icedid | ee5ceb58aa5765e52f226d45872b8c4a68e376d155df3a96cf1dae6f6673f92c | Triage

Sharing

General

Target

1700-54-0x0000000180000000-0x0000000180005000-memory.dmp
Size

20KB
Sample

240305-ayhlkahc4y
MD5

4d8184cefd57bcb3c2bf10fc34e94769
SHA1

73acc63407860d741527071fb06faec9890a78b1
SHA256

ee5ceb58aa5765e52f226d45872b8c4a68e376d155df3a96cf1dae6f6673f92c
SHA512

64fe7003cc026251f2724505ff92294309abed68df8f9f60a79f9a6d74dbc8f030cdd106d8c54e3e0d2a4e1f38e530dc4b4c432298f2e5c892d38bd4c1ffe5c3
SSDEEP

96:8w2G4Oe2NG7IsOV6ZPtEqbwKrtsRhIc7DI6QjLt9xH:PeOGkss6xXwW4r0njL3xH

Score

10^/10

icedid 998075300 core_loader

Malware Config

Extracted

Family

icedid

Botnet

998075300

C2

alishaskainz.com

villageskaier.com

Attributes

auth_var
56
url_path
/news/

Targets

- Target
  
  1700-54-0x0000000180000000-0x0000000180005000-memory.dmp
- Size
  
  20KB
- MD5
  
  4d8184cefd57bcb3c2bf10fc34e94769
- SHA1
  
  73acc63407860d741527071fb06faec9890a78b1
- SHA256
  
  ee5ceb58aa5765e52f226d45872b8c4a68e376d155df3a96cf1dae6f6673f92c
- SHA512
  
  64fe7003cc026251f2724505ff92294309abed68df8f9f60a79f9a6d74dbc8f030cdd106d8c54e3e0d2a4e1f38e530dc4b4c432298f2e5c892d38bd4c1ffe5c3
- SSDEEP
  
  96:8w2G4Oe2NG7IsOV6ZPtEqbwKrtsRhIc7DI6QjLt9xH:PeOGkss6xXwW4r0njL3xH
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

core_loader998075300icedid

behavioral1

behavioral2