icedid | 7679086120[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

de929ee1ff...93.dll

windows7_x64

3

de929ee1ff...93.dll

windows10-2004_x64

3

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

de929ee1ff829d76f6815b4e29afa109c73c78842c95adb615f10293278fc793.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

de929ee1ff829d76f6815b4e29afa109c73c78842c95adb615f10293278fc793.dll

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

7679086120.zip
Size

7KB
MD5

1b9358697f36dcd2b59cb7ae4ad62dc5
SHA1

4a33b9a1f5445bd7a7e4e3ed84e36efdfd925324
SHA256

2872fa697d7664406de1e7c52170744f25eb89978c19349c7f9185fe6d9cbff6
SHA512

cab3790ef78debdaf44351e6ebb13a4ea24f9e5bb2151e9420dba634a733f4b425ce38b068c860d7de4caf4f2df7f3f2e85e3948801d533d41b2db5a8d35115d
SSDEEP

192:OLgnUWtuXkcoEzPySEtJ2Dds5DCZAlvWjLyBqyxVapTF:OUUeuX7fPxEODfZAd4yBvVu

Score

10^/10

loader icedid

Malware Config

Extracted

Family

icedid

Signatures

Icedid family
icedid

Files

7679086120.zip
.zip

Password: infected
de929ee1ff829d76f6815b4e29afa109c73c78842c95adb615f10293278fc793
.dll windows x64

Password: infected

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.c
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 6B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r
Size: 512B - Virtual size: 418B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy