Overview

overview

10

Static

static

10

nasial.exe

windows10-1703-x64

7

Resubmissions

04-10-2024 16:44

241004-t8yv3syhpd 10

27-09-2024 16:54

240927-vepkzsvbre 10

27-09-2024 16:44

240927-t86wpavard 10

04-08-2024 18:04

240804-wnq1vawbpg 10

03-08-2024 17:26

240803-vzvbzazekn 10

03-08-2024 16:14

240803-tpp4tsshqa 10

03-08-2024 15:52

240803-tbarzsseqc 10

31-07-2024 19:40

240731-ydk3yszdpq 10

31-07-2024 10:53

240731-my145atfmf 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New folder (8).7z

  • Size

    17.6MB

  • Sample

    240927-vepkzsvbre

  • MD5

    be23bf21f50efe03646c00428769da08

  • SHA1

    588f68a1f66ee0c689104d9096415b9070838827

  • SHA256

    0e06e9585cc9db33ee999ca4de668ab64ef6e9fa928ae6541b2f1ec68ff09da8

  • SHA512

    b3850d8b79c88e5a1ac7d2855f5b03b08c3392629f041474a997f4c9d71e321c24b9a2c5dad79e8fa6a1bb94648a30808dfa37dbb61e1348fd221594beeda8aa

  • SSDEEP

    393216:gTZqJOaXIZoQGPISZpx/0iw+lT+6uxC2JxpG25Bbm:gsJd7ISLW+t+6mCOTdm

Score
10/10
icedidstormkittywellmess2683308570discoveryloaderthemidaupx

Malware Config

Extracted

Family

icedid

Botnet

2683308570

C2

funnymemos.shop

trythisshop.club

shopoholics.best

buytheone.best
Attributes
  • auth_var

    1

  • url_path

    /audio/

Extracted

Family

wellmess

C2

http://178.211.39.6:80

https://141.98.212.55:121
rsa_privkey.plain
rsa_pubkey.plain
rsa_pubkey.plain
rsa_pubkey.plain

Targets

    • Target

      nasial.exe

    • Size

      2.8MB

    • MD5

      7cbae878c5e7f1ef96d351489e10d756

    • SHA1

      c6117aaa6084399d37f06ab454b7f53470d88b1e

    • SHA256

      1aa7778da7aa6b68f649b53c8346a853f598f4c1681cd978bec1cf75ce4accae

    • SHA512

      133bda116b1488878911090e5708370a7c79296711cc6886dfe249b565682038d57663b6ee513e9171d0ec47379d973c498e149a7b47f0f2c2c659b4e8221b89

    • SSDEEP

      49152:q1Ox2H5JQKV4th1F3151kjli7/Ofyig7pglKIv8Pb438KIoQGUdfB9fGQJGj4NWj:q1Ox2H5JQKV4th1F3151kjli7/Ofyigq

    Score
    7/10
    discovery

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks