General
-
Target
8f0aff5920d87c5e9b489b39564e9c5aedd2fb47e4a995d85ae5024baa89d661
-
Size
19KB
-
MD5
ab92250c230b4fe73cbcc5a34073210b
-
SHA1
4fffb109cb84c715359da83dc547780b9071e644
-
SHA256
8f0aff5920d87c5e9b489b39564e9c5aedd2fb47e4a995d85ae5024baa89d661
-
SHA512
edd38baddcdfcb353b09c4359eaabe760ab85caed7dcdbc7f3b40dea1b0c6196c67787b6ca0e6f724196b34685756fc3e1f3702b1d90b42b67d2a680d3ee0db2
-
SSDEEP
96:XJCIIsOfoWFOsJmLE0qHfFr5spoPwTD6QS0H1j:Z7OwWF6Q08bJPsnS
Malware Config
Extracted
icedid
Signatures
-
Icedid family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8f0aff5920d87c5e9b489b39564e9c5aedd2fb47e4a995d85ae5024baa89d661
Files
-
8f0aff5920d87c5e9b489b39564e9c5aedd2fb47e4a995d85ae5024baa89d661.dll windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 624B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 108B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ