Analysis
-
max time kernel
4294183s -
max time network
124s -
platform
windows7_x64 -
resource
win7-20220223-en -
submitted
25-02-2022 22:44
Static task
static1
Behavioral task
behavioral1
Sample
core.bat
Resource
win7-en-20211208
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
core.bat
Resource
win10v2004-en-20220113
windows10-2004_x64
0 signatures
0 seconds
Behavioral task
behavioral3
Sample
ridex32.dll
Resource
win7-20220223-en
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral4
Sample
ridex32.dll
Resource
win10v2004-en-20220112
windows10-2004_x64
0 signatures
0 seconds
General
-
Target
ridex32.dll
-
Size
516KB
-
MD5
84fe5ea0c194f8a2c05c309fbdb60b66
-
SHA1
fbe82b2cedee2c3e0598fad8c35cd753220cdd25
-
SHA256
bb4e329e8e03b60002a2d6d22c50ac8c23a786af5d70ba7d48bd53dff093e27b
-
SHA512
90c6a6e9cacc1cebc655203ccbfa44730b1bd5d5735c797cf6935983537d7dfbf2c5c53e5d6fe88a87fa83e53f5ed4a46c955441662be387974b664e25c47057
Score
10/10
Malware Config
Extracted
Family
icedid
Botnet
3560182600
C2
coolbearblunts.com
cooldogblunts.com
Attributes
-
auth_var
2
-
url_path
/news/
Signatures
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1992-54-0x0000000000220000-0x0000000000225000-memory.dmpFilesize
20KB