Overview

overview

7

Static

static

1

2023-02-17...mi.exe

windows7-x64

7

2023-02-17...mi.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2023-02-17_c67458b66654620c987e8972a061b44a_icedid_wapomi.exe

  • Size

    1.4MB

  • Sample

    230217-fypb1add81

  • MD5

    c67458b66654620c987e8972a061b44a

  • SHA1

    ba30abd10090c36a042a3d69b4cea193b61a07a6

  • SHA256

    b1e165a77e4b0de2cd16fdd3994e9cddf0d1f13f1e80bd277385c7d2a8943203

  • SHA512

    8844414bfedf5f80535174db0d4806c2dd72f1b8cde4b6b3b41a1218cf35689ec489108512e65093111e4312445ec1a6082a5c73b4d04def9bbe66561f911034

  • SSDEEP

    24576:0du5vgFkYZvT6D9fdqFgb2neiQTXYQq+ArdxX1ZYV52ErKB:uu5vgFkYKfdqFM2neiQTxq+Ar7X/SkEr

Score
7/10
aspackv2

Malware Config

Targets

    • Target

      2023-02-17_c67458b66654620c987e8972a061b44a_icedid_wapomi.exe

    • Size

      1.4MB

    • MD5

      c67458b66654620c987e8972a061b44a

    • SHA1

      ba30abd10090c36a042a3d69b4cea193b61a07a6

    • SHA256

      b1e165a77e4b0de2cd16fdd3994e9cddf0d1f13f1e80bd277385c7d2a8943203

    • SHA512

      8844414bfedf5f80535174db0d4806c2dd72f1b8cde4b6b3b41a1218cf35689ec489108512e65093111e4312445ec1a6082a5c73b4d04def9bbe66561f911034

    • SSDEEP

      24576:0du5vgFkYZvT6D9fdqFgb2neiQTXYQq+ArdxX1ZYV52ErKB:uu5vgFkYKfdqFM2neiQTxq+Ar7X/SkEr

    Score
    7/10
    aspackv2

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks