General
-
Target
2023-04-29_74ca11821ceccc42af41d8beff60babc_icedid
-
Size
556KB
-
Sample
230430-elk85sgc4v
-
MD5
74ca11821ceccc42af41d8beff60babc
-
SHA1
0d60f4042e94dde2393c73b81759c9f3991fc50b
-
SHA256
bf5b0cf1b9e8e5af758033e0dc40b773e8254933796f71ee80646714adb072b9
-
SHA512
2d6c114b38057fd6a52c926a8f3d625ce28e8caa024fe18a5eb3b7dd55510913ccf1b46b8fca9caf8fb716a53c89526908516ccde95c3bc371380f118e69361e
-
SSDEEP
12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttYL0S4GB9:ZXQUIsQpMsequrmGL06v
Static task
static1
Behavioral task
behavioral1
Sample
2023-04-29_74ca11821ceccc42af41d8beff60babc_icedid.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
2023-04-29_74ca11821ceccc42af41d8beff60babc_icedid
-
Size
556KB
-
MD5
74ca11821ceccc42af41d8beff60babc
-
SHA1
0d60f4042e94dde2393c73b81759c9f3991fc50b
-
SHA256
bf5b0cf1b9e8e5af758033e0dc40b773e8254933796f71ee80646714adb072b9
-
SHA512
2d6c114b38057fd6a52c926a8f3d625ce28e8caa024fe18a5eb3b7dd55510913ccf1b46b8fca9caf8fb716a53c89526908516ccde95c3bc371380f118e69361e
-
SSDEEP
12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttYL0S4GB9:ZXQUIsQpMsequrmGL06v
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-