General
-
Target
1700-54-0x0000000180000000-0x0000000180005000-memory.dmp
-
Size
20KB
-
MD5
4d8184cefd57bcb3c2bf10fc34e94769
-
SHA1
73acc63407860d741527071fb06faec9890a78b1
-
SHA256
ee5ceb58aa5765e52f226d45872b8c4a68e376d155df3a96cf1dae6f6673f92c
-
SHA512
64fe7003cc026251f2724505ff92294309abed68df8f9f60a79f9a6d74dbc8f030cdd106d8c54e3e0d2a4e1f38e530dc4b4c432298f2e5c892d38bd4c1ffe5c3
-
SSDEEP
96:8w2G4Oe2NG7IsOV6ZPtEqbwKrtsRhIc7DI6QjLt9xH:PeOGkss6xXwW4r0njL3xH
Score
10/10
Malware Config
Extracted
Family
icedid
Botnet
998075300
C2
alishaskainz.com
villageskaier.com
Attributes
-
auth_var
56
-
url_path
/news/
Signatures
-
Icedid family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
1700-54-0x0000000180000000-0x0000000180005000-memory.dmp
Headers
Sections