66595eae923deb9dc4cd623bd7f35f405b668b5ef7c64d57ad783dbcca20a214 | Triage

Sharing

General

Target

2024-02-18_7f929f3dce90ec658201b61895e72038_icedid
Size

284KB
Sample

240218-ps2jtaae62
MD5

7f929f3dce90ec658201b61895e72038
SHA1

dc93134fd36c2499a59bcca2daf7b638d3c3b749
SHA256

66595eae923deb9dc4cd623bd7f35f405b668b5ef7c64d57ad783dbcca20a214
SHA512

e31876bdf998a3f45a65eabe5f3231ad567a4eb0dc089ecd3cdc98df11df22bf33855f463e11dbfa69e02a032b1f3d72964c1bc438482d968f24518d32d1c073
SSDEEP

6144:SlDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:SlDx7mlHZo7HoRv177ePH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2024-02-18_7f929f3dce90ec658201b61895e72038_icedid
- Size
  
  284KB
- MD5
  
  7f929f3dce90ec658201b61895e72038
- SHA1
  
  dc93134fd36c2499a59bcca2daf7b638d3c3b749
- SHA256
  
  66595eae923deb9dc4cd623bd7f35f405b668b5ef7c64d57ad783dbcca20a214
- SHA512
  
  e31876bdf998a3f45a65eabe5f3231ad567a4eb0dc089ecd3cdc98df11df22bf33855f463e11dbfa69e02a032b1f3d72964c1bc438482d968f24518d32d1c073
- SSDEEP
  
  6144:SlDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:SlDx7mlHZo7HoRv177ePH
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2