6670cbac324064721788614f940f4af779b4b690c6eac9083f0b2140a737a12a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-14_3b231a3a5a4d598ea28988c5b7680ca8_icedid
Size

10.4MB
Sample

240914-b1ne9s1cme
MD5

3b231a3a5a4d598ea28988c5b7680ca8
SHA1

58b32977432cd905bc8e9ec69357086ec5e80393
SHA256

6670cbac324064721788614f940f4af779b4b690c6eac9083f0b2140a737a12a
SHA512

aeafca9372498c7a528aeeced82b377a0c3134a352c3c501d3c8c33a32946d9689e86e4acabb147f150e022a9cb7507d25c05cc74368fc68e9792ea945067238
SSDEEP

196608:mo9sdr8m8dYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOc7rpY:L948dD4F3e+biSDcQwM8uDuI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-14_3b231a3a5a4d598ea28988c5b7680ca8_icedid
- Size
  
  10.4MB
- MD5
  
  3b231a3a5a4d598ea28988c5b7680ca8
- SHA1
  
  58b32977432cd905bc8e9ec69357086ec5e80393
- SHA256
  
  6670cbac324064721788614f940f4af779b4b690c6eac9083f0b2140a737a12a
- SHA512
  
  aeafca9372498c7a528aeeced82b377a0c3134a352c3c501d3c8c33a32946d9689e86e4acabb147f150e022a9cb7507d25c05cc74368fc68e9792ea945067238
- SSDEEP
  
  196608:mo9sdr8m8dYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOc7rpY:L948dD4F3e+biSDcQwM8uDuI
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2