Overview

overview

7

Static

static

3

NEAS.2023-...JC.exe

windows7-x64

7

NEAS.2023-...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.2023-09-09_1c08ab1e0433036e6c29a1a40d32e950_icedid_JC.exe

  • Size

    1.5MB

  • Sample

    231023-zbct8sfa5z

  • MD5

    1c08ab1e0433036e6c29a1a40d32e950

  • SHA1

    c58454e7dc243d9f7b579666d24df45fd7a5fd5e

  • SHA256

    3361846ca417b165a9329423adb1e4d7901f90a9153d5754245cce49cb7b4b2b

  • SHA512

    efc9544a34d15430cee80f12866faea2a9cb7e2fe503314cd36ed3fadf595cae38d36ba343af735c5261a0268e1d4b8b7b2565cbfcb8aaa199bad74bf1ae5c4f

  • SSDEEP

    24576:cygqNoiSmpoRIMpn4LWmzKeMtEN0LnMhHm8sIKbXppw:chqBSmpoRIMpn4SmzKeMtEN0LnmGZNbL

Score
7/10
evasionspywarestealertrojan

Malware Config

Targets

    • Target

      NEAS.2023-09-09_1c08ab1e0433036e6c29a1a40d32e950_icedid_JC.exe

    • Size

      1.5MB

    • MD5

      1c08ab1e0433036e6c29a1a40d32e950

    • SHA1

      c58454e7dc243d9f7b579666d24df45fd7a5fd5e

    • SHA256

      3361846ca417b165a9329423adb1e4d7901f90a9153d5754245cce49cb7b4b2b

    • SHA512

      efc9544a34d15430cee80f12866faea2a9cb7e2fe503314cd36ed3fadf595cae38d36ba343af735c5261a0268e1d4b8b7b2565cbfcb8aaa199bad74bf1ae5c4f

    • SSDEEP

      24576:cygqNoiSmpoRIMpn4LWmzKeMtEN0LnMhHm8sIKbXppw:chqBSmpoRIMpn4SmzKeMtEN0LnmGZNbL

    Score
    7/10
    evasionspywarestealertrojan

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks whether UAC is enabled

      evasiontrojan

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks