icedid[.]zip | Triage

Submit
Reports

Overview

overview

1

Static

static

1

run_export.bat

windows7-x64

1

run_export.bat

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

run_export.bat

Resource

win7-20230220-en

windows7-x64

1 signatures

300 seconds

Behavioral task

behavioral2

Sample

run_export.bat

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

300 seconds

General

Target

icedid.zip
Size

324KB
MD5

d1898d6201c6b244de4533fd5d5f1cef
SHA1

691c92bfb5c7921db97fafd0ad3b99b37e2e937a
SHA256

f6e132035d9b015bc48a6e188f9a1101eda2dd82065e2309da2327f6844978e2
SHA512

a08de7de028aa4c58c3a3c0ef7cbb18b5be350187d4fcb0b177f66aafb6b2bcfaa39b2b29c9fe6622526a1580ee01ea5e0f6aff9eefdba8bc5fa52e5c544751e
SSDEEP

6144:bJqrbMsGrNMOvmu2CL06TjAnAwMchgzdIBCr69tNWeAcOGK8NTLT19Hmlyjf:bJqcPBMj20yjoVCBIBCr69tNWDABTLTz

Score

1^/10

Malware Config

Signatures

Files

icedid.zip
.zip

Password: infected
run_export.bat
sample
.dll windows x64

05b82023beedae5ff5647068c869c0f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

IsDialogMessageW
LoadCursorA
SetWindowTextA
InvalidateRgn
GetFocus
GetMessageTime
DrawCaption

gdi32

CreateCompatibleBitmap
ColorCorrectPalette
EndDoc
GetEnhMetaFileBits
AddFontMemResourceEx
GetStockObject
ExcludeClipRect
CreateRoundRectRgn
ChoosePixelFormat
CreatePenIndirect

Exports

Exports

CJFOMw
JriaADvP7dL
PluginInit
QB91XY
ZGnU2BqBgpp
fin5Jf
hOn42ebb3
kizO8xTA
s0JrpydTaqp

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 545KB - Virtual size: 545KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2025

Terms | Privacy