icedid | fix[.]bin | Triage

Submit
Reports

Overview

overview

Static

static

fix.dll

windows7_x64

1

fix.dll

windows10-2004_x64

1

Sharing

Static task

static1

loader 3529509686 icedid

Behavioral task

behavioral1

Sample

fix.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

fix.dll

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

fix.bin
Size

44KB
MD5

dbffa1a76226d6fda86e28bef26359c0
SHA1

005f681036574495426d32b5f9f907638a2db079
SHA256

5f23895ffe955c94630466ffc850ff76e7941e00ac31987d261a3c72e22044cd
SHA512

915b52c61b5adf0e98975d2e863b3587bd1851bb36d07462dc450c438f297f8fe4f4191fdaea1cfbabfb3c18f6e965a10b99d21c7148092af5e77ad277a7e8ad
SSDEEP

384:k+vzaov6mxU5SU4DbwDPu4o3ZuTBl8FyHOJ:LzaNm+8u1lcWw

Score

10^/10

loader 3529509686 icedid

Malware Config

Extracted

Family

icedid

Campaign

3529509686

C2

oceriesfornot.top

Signatures

Icedid family
icedid

Files

fix.bin
.dll regsvr32 windows x64

83f22083623bd7bf013895291b81ae25

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

HeapFree
HeapReAlloc
HeapAlloc

msvcrt

memset

Exports

Exports

DllGetClassObject
DllRegisterServer
EntryFunct
EntryFunct1
PluginInit

Sections

.c
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.d
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy