Overview

overview

10

Static

static

3

2024-09-03...id.exe

windows7-x64

10

2024-09-03...id.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-03_e913a2f86785650a778bb437dbae20fc_icedid

  • Size

    533KB

  • Sample

    240903-t5k5tasdrc

  • MD5

    e913a2f86785650a778bb437dbae20fc

  • SHA1

    f8d5b7560fc7272bc8ed7190c655afbe446def4a

  • SHA256

    a0e762aca489d9066e373b34e65bedfbdbb2fa5fef24631aea687b1d0535341c

  • SHA512

    6625a72fa992ad92a99bf4c876e42df1d18e58fef0ad8859fa6337a3008833ff5569f4bd91c77c3d28d1ebd36ec40b8252faab2406c31154d761279f911aafbc

  • SSDEEP

    12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttY6nQwduf3cGv:ZXQUIsQpMsequrmGsQtv

Score
10/10
trickbotbankerdiscoverytrojan

Malware Config

Targets

    • Target

      2024-09-03_e913a2f86785650a778bb437dbae20fc_icedid

    • Size

      533KB

    • MD5

      e913a2f86785650a778bb437dbae20fc

    • SHA1

      f8d5b7560fc7272bc8ed7190c655afbe446def4a

    • SHA256

      a0e762aca489d9066e373b34e65bedfbdbb2fa5fef24631aea687b1d0535341c

    • SHA512

      6625a72fa992ad92a99bf4c876e42df1d18e58fef0ad8859fa6337a3008833ff5569f4bd91c77c3d28d1ebd36ec40b8252faab2406c31154d761279f911aafbc

    • SSDEEP

      12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttY6nQwduf3cGv:ZXQUIsQpMsequrmGsQtv

    Score
    10/10
    trickbotbankerdiscoverytrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks