Analysis
-
max time kernel
20s -
max time network
34s -
platform
windows7_x64 -
resource
win7-20221111-en -
resource tags
arch:x64arch:x86image:win7-20221111-enlocale:en-usos:windows7-x64system -
submitted
21-11-2022 12:20
Static task
static1
Behavioral task
behavioral1
Sample
b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe
Resource
win7-20221111-en
windows7-x64
2 signatures
150 seconds
General
-
Target
b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe
-
Size
556KB
-
MD5
fba0b19958c1110cb7018c948527e7db
-
SHA1
84c8aaaa6e85a7a75e84b23e26d57e9e904a197b
-
SHA256
b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936
-
SHA512
e94a042ba5b26fe08d7e424b62de52e9c99ad660a55ed69462750bb7d1e6c7d8b369f8bf41efad96c8a69061ee2060029246ecac84698d5027ae92c616016d04
-
SSDEEP
6144:PQJt0hn3E6U3DHpwKyLmKyLmKyLYpLVDq+z6wsdsYqWkMP2QW8jqzf:Qu1spwkkqidS/MP2P3
Malware Config
Extracted
Family
icedid
Campaign
181658900
C2
asiksliopakt.com
Signatures
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exepid process 1364 b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe 1364 b9b91adc3e123484ae08b2fa92e85ced6de12605e0d60c96e3e9a22a5148f936.exe