General
-
Target
cbfd95f59689ad3f3ac862d25492e6e6.bin
-
Size
1.3MB
-
Sample
230116-2r33gaeg75
-
MD5
6b70d70799f079787130324efafca01a
-
SHA1
0b667d1eec3f037cb2f38dc02444a4e609858df6
-
SHA256
68975ef954bcefb9c54e5853d2caa3a8251ba0f406550d97cee25d88fac06f7e
-
SHA512
2c7d00619775fd2dd38bde0e7fadf34c6d40e305c0ad34ccee3b455b8d48b3a6c7ee9166112f1ba22d31070b636069e42d1fdf6e9b22bddc1f767705fb47a9c4
-
SSDEEP
24576:7Mtq2QF5utycD3rjtE10eAiez+TY6wadsIL4JU/sYROvf0X9KNaP:rOycD3f2+iz89zm4JU/sNvf1NaP
Behavioral task
behavioral1
Sample
88917fe31db801e9c3d13b93487bbf089bfb90b5e72465b33b042bca8360f073.docm
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
88917fe31db801e9c3d13b93487bbf089bfb90b5e72465b33b042bca8360f073.docm
Resource
win10v2004-20221111-en
Malware Config
Extracted
icedid
1212497363
trbiriumpa.com
Targets
-
-
Target
88917fe31db801e9c3d13b93487bbf089bfb90b5e72465b33b042bca8360f073.docm
-
Size
1.3MB
-
MD5
cbfd95f59689ad3f3ac862d25492e6e6
-
SHA1
b1417d5860d7179f15d1545cc79f5bae9a8d8997
-
SHA256
88917fe31db801e9c3d13b93487bbf089bfb90b5e72465b33b042bca8360f073
-
SHA512
33d58ee41f5c1506aabcbee882b00892dd06f9109d02a2965000f4767a29111b77807ae4104d552e0371c660a31c2c5c491437ba4514f76074671394e5938123
-
SSDEEP
24576:/FkpJmLOgHWi8bj11H2w5inpF7sONo/qiy7L9pvRDVG7EzqHm+Bmcc:/FkpJmgf3zliFpp+KqG+8
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-
Loads dropped DLL
-