Overview

overview

3

Static

static

1

2024-10-14...id.exe

windows7-x64

3

2024-10-14...id.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    143s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-10-2024 16:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-10-14_fabf80b0720623e4d546f0fdbf978611_icedid.exe

  • Size

    695KB

  • MD5

    fabf80b0720623e4d546f0fdbf978611

  • SHA1

    89c9a180a0e5815869b4bdc849a38a7f9fa809e3

  • SHA256

    5cdba9750908d767e746fb880799fb640eb7a14cf6ee59b00b5b48213b5d0d3d

  • SHA512

    57ff224561d5e9d7bb2db1200768d20b1cdcec10dab4e4cc59a1c6484ce854890220e23977c88ed8708be82f6b92501ee24bb781c8f802d6c1b2c53e2187322d

  • SSDEEP

    12288:mbZ1HQNN/QWMG6+xQkL2UXAJJVhUp1fNsGsSCrNfTVzoAk74q6i7:mbZ9DRnUuGsSiTVw6i7

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-10-14_fabf80b0720623e4d546f0fdbf978611_icedid.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-10-14_fabf80b0720623e4d546f0fdbf978611_icedid.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:3888

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads