810814a7d94846bdede5e49e27d68f0cbc8420b6fa1ed759bd5b9d5b31b63b1b

Analysis

max time kernel
139s
max time network
143s
platform
windows10-2004_x64
resource
win10v2004-20230703-en
resource tags

arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
submitted
21/08/2023, 15:26

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Size

1.7MB
MD5

5c0229e113283b6a7fef4344f73681c5
SHA1

0c22e734025cdc95a0a3338c3ef13317b242c706
SHA256

810814a7d94846bdede5e49e27d68f0cbc8420b6fa1ed759bd5b9d5b31b63b1b
SHA512

bd53264bbb45ba060f5eca762b0e10fd123def08a40c50d832906c75c495c1476ee2995ccf9ff7f0144053d422d70603a779900a0f919925bd4840c05bee4292
SSDEEP

24576:Sq5rGKoYWo5/hIqriaMd8wR1lzFNE6uJnDF/nkwMnRQIXZ8TEcWdLh7l:Sq5CKokZIqriaEyxDxsGIXZ8TIdLh7l

Score

1^/10

Malware Config

Signatures

Modifies registry class 12 IoCs

description	ioc	Process
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\shell\open\command	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\shell\open	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\shell\open\command\ = "\"C:\\Users\\Admin\\AppData\\Local\\Temp\\5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe\" \"%1\""	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\.playlist\ = "Muziza.UniversalMediaPlayer.playlist"	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\WOW6432Node\CLSID\{BE017779-6CD2-4f0a-B36D-33BB56527BA2}	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\WOW6432Node\CLSID\{BE017779-6CD2-4f0a-B36D-33BB56527BA2}\ = 9d89bbb29c86d0aa9db0ccb09ccdbeccce86ccb29d8699b299af94cace86cbca9c9691ae9b96d0b199b0cc9f9d9598cb9d86becf9b96bfabce86cbcb99bf99ad9dcd9dad99869d9f9c968ccf9b968ccc9cbf99ae9db3bbd1ce86a79f9d96cbcb9d95c8b39bcc9d9f	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\DefaultIcon	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\ = "Playlist"	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\DefaultIcon\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe,1"	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist\shell	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\.playlist	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
Key created	\REGISTRY\USER\S-1-5-21-1498570331-2313266200-788959944-1000_Classes\Muziza.UniversalMediaPlayer.playlist	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe

Suspicious use of SetWindowsHookEx 4 IoCs

pid	Process
3596	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
3596	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
3596	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
3596	5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe

C:\Users\Admin\AppData\Local\Temp\5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe
"C:\Users\Admin\AppData\Local\Temp\5c0229e113283b6a7fef4344f73681c5_icedid_JC.exe"
1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
PID:3596

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads