7209ffb794560ecc1b3df19f3ab4c97cf5eec4b68eddd6ba0d3f068d1b4b273c | Triage

Sharing

General

Target

2024-03-25_5e5aa34b1c365a0528918d850ac1edc1_icedid_virut
Size

190KB
Sample

240325-w6e2asab7w
MD5

5e5aa34b1c365a0528918d850ac1edc1
SHA1

de4bd94678655ee9559aa30d6680d8fbf2f3ff75
SHA256

7209ffb794560ecc1b3df19f3ab4c97cf5eec4b68eddd6ba0d3f068d1b4b273c
SHA512

a1ecd7835e0eacbf4c3bb5737b932336759cbb8d6e5c423235059d302b04f373cf18bf3d3b818a2c92b73623c51ac43473c9babd5018df4af799ac49267aea65
SSDEEP

3072:IDI8Es6UNK3+IvpRwqjthRvXy1gycrd7rL05s2FYruLldtUqp8:X8d90+IR2qNKfCcK2x5Eg8

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  2024-03-25_5e5aa34b1c365a0528918d850ac1edc1_icedid_virut
- Size
  
  190KB
- MD5
  
  5e5aa34b1c365a0528918d850ac1edc1
- SHA1
  
  de4bd94678655ee9559aa30d6680d8fbf2f3ff75
- SHA256
  
  7209ffb794560ecc1b3df19f3ab4c97cf5eec4b68eddd6ba0d3f068d1b4b273c
- SHA512
  
  a1ecd7835e0eacbf4c3bb5737b932336759cbb8d6e5c423235059d302b04f373cf18bf3d3b818a2c92b73623c51ac43473c9babd5018df4af799ac49267aea65
- SSDEEP
  
  3072:IDI8Es6UNK3+IvpRwqjthRvXy1gycrd7rL05s2FYruLldtUqp8:X8d90+IR2qNKfCcK2x5Eg8
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2