General

  • Target

    2024-02-05_cc951c4b53e4955d28bfbfecba6509e0_icedid

  • Size

    464KB

  • Sample

    240205-ql8vzsgga9

  • MD5

    cc951c4b53e4955d28bfbfecba6509e0

  • SHA1

    bf53e0d952b062b257954d65a781febbc8986938

  • SHA256

    8029092a5a1ca13f007d24fa8b97ba83a6f9f48761c68cb43e0a12b035d96752

  • SHA512

    a4c393a8f5b7488f408858ecbd151fb4a8ed3f0d53b87b0e11e0bab1dd2d42f0adff633467fd5ca6969efd8db206588cf913bd97602c44d19753cfa73a60843d

  • SSDEEP

    6144:7MoXevRZmwlRcanT/xSB8H8E9nhzT8p0BH8h16I4yKdnzSxEY1L:7BOPmwbvxS+hnKh4NdW

Score
10/10

Malware Config

Targets

    • Target

      2024-02-05_cc951c4b53e4955d28bfbfecba6509e0_icedid

    • Size

      464KB

    • MD5

      cc951c4b53e4955d28bfbfecba6509e0

    • SHA1

      bf53e0d952b062b257954d65a781febbc8986938

    • SHA256

      8029092a5a1ca13f007d24fa8b97ba83a6f9f48761c68cb43e0a12b035d96752

    • SHA512

      a4c393a8f5b7488f408858ecbd151fb4a8ed3f0d53b87b0e11e0bab1dd2d42f0adff633467fd5ca6969efd8db206588cf913bd97602c44d19753cfa73a60843d

    • SSDEEP

      6144:7MoXevRZmwlRcanT/xSB8H8E9nhzT8p0BH8h16I4yKdnzSxEY1L:7BOPmwbvxS+hnKh4NdW

    Score
    10/10
    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks