General

  • Target

    2024-06-04_ca7d2228b66f5c487ca56e57bd98f714_hacktools_icedid

  • Size

    16.1MB

  • Sample

    240604-tmev3scd8z

  • MD5

    ca7d2228b66f5c487ca56e57bd98f714

  • SHA1

    b40b6bd55469f45a1e26eff9b3ed7b3891949e80

  • SHA256

    d6889844496eecf7517d023d134d9eacfac9fe0f6a6b45373740136998fbe962

  • SHA512

    362510b56a78eb54f2c273ab7d609eb312b1832e62016600e528682c85eb774cd56525a4a51386b8d5922c540b1948db7359155bd5f2340f95c0da33b374de10

  • SSDEEP

    393216:jYlRFesAEYM5xZB2dj7rEXaNW6hqDu+ja:jYpAJ4ZB8rEmWeqRa

Score
10/10

Malware Config

Targets

    • Target

      2024-06-04_ca7d2228b66f5c487ca56e57bd98f714_hacktools_icedid

    • Size

      16.1MB

    • MD5

      ca7d2228b66f5c487ca56e57bd98f714

    • SHA1

      b40b6bd55469f45a1e26eff9b3ed7b3891949e80

    • SHA256

      d6889844496eecf7517d023d134d9eacfac9fe0f6a6b45373740136998fbe962

    • SHA512

      362510b56a78eb54f2c273ab7d609eb312b1832e62016600e528682c85eb774cd56525a4a51386b8d5922c540b1948db7359155bd5f2340f95c0da33b374de10

    • SSDEEP

      393216:jYlRFesAEYM5xZB2dj7rEXaNW6hqDu+ja:jYpAJ4ZB8rEmWeqRa

    • UPX dump on OEP (original entry point)

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks