General
-
Target
dodsonimaging,file,08.11.2022.doc
-
Size
2.2MB
-
Sample
220811-snfnbsbae8
-
MD5
db11828aed458eccfab30c367bc1bb2f
-
SHA1
3487931f130485c82d21e9ef4155af0a8fd46c33
-
SHA256
d297f78ca4fc35e899792260c98f752947f7d6b5999650a6210f4a8538a2e655
-
SHA512
912a9d23b444a26ee176777d5be88c6a58a3cbf85864d3e09a3a497bcd3858764f8a9b318ddb8c314eb5e521a6a59ebcf88842cd3d7f9ed6f87ab7d192a12513
Static task
static1
Behavioral task
behavioral1
Sample
dodsonimaging,file,08.11.2022.docm
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
dodsonimaging,file,08.11.2022.docm
Resource
win10v2004-20220722-en
Malware Config
Extracted
icedid
3570055661
alexbionka.com
Targets
-
-
Target
dodsonimaging,file,08.11.2022.doc
-
Size
2.2MB
-
MD5
db11828aed458eccfab30c367bc1bb2f
-
SHA1
3487931f130485c82d21e9ef4155af0a8fd46c33
-
SHA256
d297f78ca4fc35e899792260c98f752947f7d6b5999650a6210f4a8538a2e655
-
SHA512
912a9d23b444a26ee176777d5be88c6a58a3cbf85864d3e09a3a497bcd3858764f8a9b318ddb8c314eb5e521a6a59ebcf88842cd3d7f9ed6f87ab7d192a12513
Score10/10-
Blocklisted process makes network request
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-