icedid | 56776d1ff89b4936be0dcb6ee50e2e4b1815094529e45c30c309fc4299ef92b1 | Triage

Sharing

General

Target

JaffaCakes118_56776d1ff89b4936be0dcb6ee50e2e4b1815094529e45c30c309fc4299ef92b1
Size

490KB
Sample

241224-cdmqwsylds
MD5

1c17c4f7c4c3280b75770814c7e64be0
SHA1

288eba0fdaef6d9b7155b058e30f3113a2da2ee5
SHA256

56776d1ff89b4936be0dcb6ee50e2e4b1815094529e45c30c309fc4299ef92b1
SHA512

9196ac70d3d0f59bb50d4665edbf8491151984a8d4a57adc5fba61a4ffda65e5c9c0f13d8971656bc4bfeb76dc7d0d0792e97a43c00bbcab821417ee7c121ab8
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_56776d1ff89b4936be0dcb6ee50e2e4b1815094529e45c30c309fc4299ef92b1
- Size
  
  490KB
- MD5
  
  1c17c4f7c4c3280b75770814c7e64be0
- SHA1
  
  288eba0fdaef6d9b7155b058e30f3113a2da2ee5
- SHA256
  
  56776d1ff89b4936be0dcb6ee50e2e4b1815094529e45c30c309fc4299ef92b1
- SHA512
  
  9196ac70d3d0f59bb50d4665edbf8491151984a8d4a57adc5fba61a4ffda65e5c9c0f13d8971656bc4bfeb76dc7d0d0792e97a43c00bbcab821417ee7c121ab8
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRs:knmj6xK1y3Ik6TZGRs
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan