Static task
static1
Behavioral task
behavioral1
Sample
2024-09-09_a959fb42b786bc5c200baef1cc6c3580_anydesk_icedid_zxxz.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2024-09-09_a959fb42b786bc5c200baef1cc6c3580_anydesk_icedid_zxxz.exe
Resource
win10v2004-20240802-en
General
-
Target
2024-09-09_a959fb42b786bc5c200baef1cc6c3580_anydesk_icedid_zxxz
-
Size
3.0MB
-
MD5
a959fb42b786bc5c200baef1cc6c3580
-
SHA1
6ddf235df89b7d7d1a1e5881e0aee14b1fed4615
-
SHA256
2a27aed5e15ac31de46e889c54a8fdce241e7d180ae80ae5c86854d147b09d9c
-
SHA512
e9b9e866ee5e8def5c558a9bb01f8aac69dae611ce18649c946e97479e6a20dca0e59bacab807941a69e41a45f8d8aa4222921591cae01c72c4743ac1cd66678
-
SSDEEP
49152:On/8ZSkMa4vRTRPyAd2cPzMs6OyifNmYl5c6giJf2Zg5dXuIitZ:s/8ZhMaOxR97PoXqzlVJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-09-09_a959fb42b786bc5c200baef1cc6c3580_anydesk_icedid_zxxz
Files
-
2024-09-09_a959fb42b786bc5c200baef1cc6c3580_anydesk_icedid_zxxz.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 908KB - Virtual size: 904KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 80KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 88KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ