1db1a0d7d0ada85fb17bd382226a141e729a7dd4e7f620fd980adef1f946d404 | Triage

Sharing

General

Target

2024-10-01_8d7876599eab04a0836ca9e3c81bbfd3_icedid
Size

868KB
Sample

241001-kbamjszcpm
MD5

8d7876599eab04a0836ca9e3c81bbfd3
SHA1

f1024211fa96b5e29c58fc1e6df1f140911b37fe
SHA256

1db1a0d7d0ada85fb17bd382226a141e729a7dd4e7f620fd980adef1f946d404
SHA512

d12c85519b63f33ba82f3073046f9f602d63dcdc024dbd47be9b2791413d41066e5082b4b752892fb5687bb01ad5517d7f2ea91d21d7e9b48b24836513a2faec
SSDEEP

12288:aFt1+YJ2VYMHq8GhDFQGFNrIyUNWPuLjZpzbf3yD8J4jpB:aFt1LuqJhDqGFeyUQPurCD8J4jr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-01_8d7876599eab04a0836ca9e3c81bbfd3_icedid
- Size
  
  868KB
- MD5
  
  8d7876599eab04a0836ca9e3c81bbfd3
- SHA1
  
  f1024211fa96b5e29c58fc1e6df1f140911b37fe
- SHA256
  
  1db1a0d7d0ada85fb17bd382226a141e729a7dd4e7f620fd980adef1f946d404
- SHA512
  
  d12c85519b63f33ba82f3073046f9f602d63dcdc024dbd47be9b2791413d41066e5082b4b752892fb5687bb01ad5517d7f2ea91d21d7e9b48b24836513a2faec
- SSDEEP
  
  12288:aFt1+YJ2VYMHq8GhDFQGFNrIyUNWPuLjZpzbf3yD8J4jpB:aFt1LuqJhDqGFeyUQPurCD8J4jr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2