General

  • Target

    2024-04-08_b3a02a6011735502877f18382c0ca97a_hacktools_icedid_mimikatz

  • Size

    7.7MB

  • MD5

    b3a02a6011735502877f18382c0ca97a

  • SHA1

    dc7fd1bd0add3cdf5dcddf4d9924a71f1243d51b

  • SHA256

    ee139684b172c9837b8c57aea4c61f6cdee3d5a8b4dcc7d109e2fe93ea942027

  • SHA512

    134d7910178b7bbde561d1fadfc835bef710eaa4f17b89fb370530689205cda3d8e9be95f5012b305defc4ce178845a06bd1302476c8e0f01f4e1675d08402ca

  • SSDEEP

    196608:ylTPemknGzwHdOgEPHd9BYX/nivPlTXTYP:a3jz0E52/iv1

Score
10/10

Malware Config

Signatures

  • Mimikatz family
  • UPX dump on OEP (original entry point) 1 IoCs
  • mimikatz is an open source tool to dump credentials on Windows 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 2024-04-08_b3a02a6011735502877f18382c0ca97a_hacktools_icedid_mimikatz
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections