2023-08-22_821ce8d2d07a3a47fd4bbf98f30764c7_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-22_821ce8d2d07a3a47fd4bbf98f30764c7_icedid_JC.exe
Size

337KB
MD5

821ce8d2d07a3a47fd4bbf98f30764c7
SHA1

ec04232b54ffd03c882a26d5acf1e22f170b36b5
SHA256

c1f670c1d9c7b78b6acf35d783c76388c9519d2091b34dcd795a90fb1c58f251
SHA512

84050dbbd9a09e5640a082842fe150c0221290cbe2e53192a6eb191d31777dd217fc68a55f8fb26a1d9c1b163d1874fe18adab7a2189813779c588b4efa4cc3b
SSDEEP

6144:sDiYOn5hF5XmiwLGjoHNCiNrDFO1VudbzImE:sDi1nvF52iw8INNDao9z6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-22_821ce8d2d07a3a47fd4bbf98f30764c7_icedid_JC.exe

Files

2023-08-22_821ce8d2d07a3a47fd4bbf98f30764c7_icedid_JC.exe
.exe windows x86

c227f3e08fe2cc11ca8c9633334a5034

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

bass

BASS_StreamFree
BASS_StreamCreateFile
BASS_StreamCreateURL
BASS_ChannelSeconds2Bytes
BASS_ChannelBytes2Seconds
BASS_ChannelIsActive
BASS_ChannelGetData
BASS_ChannelSetAttributes
BASS_Init
BASS_ChannelGetAttributes
BASS_ChannelSetPosition
BASS_ChannelGetPosition
BASS_StreamGetLength
BASS_ChannelPause
BASS_ChannelStop
BASS_ChannelPlay
BASS_Free
BASS_GetVersion

basswma

BASS_WMA_StreamCreateFile

kernel32

TerminateProcess
GetStartupInfoA
GetCommandLineA
ExitThread
CreateThread
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
HeapReAlloc
SetStdHandle
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
GetLastError
lstrlenA
lstrcmpiA
lstrcpynA
lstrcpyA
GetModuleFileNameA
lstrcatA
IsDBCSLeadByte
FreeLibrary
LoadLibraryExA
GetModuleHandleA
DeleteFileA
CreateMutexA
CreateDirectoryA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapFree
HeapAlloc
ExitProcess
RtlUnwind
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
SetErrorMode
FileTimeToSystemTime
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
Sleep
GetVersion
CompareStringA
CompareStringW
GetProcAddress
lstrcmpW
LoadLibraryA
GlobalDeleteAtom
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileIntA
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
CreateFileA
GetFullPathNameA
GlobalFindAtomA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
InterlockedIncrement
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
GlobalAlloc
FormatMessageA
LocalFree
GlobalFree
InterlockedDecrement
GlobalLock
GlobalUnlock
MulDiv
SetLastError
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA

user32

PostThreadMessageA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
SetRect
IsRectEmpty
LoadCursorA
GetSysColorBrush
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
SetCursor
wsprintfA
DestroyMenu
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
IsDialogMessageA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
IsWindow
SetFocus
IsChild
GetWindowTextLengthA
GetForegroundWindow
SetActiveWindow
DispatchMessageA
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
TrackPopupMenu
GetScrollRange
GetScrollPos
GetMenu
GetMenuItemID
GetMenuItemCount
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
GetScrollInfo
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
MessageBoxA
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
UnregisterClassA
CharUpperA
UpdateWindow
KillTimer
SetTimer
PtInRect
GetSystemMetrics
LoadIconA
SetForegroundWindow
IsWindowVisible
GetDC
GetClassInfoExA
IsIconic
CheckMenuItem
DrawIcon
CopyRect
PostQuitMessage
FindWindowA
SetWindowTextA
CharNextA
GetCursorPos
RedrawWindow
SendMessageA
GetWindowRect
SetWindowRgn
LoadMenuA
GetSubMenu
GetKeyState
PostMessageA
ReleaseCapture
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
EnableWindow
GetParent
SetCapture
InvalidateRect
GetClientRect
DrawFocusRect
LoadBitmapA
GetWindowTextA

gdi32

SetMapMode
ExcludeClipRect
DeleteObject
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
GetDeviceCaps
CreateRectRgnIndirect
GetTextColor
GetRgnBox
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateFontA
GetStockObject
StretchBlt
CreatePolygonRgn
CreateSolidBrush
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
BitBlt
LPtoDP
DPtoLP
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
SetViewportExtEx
GetObjectA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegDeleteKeyA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA

shell32

Shell_NotifyIconA
ShellExecuteA

comctl32

InitializeFlatSB
FlatSB_EnableScrollBar
ImageList_Destroy
ord17

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA

oledlg

ord8

ole32

CLSIDFromProgID
StringFromGUID2
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoRegisterClassObject
CoRevokeClassObject
CoInitialize
CoCreateInstance
CoUninitialize
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

oleaut32

SysAllocStringLen
OleCreateFontIndirect
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
VariantChangeType
VariantClear
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
VariantInit

urlmon

URLDownloadToFileA

ws2_32

gethostbyname
gethostname

Sections

.text
Size: 228KB - Virtual size: 226KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 460KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c227f3e08fe2cc11ca8c9633334a5034

Headers

File Characteristics

Imports

bass

basswma

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

ws2_32

Sections

.text Size: 228KB - Virtual size: 226KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 460KB - Virtual size: 457KB

.text
Size: 228KB - Virtual size: 226KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 460KB - Virtual size: 457KB