Overview

overview

7

Static

static

3

2024-04-16...id.exe

windows7-x64

7

2024-04-16...id.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-16_7e677c28195eb9bc30810cf927eedb06_icedid

  • Size

    1.4MB

  • Sample

    240416-yxh3psda4s

  • MD5

    7e677c28195eb9bc30810cf927eedb06

  • SHA1

    1c024aa28e171bde9a26454aae2fe5ea79b3fb5e

  • SHA256

    51f1373875185dcf5360487c525f57e44fd3b1ddb82baba99a2e3caed25a52f5

  • SHA512

    90c7b9ba113a1c5c9a977c3a90c70abe41bf7aa760772cd370dc41b4fa86d516aa8b0e003bb37ef8ee75f7581b6382be905682dd3d49118a1f59dfa91aa889a2

  • SSDEEP

    24576:0qLMGoUoB6L69VdUgKyM3iHjatIiM9oOFL:0qLMz6L69VdUgDMyHja8n

Score
7/10
evasionspywarestealertrojan

Malware Config

Targets

    • Target

      2024-04-16_7e677c28195eb9bc30810cf927eedb06_icedid

    • Size

      1.4MB

    • MD5

      7e677c28195eb9bc30810cf927eedb06

    • SHA1

      1c024aa28e171bde9a26454aae2fe5ea79b3fb5e

    • SHA256

      51f1373875185dcf5360487c525f57e44fd3b1ddb82baba99a2e3caed25a52f5

    • SHA512

      90c7b9ba113a1c5c9a977c3a90c70abe41bf7aa760772cd370dc41b4fa86d516aa8b0e003bb37ef8ee75f7581b6382be905682dd3d49118a1f59dfa91aa889a2

    • SSDEEP

      24576:0qLMGoUoB6L69VdUgKyM3iHjatIiM9oOFL:0qLMz6L69VdUgDMyHja8n

    Score
    7/10
    evasionspywarestealertrojan

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks whether UAC is enabled

      evasiontrojan

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks