8aec724d7110a25f5c51f93057a079e331ebd650c474247eff340f668facbac2 | Triage

Sharing

General

Target

2023-08-25_9ab57806721ced86e977e06321ee9fc6_icedid_JC.exe
Size

2.3MB
Sample

231013-z7helacg97
MD5

9ab57806721ced86e977e06321ee9fc6
SHA1

a92404bfd6e9fd4f37423ddfaabd9d5c30af4cf2
SHA256

8aec724d7110a25f5c51f93057a079e331ebd650c474247eff340f668facbac2
SHA512

6b6351fb58abdd6b4e3c571f936076fa2a3aee4730b89fcefc4f252fada7ad660e27625424ace5ce6d56a294e3774f00c8df1322ba2ad5b1f3e2e15e2ec13ba1
SSDEEP

49152:DaR4pOtF9hmZn2l+syXOCHAvXvTdEtaXw4F2nb0WamdXtyH:2RaOtF9vvZEIX4b0WamNts

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  2023-08-25_9ab57806721ced86e977e06321ee9fc6_icedid_JC.exe
- Size
  
  2.3MB
- MD5
  
  9ab57806721ced86e977e06321ee9fc6
- SHA1
  
  a92404bfd6e9fd4f37423ddfaabd9d5c30af4cf2
- SHA256
  
  8aec724d7110a25f5c51f93057a079e331ebd650c474247eff340f668facbac2
- SHA512
  
  6b6351fb58abdd6b4e3c571f936076fa2a3aee4730b89fcefc4f252fada7ad660e27625424ace5ce6d56a294e3774f00c8df1322ba2ad5b1f3e2e15e2ec13ba1
- SSDEEP
  
  49152:DaR4pOtF9hmZn2l+syXOCHAvXvTdEtaXw4F2nb0WamdXtyH:2RaOtF9vvZEIX4b0WamNts
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2