General

  • Target

    2024-05-25_b460777450c0368288fbcf46db872cae_floxif_icedid

  • Size

    3.9MB

  • Sample

    240525-qlqz6sec87

  • MD5

    b460777450c0368288fbcf46db872cae

  • SHA1

    f0478bbfc1bda2d27388204566a315f50b423e24

  • SHA256

    2c6e00746b1df75ce057ace33b0e9a2714ea247b4bcd77b79db2f50bb28a5474

  • SHA512

    e1cebf2fdd83029992aeb617b14b3c1ca305366096235c1b45585a9558ee42ef216be406651863d645af4b6de2d5bcbc3eba966661e108df62f954e0e0a3416f

  • SSDEEP

    49152:M2+EB2g+gEpzxeV4R36qs9tRimJE83xn1G+iOIzdvtBPrUWy1/c8av:MrEBu73YRi+Eq1G+iPPP4Jk8av

Score
10/10

Malware Config

Targets

    • Target

      2024-05-25_b460777450c0368288fbcf46db872cae_floxif_icedid

    • Size

      3.9MB

    • MD5

      b460777450c0368288fbcf46db872cae

    • SHA1

      f0478bbfc1bda2d27388204566a315f50b423e24

    • SHA256

      2c6e00746b1df75ce057ace33b0e9a2714ea247b4bcd77b79db2f50bb28a5474

    • SHA512

      e1cebf2fdd83029992aeb617b14b3c1ca305366096235c1b45585a9558ee42ef216be406651863d645af4b6de2d5bcbc3eba966661e108df62f954e0e0a3416f

    • SSDEEP

      49152:M2+EB2g+gEpzxeV4R36qs9tRimJE83xn1G+iOIzdvtBPrUWy1/c8av:MrEBu73YRi+Eq1G+iPPP4Jk8av

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks