d111472f6fec4b803ad59b6c93ddf34d91afe5f92f9fff927e0d7088b09c64
SHA512

c175332ab76898883ebbc16d508da54bc7178c631402b9268685aff147c8a6fe341defca4f17cef5449936fa7650f6081ab9d2252f03f5f3cf123dea93803118
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRY:knmj6xK1y3Ik6TZGRY

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_c9d111472f6fec4b803ad59b6c93ddf34d91afe5f92f9fff927e0d7088b09c64
- Size
  
  490KB
- MD5
  
  fc9769ce573b02948d979c020c05c078
- SHA1
  
  aa6afe422e335669222d64059ec876f06660d2c0
- SHA256
  
  c9d111472f6fec4b803ad59b6c93ddf34d91afe5f92f9fff927e0d7088b09c64
- SHA512
  
  c175332ab76898883ebbc16d508da54bc7178c631402b9268685aff147c8a6fe341defca4f17cef5449936fa7650f6081ab9d2252f03f5f3cf123dea93803118
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRY:knmj6xK1y3Ik6TZGRY
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan