General
-
Target
2024-03-26_fbaf1f693b52260383ed0dd4db707a87_icedid
-
Size
3.4MB
-
Sample
240326-n9pqxacf8z
-
MD5
fbaf1f693b52260383ed0dd4db707a87
-
SHA1
2b66820aaa87bd2d4f34171e0707c9b2a4b08aad
-
SHA256
9302b37865560a12e474c5c2b40282a7b1becb43b16adfcf61aa16a373b8dfb7
-
SHA512
f0e76137d830fae1348d007cbd2a2a5e4b2f302c41d129f59009a7cc929e118d1a6eb88ea684fbb89a0ea4f9dd4cb92cada8996b34097d8bb85e1f4181eb8059
-
SSDEEP
49152:HCwsbCANnKXferL7Vwe/Gg0P+Wh+T9jaR3:iws2ANnKXOaeOgmh+c1
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-26_fbaf1f693b52260383ed0dd4db707a87_icedid.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
2024-03-26_fbaf1f693b52260383ed0dd4db707a87_icedid
-
Size
3.4MB
-
MD5
fbaf1f693b52260383ed0dd4db707a87
-
SHA1
2b66820aaa87bd2d4f34171e0707c9b2a4b08aad
-
SHA256
9302b37865560a12e474c5c2b40282a7b1becb43b16adfcf61aa16a373b8dfb7
-
SHA512
f0e76137d830fae1348d007cbd2a2a5e4b2f302c41d129f59009a7cc929e118d1a6eb88ea684fbb89a0ea4f9dd4cb92cada8996b34097d8bb85e1f4181eb8059
-
SSDEEP
49152:HCwsbCANnKXferL7Vwe/Gg0P+Wh+T9jaR3:iws2ANnKXOaeOgmh+c1
-
Gh0st RAT payload
-
UPX dump on OEP (original entry point)
-
Drops file in Drivers directory
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-