General

  • Target

    Icarus-Release-main.zip

  • Size

    6.7MB

  • Sample

    240803-vrv9aszcmj

  • MD5

    686af9fa76209aec08f63e68c5d4e834

  • SHA1

    c8b03d02377b4b25d88d38cfce54bb47d1411384

  • SHA256

    630089881fcfc20fad7995e58db0cb6067161c732a8314ede2be3c1aef5a54b7

  • SHA512

    b0e38972c14c4c54e127280a0b663a9b8963191e67b726c17e3baa41b17540b027e68a7602b1f0ff0d75d7508928dd6fc3abcfb90045fe4dd1eefade7ef44048

  • SSDEEP

    196608:2YDZIVIV1TAjBwcyog/TVMANkQTOU6y1G50:2YD6VI0twXTmykQz6y1GC

Malware Config

Targets

    • Target

      Icarus-Release-main/ICARUS.exe

    • Size

      8.5MB

    • MD5

      e6a620574c5dc9ce58e154d70c1d9554

    • SHA1

      8393b760d657ab39d92a43070d75be25c315b8c9

    • SHA256

      e7a1e22275898facd79c2dd59f2be158317ae44cb7eb661a3b7e0f351f0c8a4c

    • SHA512

      5b4deaad005c9145dbda58859ea5063e081339c6fe5c21069c0eedaf0bac1fbda501bd5c10b13b8c7e4c860a5456f8f03c5bc95cda1a6094b215eada542522ce

    • SSDEEP

      196608:aCkRUlCbTlSndgMimOXNsCDC4PfcPsRV:aCkqlCsdgvXyQC4

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

    • ElysiumStealer Support DLL

    • Loads dropped DLL

    • Target

      Icarus-Release-main/IconExtractor.dll

    • Size

      10KB

    • MD5

      7bcf61e29e5cbcd1b81d9ab72cbfed93

    • SHA1

      d082613177dd1711c18426d4f83921dd932bc7b1

    • SHA256

      2c359ce857982f45b09af49dbccfb2ae302839acf1956e8325e7f854b339a8c9

    • SHA512

      ce84af38dc63374d304d4e3b6c098892588df5ca5e921505c410b2a24ec0137dbc3120bc713cc0e4bf7836c57b7db224dd3264ea454cbfdb1ef78c9ffb19b6d9

    • SSDEEP

      192:vyB0L3vIFktNlrgyLY5ZJeU5cs7hnvR952:vyeL3/gyLYPJR5RJG

    Score
    1/10
    • Target

      Icarus-Release-main/PeNet.Asn1.dll

    • Size

      25KB

    • MD5

      87734056aba5bde565f0d8d6769db8e7

    • SHA1

      19c09604526c5d8281363f2177b4d40d641e6335

    • SHA256

      116fdc6d9bdfebed7ec330fb5690eba246131eb6bf05fd7d440bd47a2f7e840a

    • SHA512

      830ed318f0cc9aa58b73887c5eada9749f93992c0574a51751d50e50a186c3a3a7af347dd61bb7f83026163696f03ab5346cdd6af9e4b76d9c3ae242efea2c4a

    • SSDEEP

      768:Msb2f19J2EuAGGJ0GXJp8koIS4uvA6HrgLcWX/mPZM:MY29yAGGJ0GXJp8koIYvA6LgLRmPe

    Score
    1/10
    • Target

      Icarus-Release-main/PeNet.dll

    • Size

      149KB

    • MD5

      9769536ffe8c9a321ba0a33d588f79be

    • SHA1

      95012d6b431bbce58ca15a4d978cf2d3bc470045

    • SHA256

      b1edded485addd233bd1d611768bec19590e7e18a111e2308e0c780143405b9d

    • SHA512

      5fb7a57cc7b59a84cc33e4b2029903e4e78c779c48958c070602447b6eb6553f5f1e0ada4cf958df977df1309c4dc1f5a4baac5bcff79803a8de132a7248672a

    • SSDEEP

      3072:1M9D2vLbACkvDxtrU23F9o4F444OZZcGyqujRwrHgO76zV+AcRWRs:1M9DYLcHU23FpyCgOcn

    Score
    1/10
    • Target

      Icarus-Release-main/dnlib.dll

    • Size

      1.1MB

    • MD5

      508ccde8bc7003696f32af7054ca3d97

    • SHA1

      1f6a0303c5ae5dc95853ec92fd8b979683c3f356

    • SHA256

      4758c7c39522e17bf93b3993ada4a1f7dd42bb63331bac0dcd729885e1ba062a

    • SHA512

      92a59a2e1f6bf0ce512d21cf4148fe027b3a98ed6da46925169a4d0d9835a7a4b1374ba0be84e576d9a8d4e45cb9c2336e1f5bd1ea53e39f0d8553db264e746d

    • SSDEEP

      24576:WHjoaczZfdE55hHl0WQ/OO4yb99MANKtv7f2dcME:tm/BQWgww

    Score
    1/10
    • Target

      Icarus-Release-main/newtonsoft.json.dll

    • Size

      685KB

    • MD5

      081d9558bbb7adce142da153b2d5577a

    • SHA1

      7d0ad03fbda1c24f883116b940717e596073ae96

    • SHA256

      b624949df8b0e3a6153fdfb730a7c6f4990b6592ee0d922e1788433d276610f3

    • SHA512

      2fdf035661f349206f58ea1feed8805b7f9517a21f9c113e7301c69de160f184c774350a12a710046e3ff6baa37345d319b6f47fd24fbba4e042d54014bee511

    • SSDEEP

      12288:U9BzaPm657wqehcZBLX+HK+kPJUQEKx07N0TCBGiBCjC0PDgM5j9FKjc3Q5:U8m657w6ZBLmkitKqBCjC0PDgM5A5

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks