Analysis
-
max time kernel
147s -
max time network
153s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
19-04-2022 06:09
Static task
static1
Behavioral task
behavioral1
Sample
4d3c594e119e5137a2baafc1174d57b08f7b8bbd8e9116331abf8063837c0222.exe
Resource
win7-20220414-en
windows7_x64
0 signatures
0 seconds
General
-
Target
4d3c594e119e5137a2baafc1174d57b08f7b8bbd8e9116331abf8063837c0222.exe
-
Size
364KB
-
MD5
b37ccf0c7fbef209b5ee1756a241d9b5
-
SHA1
44619b9187772777d2ffa0dc4f262f6dbec0d07a
-
SHA256
4d3c594e119e5137a2baafc1174d57b08f7b8bbd8e9116331abf8063837c0222
-
SHA512
9f2b10d6203308bd25a12b7f10445fd4ed23ff498b23f24739dfb9d7db3096c2b7150120864e94b97e9c2e465282131eca9b0e169fa1b98da4c115cc8699d4c6
Malware Config
Extracted
Family
icedid
C2
heredeire.xyz
Signatures
-
IcedID First Stage Loader 2 IoCs
Processes:
resource yara_rule behavioral1/memory/1464-54-0x00000000009B0000-0x00000000009B6000-memory.dmp IcedidFirstLoader behavioral1/memory/1464-55-0x00000000009B0000-0x0000000000A23000-memory.dmp IcedidFirstLoader