Overview

overview

9

Static

static

7

2024-02-01...id.exe

windows7-x64

9

2024-02-01...id.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-01_9d35d4dab51991d53e6c4ad6d4799b00_icedid

  • Size

    272KB

  • Sample

    240201-sylmbsagbn

  • MD5

    9d35d4dab51991d53e6c4ad6d4799b00

  • SHA1

    2a9650f39cca88b63379583d49656990a58faff6

  • SHA256

    196f083c6c2bac55b9958c05a5f2aefb6635ec2431cf22a92528cc0c3cc63a57

  • SHA512

    01b2dbba1dc6a0905c1e13cd05c5be69dd35bfaacd903d01b16bed7cd4ceb1a368343df74e73f1630250d75cba6e4d145499f77026bfcf0727bb9abf340030f8

  • SSDEEP

    6144:vYCI+wfwpNDsbDxR8w5b0snvg6FDnsNBR:gCzwC9+X5bjg6FDn2

Score
9/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      2024-02-01_9d35d4dab51991d53e6c4ad6d4799b00_icedid

    • Size

      272KB

    • MD5

      9d35d4dab51991d53e6c4ad6d4799b00

    • SHA1

      2a9650f39cca88b63379583d49656990a58faff6

    • SHA256

      196f083c6c2bac55b9958c05a5f2aefb6635ec2431cf22a92528cc0c3cc63a57

    • SHA512

      01b2dbba1dc6a0905c1e13cd05c5be69dd35bfaacd903d01b16bed7cd4ceb1a368343df74e73f1630250d75cba6e4d145499f77026bfcf0727bb9abf340030f8

    • SSDEEP

      6144:vYCI+wfwpNDsbDxR8w5b0snvg6FDnsNBR:gCzwC9+X5bjg6FDn2

    Score
    9/10
    aspackv2persistenceupx

    • Detects executables packed with ASPack

    • Sets DLL path for service in the registry

      persistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks