Overview

overview

7

Static

static

3

2024-09-06...la.exe

windows7-x64

7

2024-09-06...la.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-09-06_60069f444563b1a3a5b6ae20e1551698_icedid_magniber_sakula

  • Size

    21.1MB

  • Sample

    240906-rqv1cs1cpp

  • MD5

    60069f444563b1a3a5b6ae20e1551698

  • SHA1

    7191b9cbaa74e766d8c369c340e72c41121ecc83

  • SHA256

    92b92e9da9c2cedd23121fe3bcd60bf4d5f565c3fede13b864fb44bf9b67ba77

  • SHA512

    fcd8edd5905c25da787162d30425d9e2e416f66536ea78c8571af80d2e7e40be7317d241d79f82cf0022099e4e4bb9728dc9de4ff0ffeb068e39aefdbb764672

  • SSDEEP

    196608:GhCig1IFnEplmOXKh8mY8J4V+mPKSJAMr3jv47W/NEMZKYUY:oCcFkjXLWiV+mSSCMTwWEojb

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      2024-09-06_60069f444563b1a3a5b6ae20e1551698_icedid_magniber_sakula

    • Size

      21.1MB

    • MD5

      60069f444563b1a3a5b6ae20e1551698

    • SHA1

      7191b9cbaa74e766d8c369c340e72c41121ecc83

    • SHA256

      92b92e9da9c2cedd23121fe3bcd60bf4d5f565c3fede13b864fb44bf9b67ba77

    • SHA512

      fcd8edd5905c25da787162d30425d9e2e416f66536ea78c8571af80d2e7e40be7317d241d79f82cf0022099e4e4bb9728dc9de4ff0ffeb068e39aefdbb764672

    • SSDEEP

      196608:GhCig1IFnEplmOXKh8mY8J4V+mPKSJAMr3jv47W/NEMZKYUY:oCcFkjXLWiV+mSSCMTwWEojb

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks