Overview

overview

7

Static

static

3

2024-03-13...id.exe

windows7-x64

7

2024-03-13...id.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    121s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240215-en
  • resource tags

    arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
  • submitted
    13/03/2024, 16:42

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-03-13_9b1df03893cf8b9507716b7b2fc8e242_icedid.exe

  • Size

    430KB

  • MD5

    9b1df03893cf8b9507716b7b2fc8e242

  • SHA1

    41f24e88adbfb023a0b9e6b6b35e4941c97e8b59

  • SHA256

    a5b4aeefaf4244609118bf361914019097a76f9d1c32011cc7b0289c703b3a97

  • SHA512

    6914dccd8782b17bcdef5dbf5f8c0bcf5302d948d9e60cf5b6c087b603c080afbd5f7cf43d57aa8c69001d83b53b74ccd0a44acda72caf09262115bfd8c6b886

  • SSDEEP

    12288:uplrVbDdQaqdS/ofraFErH8uB2Wm0SXsNr5FU:axRQ+Fucuvm0as

Score
7/10

Malware Config

Signatures

  • Executes dropped EXE 1 IoCs
  • Loads dropped DLL 2 IoCs
  • Drops file in Program Files directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-03-13_9b1df03893cf8b9507716b7b2fc8e242_icedid.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-03-13_9b1df03893cf8b9507716b7b2fc8e242_icedid.exe"
    1⤵
    • Loads dropped DLL
    • Drops file in Program Files directory
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2308
    • C:\Program Files\verify\Framework.exe
      "C:\Program Files\verify\Framework.exe" "33201"
      2⤵
      • Executes dropped EXE
      • Suspicious use of SetWindowsHookEx
      PID:2916

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • \Program Files\verify\Framework.exe
          Filesize

          430KB

          MD5

          cb06e5df0ec02aa42158f8d247a171bf

          SHA1

          9b959128b4af4ec5d20e9cfd47906c3d14dc6204

          SHA256

          72b5989add079f1c5acbbf294743fd41e06d63d10a886609c714d2601e004d39

          SHA512

          c865131e10f6434873bed9628c956939631e49a02aa8db2e9f3e967258b2cd558cdb1cb380ebda4d8f141030b04b97599f66e0bc97956d696e52a44f33a9ba4d

          Download Submit