692c60c6e3f7efd735d067978145e67f74292c239dfa3788038299eb359337d3 | Triage

Sharing

General

Target

2024-03-06_5ef445daa7878ac15623e8178961a6b3_icedid
Size

284KB
Sample

240306-s1224abe98
MD5

5ef445daa7878ac15623e8178961a6b3
SHA1

448ce6eccda4e14884c9b7cfc8fd70819e2ff132
SHA256

692c60c6e3f7efd735d067978145e67f74292c239dfa3788038299eb359337d3
SHA512

a834426e45d47a45303ed069e313dd7a9543148275642ac1e101dbf97b48f129f172c2571b46163be5e69874ce6a26c49b3e944c028cd3da4cdccbc7486b7e88
SSDEEP

6144:blDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:blDx7mlHZo7HoRv177ePH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2024-03-06_5ef445daa7878ac15623e8178961a6b3_icedid
- Size
  
  284KB
- MD5
  
  5ef445daa7878ac15623e8178961a6b3
- SHA1
  
  448ce6eccda4e14884c9b7cfc8fd70819e2ff132
- SHA256
  
  692c60c6e3f7efd735d067978145e67f74292c239dfa3788038299eb359337d3
- SHA512
  
  a834426e45d47a45303ed069e313dd7a9543148275642ac1e101dbf97b48f129f172c2571b46163be5e69874ce6a26c49b3e944c028cd3da4cdccbc7486b7e88
- SSDEEP
  
  6144:blDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:blDx7mlHZo7HoRv177ePH
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2