Analysis
-
max time kernel
124s -
max time network
128s -
platform
windows10_x64 -
resource
win10-en-20211104 -
submitted
02-12-2021 11:50
Static task
static1
Behavioral task
behavioral1
Sample
core.bat
Resource
win7-en-20211014
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
core.bat
Resource
win10-en-20211014
0 signatures
0 seconds
Behavioral task
behavioral3
Sample
slab-64.tmp.dll
Resource
win7-en-20211104
0 signatures
0 seconds
Behavioral task
behavioral4
Sample
slab-64.tmp.dll
Resource
win10-en-20211104
0 signatures
0 seconds
General
-
Target
slab-64.tmp.dll
-
Size
124KB
-
MD5
e53f86eb06a67783781202b471580c82
-
SHA1
dc541cee7c0b810da890fa3ea0923599140a1561
-
SHA256
0a795eb53d21799c975e4f4c0ca3817960d85278faec68a04882216f1e3a3020
-
SHA512
175243cc7ec631c3128d7fc7c53244e7f8c2abe878393569746b57bea12a04005fb0734170e738384a60e14322eec1ee7ddd5d1661e62ba469a547592b4d197f
Score
10/10
Malware Config
Extracted
Family
icedid
Botnet
1892568649
C2
baeswea.com
bersaww.com
Attributes
-
auth_var
10
-
url_path
/news/
Signatures
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/3576-118-0x000001AD8B330000-0x000001AD8B367000-memory.dmpFilesize
220KB