Overview

overview

10

Static

static

10

2024-04-30...ms.exe

windows7-x64

9

2024-04-30...ms.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-30_5235e8b4fc0a7130d7a8f8b2a220fb38_floxif_icedid_necurs_skypams

  • Size

    13.5MB

  • MD5

    5235e8b4fc0a7130d7a8f8b2a220fb38

  • SHA1

    2812f6fcd0c6faae213b9542cb0c0549f89e67a7

  • SHA256

    555238e2ae1898645990ac66172fe429f185031340f47ee76dde1f9d85f60643

  • SHA512

    a7fe72617673d19cc377be33efbdd75a1f22c09a2b98955e1a8f5e370d2bf620958ec95de264fe683aec044e4159588575e8a9487a4d7c78b4ef4afc2968e183

  • SSDEEP

    196608:4P+2TT3YcZjgVJ5Fzht2f5JuIG371/P50bczzr4oESybtxnpC3FXtqV9+C81zSwU:a+2/X1xnpOaYsF1aH0T

Score
10/10

Malware Config

Signatures

  • Detects executables containing possible sandbox analysis VM usernames 1 IoCs
  • Detects executables referencing many IR and analysis tools 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2024-04-30_5235e8b4fc0a7130d7a8f8b2a220fb38_floxif_icedid_necurs_skypams
    .exe windows:5 windows x86 arch:x86

    3b4fdda4c1ff98b952839d52cf80adfa


    Headers

    Imports

    Sections