icy-launcher[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

icy-launcher.exe
Size

4.4MB
MD5

ab5c2a9f440d93e334b0f93083c0271e
SHA1

62f52d48e020786c17b4beb30877ef4d59639729
SHA256

a1777482fe6f390b56e3f908fe2c57b7450151c6e619e5a46945fdc52613613f
SHA512

ee6b93ea6a4f11228f181f957bca5943cb41f803ffbd1e992521ee08055282465909e0013d41aa147cf161f5310ac7d6407a1d6cedf4b24cc708aa85ecd2def9
SSDEEP

49152:01E3or9CT5kHjUSukuwzQebzwzFFlYYlXB43IY48YefrKtg/x6/Tmi/frecEWTZy:HtqHjUSNQzB43IMTOMAlFHl+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
icy-launcher.exe

Files

icy-launcher.exe
.exe windows x64

a5259aa3f5795e14827018173f018409

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

opengl32

wglCreateContext
wglShareLists
wglGetProcAddress
wglDeleteContext
wglMakeCurrent
wglGetCurrentDC
wglGetCurrentContext

gdi32

GetPixelFormat
ChoosePixelFormat
SetPixelFormat
GetDeviceCaps
DescribePixelFormat
CreateRectRgn
DeleteObject
SwapBuffers

user32

SetWindowLongW
SetCapture
GetMessageW
RegisterRawInputDevices
MapVirtualKeyW
SendInput
SetForegroundWindow
GetClipCursor
ClipCursor
ShowCursor
MonitorFromPoint
SetWindowPlacement
GetKeyState
TranslateMessage
AdjustWindowRectEx
DispatchMessageW
PostThreadMessageW
PeekMessageW
ToUnicodeEx
ShowWindow
ChangeDisplaySettingsExW
PostMessageW
GetMenu
SetWindowLongPtrW
DestroyWindow
GetWindowLongW
GetKeyboardLayout
SystemParametersInfoA
MapVirtualKeyA
GetWindowLongPtrW
RedrawWindow
DefWindowProcW
GetSystemMetrics
RegisterTouchWindow
GetDC
MonitorFromWindow
IsProcessDPIAware
RegisterWindowMessageA
RegisterClassExW
MessageBoxW
CreateIcon
GetWindowRect
ClientToScreen
DestroyIcon
SetWindowTextW
GetKeyboardState
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClassInfoExW
GetClassNameW
GetWindowPlacement
MsgWaitForMultipleObjectsEx
GetActiveWindow
SendMessageW
GetForegroundWindow
ReleaseCapture
IsWindowVisible
GetClientRect
FlashWindowEx
InvalidateRgn
GetUpdateRect
ValidateRect
GetRawInputData
GetMonitorInfoW
SetWindowPos
MonitorFromRect
GetCursorPos
CloseTouchInputHandle
ScreenToClient
GetTouchInputInfo
SetCursor
LoadCursorW
GetClipboardData
TrackMouseEvent
CreateWindowExW

kernel32

HeapFree
HeapAlloc
SetThreadStackGuarantee
AddVectoredExceptionHandler
lstrlenW
ReleaseSRWLockExclusive
SetThreadErrorMode
LoadLibraryExW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
MultiByteToWideChar
WakeAllConditionVariable
FreeLibrary
GetSystemInfo
GetModuleHandleA
GetExitCodeProcess
WaitForSingleObject
SleepConditionVariableSRW
WakeConditionVariable
Sleep
GetCurrentThread
TryAcquireSRWLockExclusive
GetStdHandle
GetConsoleMode
LoadLibraryW
WriteConsoleW
SetLastError
GetCurrentDirectoryW
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
GetCurrentProcess
ReleaseMutex
GetEnvironmentVariableW
RtlLookupFunctionEntry
FormatMessageW
GetTempPathW
CreateFileW
GetFileInformationByHandle
GetFullPathNameW
SetFilePointerEx
FindNextFileW
CreateDirectoryW
FindFirstFileW
GetModuleHandleW
GetProcAddress
FindClose
AcquireSRWLockExclusive
GetLastError
GetFileInformationByHandleEx
SetHandleInformation
SwitchToThread
InitializeSListHead
IsDebuggerPresent
CloseHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetProcessHeap
GetCurrentThreadId
GetEnvironmentStringsW
FreeEnvironmentStringsW
CompareStringOrdinal
GetModuleFileNameW
GetSystemDirectoryW
GetWindowsDirectoryW
TerminateProcess
GetFileAttributesW
DuplicateHandle
GetCurrentProcessId
CreateNamedPipeW
CreateThread
ReadFileEx
SleepEx
WriteFileEx
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTimeAsFileTime
RtlCaptureContext
AcquireSRWLockShared
ReleaseSRWLockShared
DeleteFileW
MoveFileExW
SetFileInformationByHandle
IsProcessorFeaturePresent
GetFinalPathNameByHandleW
RtlVirtualUnwind
CreateSymbolicLinkW
CreateHardLinkW
SetFileTime
SetFileAttributesW
HeapReAlloc
CreateProcessW
WideCharToMultiByte
GlobalSize

winmm

timeGetDevCaps
timeBeginPeriod
timeEndPeriod

dwmapi

DwmEnableBlurBehindWindow

imm32

ImmAssociateContextEx
ImmGetCompositionStringW
ImmGetContext
ImmReleaseContext

ole32

RegisterDragDrop
CoTaskMemFree
RevokeDragDrop
CoUninitialize
OleInitialize
CoCreateInstance
CoInitializeEx

shell32

DragFinish
SHGetKnownFolderPath
DragQueryFileW

bcrypt

BCryptGenRandom

advapi32

SystemFunction036

ntdll

NtWriteFile
NtReadFile
RtlNtStatusToDosError
NtCreateFile

ws2_32

setsockopt
recv
WSARecv
WSASend
WSASocketW
bind
WSACleanup
freeaddrinfo
getsockname
WSAStartup
ioctlsocket
send
closesocket
WSAGetLastError
connect
accept
select
getaddrinfo
getpeername
getsockopt
listen

uxtheme

SetWindowTheme

vcruntime140

memset
memcmp
__current_exception_context
__current_exception
__CxxFrameHandler3
memcpy
memmove
__C_specific_handler

api-ms-win-crt-math-l1-1-0

cosf
cos
powf
sinf
_hypot
truncf
floor
fmin
fmax
pow
floorf
tan
acos
_hypotf
trunc
fmaxf
round
ceilf
sin
acosf
fmod
atan2
fmodf
roundf
fminf
__setusermatherr
ceil
exp2f

api-ms-win-crt-string-l1-1-0

strlen

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__p___argc
_set_app_type
_seh_filter_exe
__p___argv
exit
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
strerror
_exit

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5259aa3f5795e14827018173f018409

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

gdi32

user32

kernel32

winmm

dwmapi

imm32

ole32

shell32

bcrypt

advapi32

ntdll

ws2_32

uxtheme

vcruntime140

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 3KB - Virtual size: 6KB

.pdata Size: 83KB - Virtual size: 83KB

.reloc Size: 22KB - Virtual size: 21KB

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 3KB - Virtual size: 6KB

.pdata
Size: 83KB - Virtual size: 83KB

.reloc
Size: 22KB - Virtual size: 21KB