General
-
Target
2024-03-26_be4c60c1311e764b62b3f441526f793a_icedid
-
Size
4.2MB
-
Sample
240326-n253xshe66
-
MD5
be4c60c1311e764b62b3f441526f793a
-
SHA1
207ccec5ea7272d67b518ed04e9d714133c254dd
-
SHA256
52bbd1de1433be0a95ec4625055e738ad109ffa12d461be8d5cc14d892c2d21a
-
SHA512
c1f87a93b9a155eb6c2297fdbb70433dd1226a1563932df06667971a9968c5e2e1bb373699252b0b48bee7c44bfeaf553b79249bd747ac6ef67550f39f05c92c
-
SSDEEP
98304:Aws2ANnKXOaeOgmhgR2KupZ4pcb/RY36hb+FE:WKXbeO7SR8cpcruUCFE
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-26_be4c60c1311e764b62b3f441526f793a_icedid.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
2024-03-26_be4c60c1311e764b62b3f441526f793a_icedid
-
Size
4.2MB
-
MD5
be4c60c1311e764b62b3f441526f793a
-
SHA1
207ccec5ea7272d67b518ed04e9d714133c254dd
-
SHA256
52bbd1de1433be0a95ec4625055e738ad109ffa12d461be8d5cc14d892c2d21a
-
SHA512
c1f87a93b9a155eb6c2297fdbb70433dd1226a1563932df06667971a9968c5e2e1bb373699252b0b48bee7c44bfeaf553b79249bd747ac6ef67550f39f05c92c
-
SSDEEP
98304:Aws2ANnKXOaeOgmhgR2KupZ4pcb/RY36hb+FE:WKXbeO7SR8cpcruUCFE
-
Gh0st RAT payload
-
UPX dump on OEP (original entry point)
-
Drops file in Drivers directory
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-