Analysis
-
max time kernel
48s -
max time network
74s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
02-05-2022 11:51
Static task
static1
Behavioral task
behavioral1
Sample
c999c63803e6f12ad88fdb8b16b3673f631532ddf049ac740c4b4290f6b166de.dll
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
c999c63803e6f12ad88fdb8b16b3673f631532ddf049ac740c4b4290f6b166de.dll
Resource
win10v2004-20220414-en
General
-
Target
c999c63803e6f12ad88fdb8b16b3673f631532ddf049ac740c4b4290f6b166de.dll
-
Size
389KB
-
MD5
1bba35498fa89e6de3f72796aef22ec9
-
SHA1
5c8232f4261c1637d9801e22a0be719e70340623
-
SHA256
c999c63803e6f12ad88fdb8b16b3673f631532ddf049ac740c4b4290f6b166de
-
SHA512
9bd7892cb2495a3fedf92acdccf4981eeebf6e6ee023cd520e63000dc5bbb300f560fdf6147ab4157cfb046dac7ce5dc70cd6bfb524951121680179b97bf8458
Malware Config
Extracted
icedid
2528826304
Signatures
-
suricata: ET MALWARE Win32/IcedID Request Cookie
suricata: ET MALWARE Win32/IcedID Request Cookie
-
Suspicious behavior: EnumeratesProcesses 2 IoCs
Processes:
regsvr32.exepid process 1108 regsvr32.exe 1108 regsvr32.exe
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1108-54-0x000007FEFB7C1000-0x000007FEFB7C3000-memory.dmpFilesize
8KB