1b9352c16a98c3dcf715b2eec06fd0320345c73fe00b2f842a9420856ddb31ed | Triage

Sharing

General

Target

2024-02-12_d7554de78f0ab89f10608a30f7bd2e6e_icedid
Size

284KB
Sample

240212-v925kaaf71
MD5

d7554de78f0ab89f10608a30f7bd2e6e
SHA1

719dd3575f1535f18a11aa5836c77e41e5d32c30
SHA256

1b9352c16a98c3dcf715b2eec06fd0320345c73fe00b2f842a9420856ddb31ed
SHA512

9b2b6b4ba640d67093b0d6873c5e4b014c3d3824e963744f8f00e43e1fa0766ba6845eb8eaf822a19087d96fb475b8a5cfb90886a9e32cf6804fb3985a3b4f40
SSDEEP

6144:9lDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:9lDx7mlHZo7HoRv177ePH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2024-02-12_d7554de78f0ab89f10608a30f7bd2e6e_icedid
- Size
  
  284KB
- MD5
  
  d7554de78f0ab89f10608a30f7bd2e6e
- SHA1
  
  719dd3575f1535f18a11aa5836c77e41e5d32c30
- SHA256
  
  1b9352c16a98c3dcf715b2eec06fd0320345c73fe00b2f842a9420856ddb31ed
- SHA512
  
  9b2b6b4ba640d67093b0d6873c5e4b014c3d3824e963744f8f00e43e1fa0766ba6845eb8eaf822a19087d96fb475b8a5cfb90886a9e32cf6804fb3985a3b4f40
- SSDEEP
  
  6144:9lDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:9lDx7mlHZo7HoRv177ePH
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2