icedid | b56fcd3c57caf3ef86db827cf544df3a6ab74a0fd2b42b427629a8c70e6b61bc[.]zip

General

Target

b56fcd3c57caf3ef86db827cf544df3a6ab74a0fd2b42b427629a8c70e6b61bc.zip
Size

9KB
MD5

6ff4ec565f9f18d69b60464ef68a8c43
SHA1

0e79050632b093dcdc84d0c4a5cc67b5aa4392a3
SHA256

dfca6da55c6f7534afe901b15ce8964da039109717a12a52a790a2fbf36b093b
SHA512

10f3f9856202089d35705596615b8d01ffe2693a6b6c73b6c7fc96cf01b270932c48bd8fa3e36bb383c48e2e33310f8e8c08edaa310e5b18512ea5f92f51bfa4
SSDEEP

192:jYLnpEbibUoxLUB6a4funZ3gABKzXcXO5OPJJHY4b16BerkuTXse/9:FibTxLU1QX8sOxdY4beWTd/9

Score

10^/10

loader icedid

Family

icedid

b56fcd3c57caf3ef86db827cf544df3a6ab74a0fd2b42b427629a8c70e6b61bc.zip
.zip

Password: infected
b56fcd3c57caf3ef86db827cf544df3a6ab74a0fd2b42b427629a8c70e6b61bc.dll
.dll regsvr32 windows x64

83f22083623bd7bf013895291b81ae25

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

HeapFree
HeapReAlloc
HeapAlloc

msvcrt

memset

Exports

Exports

DllGetClassObject
DllRegisterServer
EntryFunct
EntryFunct1
PluginInit

Sections

.c
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 6B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE