2023-01-31_15b81b40fb3d1588a6051f467ac9d16f_icedid_ipamor | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2023-01-31_15b81b40fb3d1588a6051f467ac9d16f_icedid_ipamor
Size

3.7MB
MD5

15b81b40fb3d1588a6051f467ac9d16f
SHA1

2c890435b1d03d814c4b8023c15138433c32a2fc
SHA256

d6b0857abf59258670dad6c5e56541f75509507ff40484237d15ddc12d15485c
SHA512

5e9c825aa103056cfdb472d76b64cd1eb3595de814a5c06478b82023231c659c2d06e6c667f9f7cf445b02a3e3d4ccab56ea221fabe9587cec5216f8a526d29a
SSDEEP

49152:OhwcS4nevZ1niizCouK9TOi913Z1niizCouK9TOi91khWPOmisL3GAGUTMT3x28f:OhxS4neN9998+CTk8f

Score

8^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

resource	yara_rule
sample	aspack_v212_v242

Files

2023-01-31_15b81b40fb3d1588a6051f467ac9d16f_icedid_ipamor
.exe windows

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 22KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE