2023-08-22_d6aef2beed32c8790a99a70d5107d21c_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-22_d6aef2beed32c8790a99a70d5107d21c_icedid_JC.exe
Size

2.5MB
MD5

d6aef2beed32c8790a99a70d5107d21c
SHA1

a74b27f334831334111cdeebdb2dc9afa13518ff
SHA256

e912d11f36eebdf1a66ed4a160f29876cb688f3a7a357f4ee89b6cda9bbd5382
SHA512

82adfae31736a0e3d65a4ce90495607dda8e3831df9ebcc98d970884f5a4146129342e108f3c64958bf4c10695db9ed2bc4810cbbeca107b6f0cc988d598f9f0
SSDEEP

49152:YsdoiyG9N/PkPkATtjOCcAMqjxtdwnqCxEs:YsdoVQxT2qc1tdE0s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-22_d6aef2beed32c8790a99a70d5107d21c_icedid_JC.exe

Files

2023-08-22_d6aef2beed32c8790a99a70d5107d21c_icedid_JC.exe
.exe windows x86

3d7137e903df1cdb9359ad75af28e9a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
HeapSize
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
LCMapStringA
LCMapStringW
GetTimeZoneInformation
VirtualQuery
IsBadWritePtr
GetFileAttributesA
GetTimeFormatA
GetDateFormatA
GetCPInfo
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetOEMCP
IsBadReadPtr
IsBadCodePtr
GetExitCodeProcess
CreateProcessA
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetSystemInfo
VirtualAlloc
VirtualProtect
TerminateProcess
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
GetStartupInfoW
FileTimeToLocalFileTime
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
UnlockFile
LockFile
GlobalFlags
lstrcmpiW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
InterlockedIncrement
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
InterlockedDecrement
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcatW
lstrcmpW
GetVersionExA
FreeResource
MulDiv
lstrcpyW
FormatMessageW
LocalFree
GetProcessHeap
HeapAlloc
HeapFree
GetModuleFileNameA
FlushViewOfFile
FlushFileBuffers
SetFilePointer
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetCurrentThread
lstrcpynW
EnterCriticalSection
LeaveCriticalSection
CreateIoCompletionPort
GetQueuedCompletionStatus
BeginUpdateResourceW
CreateFileMappingW
MapViewOfFile
UpdateResourceW
EndUpdateResourceW
UnmapViewOfFile
FindResourceExW
GetDiskFreeSpaceExW
lstrlenW
GetModuleHandleW
GetCurrentProcess
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetFileTime
GetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
SetFileTime
FileTimeToSystemTime
GetCurrentThreadId
SetLastError
GetFileSize
ReadFile
RemoveDirectoryW
GetVersion
GetWindowsDirectoryW
WriteFile
SetEndOfFile
GetEnvironmentVariableW
ResetEvent
ReadDirectoryChangesW
WaitForMultipleObjects
CreateDirectoryW
SetFileAttributesW
GetTempFileNameW
MoveFileW
CopyFileW
CreateMutexW
WaitForSingleObject
ReleaseMutex
CreateEventW
SetEvent
MultiByteToWideChar
GetTickCount
LoadLibraryW
GetProcAddress
GetTempPathW
GetLongPathNameW
CreateFileW
FreeLibrary
GetLastError
DeleteFileW
GetPrivateProfileIntW
GetLocalTime
GetModuleFileNameW
GetPrivateProfileStringW
WideCharToMultiByte
WritePrivateProfileStringW
FindResourceW
LoadResource
LockResource
SizeofResource
CreateThread
Sleep
SuspendThread
CloseHandle
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
SetUnhandledExceptionFilter
InterlockedExchange

user32

SetRect
IsRectEmpty
CharNextW
CharUpperW
DestroyMenu
GetWindowDC
SetWindowContextHelpId
MapDialogRect
GetMessageW
ValidateRect
PostQuitMessage
WindowFromPoint
SetMenuItemBitmaps
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
IsDialogMessageW
WinHelpW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
GetClassInfoExW
GetClassLongW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextLengthW
GetForegroundWindow
GetLastActivePopup
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
MessageBoxW
TrackPopupMenu
GetKeyState
UpdateWindow
GetMenu
AdjustWindowRectEx
EqualRect
CopyAcceleratorTableW
GetClassInfoW
RegisterClassW
GetDlgCtrlID
CallWindowProcW
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetNextDlgTabItem
EndDialog
GetMenuState
GetMenuItemID
GetMenuItemCount
FindWindowW
GetClassNameW
EnumWindows
FindWindowExW
EnumChildWindows
LoadImageW
DestroyIcon
BeginPaint
EndPaint
GetDlgItem
ShowWindow
SystemParametersInfoW
SetWindowTextW
MoveWindow
IsZoomed
SetWindowRgn
ReleaseCapture
SetCapture
ClientToScreen
LoadCursorW
SetCursor
DestroyCursor
KillTimer
SetTimer
IsWindowVisible
IsWindowEnabled
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
IsChild
GetFocus
SetWindowPos
TranslateMessage
DispatchMessageW
GetSysColorBrush
FillRect
GetAsyncKeyState
GetCapture
DefWindowProcW
ScreenToClient
PtInRect
DrawFocusRect
GetSysColor
OffsetRect
GetDC
ReleaseDC
GrayStringW
RegisterClipboardFormatW
PostThreadMessageW
DrawTextExW
TabbedTextOutW
DrawTextW
GetCursorPos
LoadMenuW
GetSubMenu
UnregisterClassW
wsprintfW
GetWindowTextW
GetTopWindow
GetWindowThreadProcessId
GetSystemMetrics
LockWindowUpdate
InvalidateRect
GetWindowRect
IsIconic
DrawIcon
GetWindow
GetParent
GetWindowLongW
SetWindowLongW
GetClientRect
MessageBoxIndirectW
SetForegroundWindow
LoadIconW
SendMessageW
IsWindow
PostMessageW
RegisterWindowMessageW
EnableWindow

gdi32

SetMapMode
SetStretchBltMode
SetBkMode
RestoreDC
SaveDC
CreateRectRgnIndirect
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetRgnBox
GetBkColor
GetMapMode
GetStockObject
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
MoveToEx
LineTo
CreateCompatibleBitmap
GetDeviceCaps
DeleteDC
OffsetRgn
CreatePatternBrush
CreatePen
CreateFontIndirectW
SelectObject
SetBrushOrgEx
CreateRectRgn
CombineRgn
CreateDIBSection
DeleteObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetCurrentObject
GetPixel
GetTextColor
CreateCompatibleDC
GetObjectW
BitBlt
CreateSolidBrush
SetBitmapBits
GetBitmapBits

msimg32

GradientFill
AlphaBlend

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueW
CreateServiceW
OpenSCManagerW
DeleteService
StartServiceW
ControlService
CloseServiceHandle
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegQueryValueExW
RegEnumKeyExW
FreeSid
SetSecurityDescriptorDacl
AddAccessAllowedAce
InitializeAcl
GetLengthSid
OpenServiceW
RegEnumKeyW
RegOpenKeyW
InitializeSecurityDescriptor
AllocateAndInitializeSid

shell32

SHBrowseForFolderW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderPathW
ShellExecuteA
SHChangeNotify
SHGetPathFromIDListW
Shell_NotifyIconW
SHGetFileInfoW

comctl32

ord17
_TrackMouseEvent
ImageList_GetImageCount
ImageList_Draw
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragMove
ImageList_DragEnter
ImageList_DragLeave
ImageList_Destroy

shlwapi

PathFileExistsW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsDirectoryW
PathIsUNCW

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard

oleaut32

OleCreateFontIndirect
SysAllocString
SafeArrayDestroy
VariantCopy
SysStringLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime

fltlib

FilterSendMessage
FilterGetMessage
FilterConnectCommunicationPort

gdiplus

GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageHeight
GdipGetImageWidth
GdipGetPropertyItemSize
GdipCloneImage
GdipCloneBrush
GdipDrawImageI
GdipFillRectangleI
GdipDrawRectangleI
GdipDrawLineI
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipGetImageGraphicsContext
GdipGetPropertyItem
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipSetCompositingMode
GdiplusStartup
GdipDrawImageRectI
GdipFree
GdipAlloc
GdipDeleteBrush
GdipCreatePen1
GdipDeletePen
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipBitmapGetPixel
GdipBitmapSetPixel
GdipCreateSolidFill
GdipCreateFromHDC

winmm

timeKillEvent

Sections

.text
Size: 636KB - Virtual size: 635KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d7137e903df1cdb9359ad75af28e9a4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

fltlib

gdiplus

winmm

Sections

.text Size: 636KB - Virtual size: 635KB

.rdata Size: 156KB - Virtual size: 152KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 1.7MB - Virtual size: 1.7MB

.text
Size: 636KB - Virtual size: 635KB

.rdata
Size: 156KB - Virtual size: 152KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 1.7MB - Virtual size: 1.7MB