Analysis
-
max time kernel
139s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
02-08-2023 16:26
Behavioral task
behavioral1
Sample
387ff39a0b315645f7e36dcecccc566e_icedid_JC.exe
Resource
win7-20230712-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
387ff39a0b315645f7e36dcecccc566e_icedid_JC.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
387ff39a0b315645f7e36dcecccc566e_icedid_JC.exe
-
Size
7.3MB
-
MD5
387ff39a0b315645f7e36dcecccc566e
-
SHA1
41e05a8aa22a1010e4a078f7c6da7b8b0c42aaa5
-
SHA256
eed472df70e63bcacbe322c082560754c9dbc00545182f160671bc3978f70004
-
SHA512
ebd8528b43123cfdbca327a5a83015bcf7353d5462d72ef32b8a0e16e3f5d4ea5a7fb862673181e08728c1480a67f0e248bb0a4491ba198512d7ce159480d288
-
SSDEEP
98304:EuPb8NbO4g6a3N2RpLM2fcb5e0lD00m3cjwwcLUQd:Xb4y4g9dpOcbTJ0N3Hb
Score
4/10
Malware Config
Signatures
-
Drops file in Windows directory 1 IoCs
Processes:
387ff39a0b315645f7e36dcecccc566e_icedid_JC.exedescription ioc process File opened for modification C:\Windows\ 387ff39a0b315645f7e36dcecccc566e_icedid_JC.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
Processes:
387ff39a0b315645f7e36dcecccc566e_icedid_JC.exepid process 1772 387ff39a0b315645f7e36dcecccc566e_icedid_JC.exe