Overview

overview

10

Static

static

10

1824-54-0x...ry.dll

windows7-x64

3

1824-54-0x...ry.dll

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1824-54-0x0000000180000000-0x0000000180009000-memory.dmp

  • Size

    36KB

  • Sample

    220928-mwkpcsffd5

  • MD5

    f3ed0f2598d14a9cefbbb80bb0617116

  • SHA1

    25cd9b9a1cc227d00916be1c4ee15bbc100327c6

  • SHA256

    ca2f794c7d3a1e709c9f68ac84e6a6651182ac885e01d712d562484be1879920

  • SHA512

    685acf0f9178d99453ac06e67bb44f2601b962aa7fdc87fcb61fc299b9c1ac08c0ef280123509da201d62c551839f65fddc9bb06bbf6f809b3db66b1ddb6db1d

  • SSDEEP

    192:hHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgw+/WVHXBAQYfPq/3Kb:h1Mf0gJSix2AA56RCiZVzGQYnq/6b

Score
10/10
icedid973312338loader

Malware Config

Extracted

Family

icedid

Campaign

973312338

C2

tezycronam.com

Targets

    • Target

      1824-54-0x0000000180000000-0x0000000180009000-memory.dmp

    • Size

      36KB

    • MD5

      f3ed0f2598d14a9cefbbb80bb0617116

    • SHA1

      25cd9b9a1cc227d00916be1c4ee15bbc100327c6

    • SHA256

      ca2f794c7d3a1e709c9f68ac84e6a6651182ac885e01d712d562484be1879920

    • SHA512

      685acf0f9178d99453ac06e67bb44f2601b962aa7fdc87fcb61fc299b9c1ac08c0ef280123509da201d62c551839f65fddc9bb06bbf6f809b3db66b1ddb6db1d

    • SSDEEP

      192:hHVMfa7TTCjJSixzPSAA56RCK7Yu/VPgw+/WVHXBAQYfPq/3Kb:h1Mf0gJSix2AA56RCiZVzGQYnq/6b

    Score
    5/10

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks