General
-
Target
document_32_invoice#PDF.msi
-
Size
660KB
-
Sample
221206-zwgzpafh5x
-
MD5
86eb208705e4763325a02c5a5e0192cf
-
SHA1
48619e828167158af93509a6b6b98178d6e1ae4b
-
SHA256
83d74fc76b2d4c149b60ba5681cfc01eac95a7bc41903e05a25945fdf63702eb
-
SHA512
7ce0225a026a610b8a61156b78e59ba85005a0fc872f5b9a9900e15d170cfb9347f80cdc818019c9e2029e93ae28473fea5ea67622281fc137ab20220d4749b6
-
SSDEEP
12288:QwHL0D7KkCPumy9chfA+te5O//4777777LwmqL2SBF3u:lHL06/zyt+85OXj6oF3u
Static task
static1
Behavioral task
behavioral1
Sample
document_32_invoice#PDF.msi
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
document_32_invoice#PDF.msi
Resource
win10v2004-20221111-en
Malware Config
Extracted
icedid
764376559
saintrefunda.com
Targets
-
-
Target
document_32_invoice#PDF.msi
-
Size
660KB
-
MD5
86eb208705e4763325a02c5a5e0192cf
-
SHA1
48619e828167158af93509a6b6b98178d6e1ae4b
-
SHA256
83d74fc76b2d4c149b60ba5681cfc01eac95a7bc41903e05a25945fdf63702eb
-
SHA512
7ce0225a026a610b8a61156b78e59ba85005a0fc872f5b9a9900e15d170cfb9347f80cdc818019c9e2029e93ae28473fea5ea67622281fc137ab20220d4749b6
-
SSDEEP
12288:QwHL0D7KkCPumy9chfA+te5O//4777777LwmqL2SBF3u:lHL06/zyt+85OXj6oF3u
-
Blocklisted process makes network request
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-