General
-
Target
2024-05-29_c282c645a4793ea5a1ac4160d11c6468_icedid_magniber
-
Size
3.5MB
-
Sample
240529-qw257aha25
-
MD5
c282c645a4793ea5a1ac4160d11c6468
-
SHA1
0172a1df21d58f301fffdbabe6c3b318650b6709
-
SHA256
e0cb9a66caff23c4ffb37e14200f76ca0053ca2a91313fc0b14526fa437b90f6
-
SHA512
e7e124e514fbf07990325388ada4cbd1a1f7e7dc74a3ee74d3a2c9b0ba784e7afd18b77d509a049f9dc40af1f7d031ebeaee934528b7f2eb4f97cacda2cf9b54
-
SSDEEP
49152:I09XJt4HIN2H2tFvduySxE0sc10F7H49vZU6X9nd7bs8BAcKYhzhn+8FPk6fH8fj:tZJt4HINy2Lk20LvrhFnpMAckM
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-29_c282c645a4793ea5a1ac4160d11c6468_icedid_magniber.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
2024-05-29_c282c645a4793ea5a1ac4160d11c6468_icedid_magniber
-
Size
3.5MB
-
MD5
c282c645a4793ea5a1ac4160d11c6468
-
SHA1
0172a1df21d58f301fffdbabe6c3b318650b6709
-
SHA256
e0cb9a66caff23c4ffb37e14200f76ca0053ca2a91313fc0b14526fa437b90f6
-
SHA512
e7e124e514fbf07990325388ada4cbd1a1f7e7dc74a3ee74d3a2c9b0ba784e7afd18b77d509a049f9dc40af1f7d031ebeaee934528b7f2eb4f97cacda2cf9b54
-
SSDEEP
49152:I09XJt4HIN2H2tFvduySxE0sc10F7H49vZU6X9nd7bs8BAcKYhzhn+8FPk6fH8fj:tZJt4HINy2Lk20LvrhFnpMAckM
-
Gh0st RAT payload
-
UPX dump on OEP (original entry point)
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-