icedid[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-20220414-en

icedid 2406015698 banker core_loader trojan

windows7_x64

0 signatures

0 seconds

General

Target

icedid.zip
Size

458KB
MD5

739f25c8b474e708f4b1dee4d7b193aa
SHA1

e67fe068fa3986ba86d040e7db6ca44a1e93d49e
SHA256

e2e3faccd2903f8c8a9006222089cc0150bd405a8f2159386cae470cc9fed20b
SHA512

13bd2e44cd01e20acb63781d5aa57ff6fd1e4241f88ace78cbaaf1087906d3c7ede5b012868ca3f2a4454edea6c089b7d3b5b8b8a799b35a880b181600a21b42
SSDEEP

12288:ufBBtfewdzhbO29W/BTmvZuDflxdwqs8a6D8:ufBBtfFL9WJTmSdwqR+

Score

N/A

Malware Config

Signatures

Files

icedid.zip
.zip
clutch-32.tmp
.dll windows x64

93406070e8f82caaf6ed319d32395794

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

gdi32

CreateBrushIndirect
GetTextCharacterExtra
GetTextCharset
GetGlyphIndicesA
GdiGetBatchLimit
GetICMProfileW
Chord

msvfw32

ord2
ICInstall
ICGetInfo
ICSendMessage
ICDecompress
ICDraw
DrawDibStart
GetOpenFileNamePreviewW

Exports

Exports

A4COce1ujFb
AcxGpz
B2GHGNnvPg2
BeNLJAyZnN8
Bh012VLJC0z
Bjaskkas
ChAxTmVaL
D0ezwQ2kXP
D5FfBQIWDz
JgwdTv13Af
K3CXYLz
KnyyXGLIr2Y

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
core.bat
license.dat

© 2018-2024

Terms | Privacy