General

  • Target

    2024-05-23_65af6ff7badea4b1a8bba224fce495d8_floxif_icedid

  • Size

    23.3MB

  • Sample

    240523-ay3lqsfb77

  • MD5

    65af6ff7badea4b1a8bba224fce495d8

  • SHA1

    4b9a951c7c6f37a25c938ee696d24a171d045335

  • SHA256

    a6f9c1b4ae4c29390dea7b48369fe4926ef2e5453053f271c137e8900eb6a4ae

  • SHA512

    ecf658be3c7fe3cb35492771aa69aaa76c910f7fa05330066068eebd5d5590a6d3d646ac952ac114ea049fbdf6bb87213f439d7802105b93409ddccfe9edf340

  • SSDEEP

    393216:X2A825yeORrAZMTxp20AaZQ8coY5ShvEPO6vBgKwCGAfXLC:Xv8HeABf21am8JY5WvEPOIgF6C

Score
9/10
upx

Malware Config

Targets

    • Target

      2024-05-23_65af6ff7badea4b1a8bba224fce495d8_floxif_icedid

    • Size

      23.3MB

    • MD5

      65af6ff7badea4b1a8bba224fce495d8

    • SHA1

      4b9a951c7c6f37a25c938ee696d24a171d045335

    • SHA256

      a6f9c1b4ae4c29390dea7b48369fe4926ef2e5453053f271c137e8900eb6a4ae

    • SHA512

      ecf658be3c7fe3cb35492771aa69aaa76c910f7fa05330066068eebd5d5590a6d3d646ac952ac114ea049fbdf6bb87213f439d7802105b93409ddccfe9edf340

    • SSDEEP

      393216:X2A825yeORrAZMTxp20AaZQ8coY5ShvEPO6vBgKwCGAfXLC:Xv8HeABf21am8JY5WvEPOIgF6C

    Score
    9/10
    • Detects Windows executables referencing non-Windows User-Agents

    • UPX dump on OEP (original entry point)

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks