Overview

overview

7

Static

static

3

2024-02-28...id.exe

windows7-x64

7

2024-02-28...id.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240226-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/02/2024, 05:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-02-28_a4c245cbe03c58f30dd1e04892aa2d2c_icedid.exe

  • Size

    312KB

  • MD5

    a4c245cbe03c58f30dd1e04892aa2d2c

  • SHA1

    c5a772540f5387b74df58579d51d92cae8d6566c

  • SHA256

    2a5dc96eadea4acfa30c973ad9e06d7de41413971867c2f8df00e90b5cdb78c8

  • SHA512

    440cab57758e4bd903bbd350d938fe0acbdf614a87c0e5fc380b4398b109f2b86b2ebc78224a5953705083bb1d341a1b0db2b642ed83e273b161e4328f3a78c7

  • SSDEEP

    3072:lxUm75Fku3eKeJk21ZSJReOqlz+mErj+HyHnNVIPL/+ybbiGF+1u46Q7q303lU8O:fU8DkpP1oJ1qlzUWUNVIT/bbbIW09R

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Drops file in Program Files directory 2 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-02-28_a4c245cbe03c58f30dd1e04892aa2d2c_icedid.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-02-28_a4c245cbe03c58f30dd1e04892aa2d2c_icedid.exe"
    1⤵
    • Drops file in Program Files directory
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:1272
    • C:\Program Files\dependant\shipped.exe
      "C:\Program Files\dependant\shipped.exe" "33201"
      2⤵
      • Executes dropped EXE
      • Suspicious use of SetWindowsHookEx
      PID:2744

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Program Files\dependant\shipped.exe
    Filesize

    313KB

    MD5

    ada7b56fbc047aa78002b7908a47f286

    SHA1

    6aa969e1f25990aea357e494047fb293fc2935fd

    SHA256

    9c4dc724699d6bfb16eceba8cd889eb825d976606ae31e50e380a82dd193101a

    SHA512

    ec8b6ce91f69c749254774ac6b07e474d83fb7a15202a0abf0cb6ff7acc789ffa5d9afa57dafb528401288790edce77954c29f413cd410bf453d28ce408d8e7c

    Download Submit