icedid | 42cc970fa26e4dc47141f934af4ae0cf3b6d74d958ca5616c6d05cacc8317cb2 | Triage

Sharing

General

Target

JaffaCakes118_42cc970fa26e4dc47141f934af4ae0cf3b6d74d958ca5616c6d05cacc8317cb2
Size

490KB
Sample

241224-bvt1vsxrfp
MD5

17646858618bfbc885270074f035d91d
SHA1

2935b8d79a381a5b0570ff40a918a7ae28b18ba6
SHA256

42cc970fa26e4dc47141f934af4ae0cf3b6d74d958ca5616c6d05cacc8317cb2
SHA512

eb43801a435c98537bc8cc9d2e461328d1c816c826d795acd13a7cf26b8ec2036f197a60d89ac640eac31b188510a88bb730a4b1542aeb321db25fec500ca645
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_42cc970fa26e4dc47141f934af4ae0cf3b6d74d958ca5616c6d05cacc8317cb2
- Size
  
  490KB
- MD5
  
  17646858618bfbc885270074f035d91d
- SHA1
  
  2935b8d79a381a5b0570ff40a918a7ae28b18ba6
- SHA256
  
  42cc970fa26e4dc47141f934af4ae0cf3b6d74d958ca5616c6d05cacc8317cb2
- SHA512
  
  eb43801a435c98537bc8cc9d2e461328d1c816c826d795acd13a7cf26b8ec2036f197a60d89ac640eac31b188510a88bb730a4b1542aeb321db25fec500ca645
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRp:knmj6xK1y3Ik6TZGRp
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan