Analysis
-
max time kernel
143s -
max time network
155s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
-
submitted
09/04/2024, 22:24
General
-
Target
2024-04-09_4298d6efb7916ddac0b791f7fcbbc6e9_icedid.exe
-
Size
429KB
-
MD5
4298d6efb7916ddac0b791f7fcbbc6e9
-
SHA1
186abd639f4f74fc7c7ff225c3b143ade1ecea58
-
SHA256
4a691aedff56e61e41db3d39414be3b257d1947bafd10fa01762413feba44e81
-
SHA512
041e2e719bc6655673d88be17421366ff932da46aefadeb0851fe766069a650d2f78aaa389fc6756764893333efc602cd0bdaa257001c1f719e4ecc3b5d4bfd0
-
SSDEEP
12288:splrVbDdQaqdS/ofraFErH8uB2Wm0SXsNr5FU:4xRQ+Fucuvm0as
Score
7/10
Malware Config
Signatures
-
Executes dropped EXE 1 IoCs
-
Drops file in Program Files directory 1 IoCs
-
Suspicious use of SetWindowsHookEx 8 IoCs
-
Suspicious use of WriteProcessMemory 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\2024-04-09_4298d6efb7916ddac0b791f7fcbbc6e9_icedid.exe"C:\Users\Admin\AppData\Local\Temp\2024-04-09_4298d6efb7916ddac0b791f7fcbbc6e9_icedid.exe"1⤵
- Drops file in Program Files directory
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Program Files\during\click-through.exe"C:\Program Files\during\click-through.exe" "33201"2⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
429KB
MD53c0c5c59979f9ca835f35e4d282a3948
SHA1ccffba262cf49d150deacea5422ac2e91169ff9f
SHA256fa643ebfdfc29483cd04e1c6fe76c9f945d2b485ea9c6114d2d8eeb0cb9f3fda
SHA512e83b373d14c129fb96cbabeb6d2d315ab26343f7a99a6fc6bd254cc3dcccbeff4aba94007cd0114b708caa7928eb0772fa21e4755d464eae94648e3ab344bcd4