fcd959776cf1c7b86e31ac27b6bc9156f062371534fe2e7507182ae1e862da6d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

2024-01-09...id.exe

windows7-x64

7

2024-01-09...id.exe

windows10-2004-x64

7

Sharing

General

Target

2024-01-09_b3e86c1f0cd4d3c80b6358ba5d04a4fc_floxif_icedid
Size

1.9MB
Sample

240110-gqc5fahafr
MD5

b3e86c1f0cd4d3c80b6358ba5d04a4fc
SHA1

31792f3ad45d997a4f75f53f735077cc47067c9c
SHA256

fcd959776cf1c7b86e31ac27b6bc9156f062371534fe2e7507182ae1e862da6d
SHA512

0210447bcb0dd2a77241feab6c79f82ecc127680707105b4fef0031edccf465ed7a2d14253e2feab171a5904080a196c0588c00ee172d51716cfd298a2908edf
SSDEEP

24576:bvnizplWJhtl3hUt0oOYSzfwi2p/xdHATun37YWX4+33IQkQrEH7Y7:biglPTD2p/gTunLrIM

Score

7^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

2024-01-09_b3e86c1f0cd4d3c80b6358ba5d04a4fc_floxif_icedid.exe

Resource

win7-20231215-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-01-09_b3e86c1f0cd4d3c80b6358ba5d04a4fc_floxif_icedid.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-01-09_b3e86c1f0cd4d3c80b6358ba5d04a4fc_floxif_icedid
- Size
  
  1.9MB
- MD5
  
  b3e86c1f0cd4d3c80b6358ba5d04a4fc
- SHA1
  
  31792f3ad45d997a4f75f53f735077cc47067c9c
- SHA256
  
  fcd959776cf1c7b86e31ac27b6bc9156f062371534fe2e7507182ae1e862da6d
- SHA512
  
  0210447bcb0dd2a77241feab6c79f82ecc127680707105b4fef0031edccf465ed7a2d14253e2feab171a5904080a196c0588c00ee172d51716cfd298a2908edf
- SSDEEP
  
  24576:bvnizplWJhtl3hUt0oOYSzfwi2p/xdHATun37YWX4+33IQkQrEH7Y7:biglPTD2p/gTunLrIM
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy