General

  • Target

    2024-03-09_6965b255af132e079f90035d5374f1c6_hacktools_icedid_mimikatz

  • Size

    7.7MB

  • MD5

    6965b255af132e079f90035d5374f1c6

  • SHA1

    fb56955a8b515b29700c2a1496c4ef765bff8e9a

  • SHA256

    c25a2f68f058ecb75c25c23fc18e756870ea836d6853929fb967ead423100c0e

  • SHA512

    5bb1f8c24dbb11fda758651d4a8f7e8776ef42f3137b36c5736bbece6f4618f9b7d1efb39a7309f2694dae66e4dc0f6ff297bd0aee4bc28c145faaafd727e7ce

  • SSDEEP

    98304:YmBtyYXmknGzZr+HdO5SEPFtmOZ9G1Md5v/nZVnivsAl0eXTBJYa5roSCaa:I6mknGzwHdOgEPHd9BbX/nivPlTXTYr

Score
10/10

Malware Config

Signatures

  • Mimikatz family
  • UPX dump on OEP (original entry point) 1 IoCs
  • mimikatz is an open source tool to dump credentials on Windows 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 2024-03-09_6965b255af132e079f90035d5374f1c6_hacktools_icedid_mimikatz
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections