997c6d76d942287bb9790b0387adafc84719c9a9a54e7f6b529c44396bfe777b | Triage

Sharing

General

Target

2024-03-25_8f594e57f096429b005200d3f527a0e3_icedid
Size

284KB
Sample

240325-sx4frabg79
MD5

8f594e57f096429b005200d3f527a0e3
SHA1

553e899af9b00be4dffbeea9577bd138c1c74bb6
SHA256

997c6d76d942287bb9790b0387adafc84719c9a9a54e7f6b529c44396bfe777b
SHA512

521eb3f65d23fcc712737aab3f8709fd066d64e063eb24821a05e886ae65b7fbfa683e93651d36d92ff8ff7afd65ac63a8cbd5899aa8b8e574428265cfcb87bf
SSDEEP

6144:mlDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:mlDx7mlHZo7HoRv177ePH

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  2024-03-25_8f594e57f096429b005200d3f527a0e3_icedid
- Size
  
  284KB
- MD5
  
  8f594e57f096429b005200d3f527a0e3
- SHA1
  
  553e899af9b00be4dffbeea9577bd138c1c74bb6
- SHA256
  
  997c6d76d942287bb9790b0387adafc84719c9a9a54e7f6b529c44396bfe777b
- SHA512
  
  521eb3f65d23fcc712737aab3f8709fd066d64e063eb24821a05e886ae65b7fbfa683e93651d36d92ff8ff7afd65ac63a8cbd5899aa8b8e574428265cfcb87bf
- SSDEEP
  
  6144:mlDx7mlcAZBcIdqkorDfoR/0C1fzDB9ePHSJ:mlDx7mlHZo7HoRv177ePH
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2