General
-
Target
Iwowtiou1.dll
-
Size
4.5MB
-
Sample
210905-a5b3cshfhr
-
MD5
81b5922c26d007efa85d746f7e5cd175
-
SHA1
44b20bc1d9781cb19fd322043ea8cc549430a817
-
SHA256
0aa4eccf0ba03e7269c132d4542f13af44a7cb5c25ee156694e8e230bb6ef348
-
SHA512
81990781ce8fc6f660f6dd8dceb2dce05a0b07e77d79d2323a5b07a94ce70edc88f5c8b0692850d565ba59f3c2ae0c885281e52740228e60b1527715af8d2d56
Static task
static1
Behavioral task
behavioral1
Sample
Iwowtiou1.dll
Resource
win7-en
Behavioral task
behavioral2
Sample
Iwowtiou1.dll
Resource
win10v20210408
Malware Config
Extracted
icedid
1820688957
timerework.fun
pexxota.space
-
auth_var
6
-
url_path
/news/
Targets
-
-
Target
Iwowtiou1.dll
-
Size
4.5MB
-
MD5
81b5922c26d007efa85d746f7e5cd175
-
SHA1
44b20bc1d9781cb19fd322043ea8cc549430a817
-
SHA256
0aa4eccf0ba03e7269c132d4542f13af44a7cb5c25ee156694e8e230bb6ef348
-
SHA512
81990781ce8fc6f660f6dd8dceb2dce05a0b07e77d79d2323a5b07a94ce70edc88f5c8b0692850d565ba59f3c2ae0c885281e52740228e60b1527715af8d2d56
Score5/10-
Suspicious use of NtSetInformationThreadHideFromDebugger
-