Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Malicious_b6cd234b8440764f61195d5a984b6f279ef350dbc9a98d573a2a2abfb509913a.exe

  • Size

    64KB

  • Sample

    230702-xwfqhsea3t

  • MD5

    3790fbb29e8e00770dd1b46fb5339eb9

  • SHA1

    d6fa153b30822c942cdff0bc99749fbb5d3bc766

  • SHA256

    b6cd234b8440764f61195d5a984b6f279ef350dbc9a98d573a2a2abfb509913a

  • SHA512

    4efc0ad2334ca76a5cded797d25b29266d0d179c87c6e90de73ad3b62bebd0c59b7753631e27c282cbce004c385283bdf0fcfdd68fb1301c098ea3f7be12904b

  • SSDEEP

    1536:roBHSfku/TguqNKM6C6E+YUv3EXmYOiKsU:roBS8Q0R68Xys

Malware Config

Extracted

Family

icedid

Campaign

2046050

C2

calldivorce.fun

Targets

    • Target

      Malicious_b6cd234b8440764f61195d5a984b6f279ef350dbc9a98d573a2a2abfb509913a.exe

    • Size

      64KB

    • MD5

      3790fbb29e8e00770dd1b46fb5339eb9

    • SHA1

      d6fa153b30822c942cdff0bc99749fbb5d3bc766

    • SHA256

      b6cd234b8440764f61195d5a984b6f279ef350dbc9a98d573a2a2abfb509913a

    • SHA512

      4efc0ad2334ca76a5cded797d25b29266d0d179c87c6e90de73ad3b62bebd0c59b7753631e27c282cbce004c385283bdf0fcfdd68fb1301c098ea3f7be12904b

    • SSDEEP

      1536:roBHSfku/TguqNKM6C6E+YUv3EXmYOiKsU:roBS8Q0R68Xys

    • IcedID, BokBot

      IcedID is a banking trojan capable of stealing credentials.

    • IcedID First Stage Loader

MITRE ATT&CK Matrix

Tasks