General
-
Target
icedid.7z
-
Size
444KB
-
Sample
230809-syhwfaea51
-
MD5
4e12f1449f1418af598af4093547bca9
-
SHA1
1c9cd03b330156c01eb19259a1720ca7e51b1dc3
-
SHA256
46e78b5423fccf1ddbf06a891e5b045e1d4fd866edad642c72f32ca5bf047a6c
-
SHA512
bd7c89bd2de46f6eca2ac3fea79adabe22c5816839170f20a1dfb834165d037977efa045f20014501cd8da6693cfeb6dd13d3573803f3760518fb0e358c1b466
-
SSDEEP
12288:8XL9Gr+UbHTXOdNA9gGHoElYqmV4SSrLF9M16TS3:4xboO7AbHoEmV4SU4Q0
Static task
static1
Behavioral task
behavioral1
Sample
run.bat
Resource
win10v2004-20230703-en
Malware Config
Extracted
icedid
2646410796
abigelofraj.com
yhorneedminf.com
-
auth_var
16
-
url_path
/news/
Extracted
icedid
Targets
-
-
Target
run.bat
-
Size
113B
-
MD5
ff87147c511387b378277ce81b53e788
-
SHA1
2ee95ab4c950efd247d54556ed6c96a7c183bc41
-
SHA256
8c8e43712d252ccbcde1ea70b3c76386858c53ab7ebbfd4ea696976f2a728fa5
-
SHA512
8d6e46006d7be571b528194b655135c39a3e45ae22119b3f7f1bdc60b4c4371385fb5dadd87974a8be63b8241fd043f8922a2d6c7a58f87cca1059dbfc9429e1
-
Blocklisted process makes network request
-