d9b82748757e35261b082e8a7215e3705c24a056ab6318b9a72b8be2cb25811e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.2023-09-05_e08ff767de1b2572a2dc2199da08e471_icedid_JC.exe
Size

1.3MB
Sample

231022-lfrmasgh56
MD5

e08ff767de1b2572a2dc2199da08e471
SHA1

420e81c7fecc4f90f9df7d75fa762c4a6fba6822
SHA256

d9b82748757e35261b082e8a7215e3705c24a056ab6318b9a72b8be2cb25811e
SHA512

360758f6b97d66e3ca8bca5621813f7922d0c9542721770a11a8c9663d1cdf7baae05df556303afdd7a7855c69d4f0ef700e61eac2ee6682c34f2e79fc003c50
SSDEEP

12288:Mccrv6Ck+8HCk+8z7qOeUYlGiUJBCm8VXtTF0ZTOuR:Uvi5YlGi7mCTuOuR

Score

6^/10

bootkit persistence

Malware Config

Targets

- Target
  
  NEAS.2023-09-05_e08ff767de1b2572a2dc2199da08e471_icedid_JC.exe
- Size
  
  1.3MB
- MD5
  
  e08ff767de1b2572a2dc2199da08e471
- SHA1
  
  420e81c7fecc4f90f9df7d75fa762c4a6fba6822
- SHA256
  
  d9b82748757e35261b082e8a7215e3705c24a056ab6318b9a72b8be2cb25811e
- SHA512
  
  360758f6b97d66e3ca8bca5621813f7922d0c9542721770a11a8c9663d1cdf7baae05df556303afdd7a7855c69d4f0ef700e61eac2ee6682c34f2e79fc003c50
- SSDEEP
  
  12288:Mccrv6Ck+8HCk+8z7qOeUYlGiUJBCm8VXtTF0ZTOuR:Uvi5YlGi7mCTuOuR
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

bootkitpersistence