General

  • Target

    2024-02-05_224ddca04b949d3411866b0207dd0519_icedid

  • Size

    492KB

  • Sample

    240205-tvmkwsdhdr

  • MD5

    224ddca04b949d3411866b0207dd0519

  • SHA1

    764aad0618134432e689c2b0e0f0c1dfab13c18d

  • SHA256

    6f6cf1288696fe13dd659ac7807eea5977815f0961db0c1a25de766ef4597795

  • SHA512

    24477a750de1ee06c35028c7f8688b5534bc8e2283ccfb17eee9edd2ed34cf80852ce4277f2bc32dde65d6564834e86822b5feca077b54cf61c47735e7357b58

  • SSDEEP

    6144:BY352aQ3hklPFghZqqdd2PnMmUnpDUmwqO27fXjscN9Q9h8w2gyx7Ddp2q44:BG52rkDg/TdEgDUGXgEQI2yx+q

Score
10/10

Malware Config

Targets

    • Target

      2024-02-05_224ddca04b949d3411866b0207dd0519_icedid

    • Size

      492KB

    • MD5

      224ddca04b949d3411866b0207dd0519

    • SHA1

      764aad0618134432e689c2b0e0f0c1dfab13c18d

    • SHA256

      6f6cf1288696fe13dd659ac7807eea5977815f0961db0c1a25de766ef4597795

    • SHA512

      24477a750de1ee06c35028c7f8688b5534bc8e2283ccfb17eee9edd2ed34cf80852ce4277f2bc32dde65d6564834e86822b5feca077b54cf61c47735e7357b58

    • SSDEEP

      6144:BY352aQ3hklPFghZqqdd2PnMmUnpDUmwqO27fXjscN9Q9h8w2gyx7Ddp2q44:BG52rkDg/TdEgDUGXgEQI2yx+q

    Score
    10/10
    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks