General

  • Target

    2025-01-19_2b5a1ba25b5301b2a0303208e9a9db3c_bkransomware_icedid

  • Size

    2.3MB

  • Sample

    250119-y5zenavmbj

  • MD5

    2b5a1ba25b5301b2a0303208e9a9db3c

  • SHA1

    b65d99afff46c7cca5349aafb7113e9ff14a252d

  • SHA256

    9c1c1a6d094a257d0eb5968c65953c283d87f1360d0a7276c6c43147c506396d

  • SHA512

    a12324253293fcb95f317b8c54ccf96047ebe6533ef924816cf6ea87760d5df1aed8c05967d575e102f80552907c804cb8f18fee20767e8a62ad0e50055e62a1

  • SSDEEP

    49152:6DD0FZs/Yl7dYUMQ+fCi6p6O8IFeII8uxV1XL4sDmg27RnWGj:aD0FZs/U73MQ+fCi6AeeT8uxV1X9D52j

Malware Config

Targets

    • Target

      2025-01-19_2b5a1ba25b5301b2a0303208e9a9db3c_bkransomware_icedid

    • Size

      2.3MB

    • MD5

      2b5a1ba25b5301b2a0303208e9a9db3c

    • SHA1

      b65d99afff46c7cca5349aafb7113e9ff14a252d

    • SHA256

      9c1c1a6d094a257d0eb5968c65953c283d87f1360d0a7276c6c43147c506396d

    • SHA512

      a12324253293fcb95f317b8c54ccf96047ebe6533ef924816cf6ea87760d5df1aed8c05967d575e102f80552907c804cb8f18fee20767e8a62ad0e50055e62a1

    • SSDEEP

      49152:6DD0FZs/Yl7dYUMQ+fCi6p6O8IFeII8uxV1XL4sDmg27RnWGj:aD0FZs/U73MQ+fCi6AeeT8uxV1X9D52j

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks