Overview

overview

10

Static

static

10

New folder (8).7z

windows7-x64

3

New folder (8).7z

windows10-2004-x64

3

Resubmissions

04-10-2024 16:44

241004-t8yv3syhpd 10

27-09-2024 16:54

240927-vepkzsvbre 10

27-09-2024 16:44

240927-t86wpavard 10

04-08-2024 18:04

240804-wnq1vawbpg 10

03-08-2024 17:26

240803-vzvbzazekn 10

03-08-2024 16:14

240803-tpp4tsshqa 10

03-08-2024 15:52

240803-tbarzsseqc 10

31-07-2024 19:40

240731-ydk3yszdpq 10

31-07-2024 10:53

240731-my145atfmf 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New folder (8).7z

  • Size

    17.6MB

  • Sample

    240803-tpp4tsshqa

  • MD5

    be23bf21f50efe03646c00428769da08

  • SHA1

    588f68a1f66ee0c689104d9096415b9070838827

  • SHA256

    0e06e9585cc9db33ee999ca4de668ab64ef6e9fa928ae6541b2f1ec68ff09da8

  • SHA512

    b3850d8b79c88e5a1ac7d2855f5b03b08c3392629f041474a997f4c9d71e321c24b9a2c5dad79e8fa6a1bb94648a30808dfa37dbb61e1348fd221594beeda8aa

  • SSDEEP

    393216:gTZqJOaXIZoQGPISZpx/0iw+lT+6uxC2JxpG25Bbm:gsJd7ISLW+t+6mCOTdm

Score
10/10
icedidstormkittywellmess2683308570loaderthemidaupx

Malware Config

Extracted

Family

icedid

Botnet

2683308570

C2

funnymemos.shop

trythisshop.club

shopoholics.best

buytheone.best
Attributes
  • auth_var

    1

  • url_path

    /audio/

Extracted

Family

wellmess

C2

http://178.211.39.6:80

https://141.98.212.55:121
rsa_privkey.plain
rsa_pubkey.plain
rsa_pubkey.plain
rsa_pubkey.plain

Targets

    • Target

      New folder (8).7z

    • Size

      17.6MB

    • MD5

      be23bf21f50efe03646c00428769da08

    • SHA1

      588f68a1f66ee0c689104d9096415b9070838827

    • SHA256

      0e06e9585cc9db33ee999ca4de668ab64ef6e9fa928ae6541b2f1ec68ff09da8

    • SHA512

      b3850d8b79c88e5a1ac7d2855f5b03b08c3392629f041474a997f4c9d71e321c24b9a2c5dad79e8fa6a1bb94648a30808dfa37dbb61e1348fd221594beeda8aa

    • SSDEEP

      393216:gTZqJOaXIZoQGPISZpx/0iw+lT+6uxC2JxpG25Bbm:gsJd7ISLW+t+6mCOTdm

    Score
    3/10
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks