Static task
static1
Behavioral task
behavioral1
Sample
2023-08-23_658d8685e35f5944b661485f8fde82d3_icedid_JC.exe
Resource
win7-20230831-en
windows7-x64
Behavioral task
behavioral2
Sample
2023-08-23_658d8685e35f5944b661485f8fde82d3_icedid_JC.exe
Resource
win10v2004-20230831-en
windows10-2004-x64
General
-
Target
2023-08-23_658d8685e35f5944b661485f8fde82d3_icedid_JC.exe
-
Size
2.4MB
-
MD5
658d8685e35f5944b661485f8fde82d3
-
SHA1
eb51465b4f0d6a6b3516b227682075f62d531fc1
-
SHA256
7d121351916079a2915157e092af3c017c0fea569ab8d3febc61ff986286aaf1
-
SHA512
1805fd5dd50a4a86160c99130175a3735454fd074389539d2ea2cf97a34e31bcfb8e3f5c32c204cdea7059980bfa43aaf741e49b66c5582c0de298d1e574e891
-
SSDEEP
24576:HKwIzVtBub14rtJABiSAIInHZeoVnd/uVa0Q8eC6sVW1f9iMOz2oHkGhMxs/OB0Q:HKwo4b14ZJY9w/GQ11OEgQ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2023-08-23_658d8685e35f5944b661485f8fde82d3_icedid_JC.exe
Files
-
2023-08-23_658d8685e35f5944b661485f8fde82d3_icedid_JC.exe.exe windows x86
207623c99852934d7eb3861e1e5df43f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
MulDiv
OpenFileMappingA
SetEnvironmentVariableA
CreateFileA
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetProcessHeap
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
HeapReAlloc
HeapSize
HeapAlloc
GetConsoleMode
GetConsoleCP
SetConsoleCtrlHandler
FatalAppExitA
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
VirtualQuery
GetSystemInfo
VirtualAlloc
ExitProcess
GetModuleFileNameA
IsBadReadPtr
HeapValidate
ExitThread
CreateThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RaiseException
RtlUnwind
GetStartupInfoW
GetTickCount
GetDiskFreeSpaceW
GetTempFileNameW
FindResourceExW
GetCurrentDirectoryW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
SetFileAttributesW
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesW
SystemTimeToFileTime
FileTimeToSystemTime
LocalLock
LocalUnlock
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetProfileIntW
VirtualProtect
lstrlenA
GetAtomNameW
SetErrorMode
GlobalFlags
GetCurrentProcessId
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoW
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
GetShortPathNameW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
MoveFileW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
DuplicateHandle
GetHandleInformation
WideCharToMultiByte
GlobalSize
FormatMessageW
LocalFree
InterlockedIncrement
InterlockedDecrement
GetModuleHandleA
CompareStringW
LoadLibraryA
lstrcmpW
GetCurrentThreadId
GlobalGetAtomNameW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
MultiByteToWideChar
GetVersionExA
SuspendThread
GetThreadPriority
SetThreadPriority
SetLastError
LoadLibraryW
GetProcAddress
FreeLibrary
RemoveDirectoryW
GetModuleHandleW
Sleep
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
OpenProcess
TerminateProcess
lstrlenW
CreateDirectoryW
GetWindowsDirectoryW
CopyFileW
DeleteFileW
lstrcpyW
GetCurrentProcess
GetVolumeInformationW
CreateMutexW
GetLastError
SetEvent
ResetEvent
WaitForSingleObject
FindResourceW
LoadResource
SizeofResource
FreeResource
LockResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
GlobalFree
CloseHandle
CreateEventW
GetVersionExW
FindFirstFileW
FindNextFileW
FindClose
OpenEventA
user32
GetClipboardFormatNameA
ReleaseCapture
SetRectEmpty
GetAsyncKeyState
SystemParametersInfoW
DestroyMenu
GetDialogBaseUnits
GetWindowThreadProcessId
SetCursor
GetCursorPos
GetMessageW
TranslateMessage
MapVirtualKeyW
GetKeyNameTextW
CharUpperW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckRadioButton
CheckDlgButton
GetMenuCheckMarkDimensions
RegisterWindowMessageW
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
SendDlgItemMessageW
SendDlgItemMessageA
GetSysColor
DispatchMessageW
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpW
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetKeyState
GetDlgCtrlID
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
OpenIcon
CloseWindow
LoadIconW
LoadCursorW
PostThreadMessageW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
MapDialogRect
GetWindowContextHelpId
SetWindowContextHelpId
GetClipboardFormatNameW
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
GetParent
IsChild
GetLastActivePopup
GetWindow
GetTopWindow
FindWindowExW
FindWindowW
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirListW
GetFocus
SetCapture
GetCapture
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRgn
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRgn
GetUpdateRect
GetWindowDC
EndPaint
BeginPaint
ScreenToClient
ClientToScreen
MapWindowPoints
GetClientRect
GetWindowRect
BringWindowToTop
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
DestroyIcon
LoadImageW
LoadBitmapW
SetRect
ReleaseDC
IsIconic
HiliteMenuItem
GetSystemMenu
DrawMenuBar
DragDetect
PostMessageW
SendMessageW
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectW
LoadMenuW
SetMenuItemBitmaps
RemoveMenu
ModifyMenuW
InsertMenuItemW
InsertMenuW
GetSubMenu
UnpackDDElParam
IsClipboardFormatAvailable
MessageBeep
WaitMessage
TranslateAcceleratorW
ReuseDDElParam
GetMenuBarInfo
CharNextW
CopyAcceleratorTableW
UnregisterClassW
RegisterClipboardFormatW
InSendMessage
IsRectEmpty
GetTabbedTextExtentA
SendNotifyMessageW
GetDC
FillRect
MsgWaitForMultipleObjects
PeekMessageA
IsWindowUnicode
GetMessageA
DispatchMessageA
SubtractRect
UnionRect
InflateRect
PtInRect
CopyRect
GetSystemMetrics
ExitWindowsEx
UpdateWindow
PostQuitMessage
PeekMessageW
IsWindowEnabled
GetDlgItem
GetWindowLongW
DestroyWindow
CreateDialogIndirectParamW
EnableWindow
IsWindow
SetActiveWindow
GetActiveWindow
GetDesktopWindow
EndDialog
GetSysColorBrush
WindowFromDC
ExcludeUpdateRgn
FrameRect
InvertRect
DrawIcon
DrawStateW
DrawEdge
DrawFrameControl
DrawFocusRect
TabbedTextOutW
DrawTextW
DrawTextExW
GetTabbedTextExtentW
GrayStringW
ScrollDC
CreateMenu
CreatePopupMenu
IsMenu
DeleteMenu
AppendMenuW
CheckMenuItem
EnableMenuItem
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringW
GetMenuItemInfoW
SetMenuItemInfoW
LoadAcceleratorsW
gdi32
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutW
ExtTextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
GetTextCharacterExtra
GetCharWidthW
GetFontLanguageInfo
GetCharacterPlacementW
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCW
GetOutlineTextMetricsW
GetCharABCWidthsW
GetFontData
GetKerningPairsW
GetGlyphOutlineW
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetTextColor
GetCharWidthFloatW
AbortPath
BeginPath
CloseFigure
GetROP2
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
CreateMetaFileW
CloseMetaFile
CreateEnhMetaFileW
CloseEnhMetaFile
GetDCOrgEx
GetClipBox
SetTextColor
SetBkColor
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
CopyMetaFileW
StretchDIBits
EnumFontFamiliesExW
DeleteMetaFile
GetCharABCWidthsFloatW
GetStretchBltMode
GetPolyFillMode
GetBkMode
GetBkColor
UpdateColors
RealizePalette
GetNearestColor
EnumObjects
SetBrushOrgEx
GetBrushOrgEx
CreateICW
CreateDCW
RectInRegion
PtInRegion
ExtCreateRegion
GetRgnBox
OffsetRgn
EqualRgn
CombineRgn
PathToRegion
CreateRoundRectRgn
CreatePolyPolygonRgn
CreatePolygonRgn
CreateEllipticRgnIndirect
CreateRectRgnIndirect
CreateRectRgn
ResizePalette
GetNearestPaletteIndex
SetRectRgn
EndPath
CreateEllipticRgn
GetDeviceCaps
DeleteObject
DeleteDC
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
AnimatePalette
SetPaletteEntries
GetPaletteEntries
CreateHalftonePalette
CreatePalette
CreateDiscardableBitmap
GetBitmapDimensionEx
SetBitmapDimensionEx
GetBitmapBits
SetBitmapBits
CreateBitmapIndirect
CreateBitmap
CreateFontW
CreateFontIndirectW
CreateDIBPatternBrushPt
CreatePatternBrush
CreateBrushIndirect
CreateHatchBrush
ExtCreatePen
CreatePenIndirect
CreatePen
GetObjectType
UnrealizeObject
GetStockObject
GetObjectW
RemoveFontResourceW
CreateScalableFontResourceW
AddFontResourceW
CreateSolidBrush
BitBlt
GetRegionData
comdlg32
GetFileTitleW
winspool.drv
ClosePrinter
DocumentPropertiesW
OpenPrinterW
GetJobW
advapi32
SetThreadToken
OpenThreadToken
GetFileSecurityW
SetFileSecurityW
RegCreateKeyW
RegEnumKeyW
RegQueryValueW
RegOpenKeyW
RegSetValueW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RevertToSelf
shell32
DragQueryFileW
ShellExecuteW
SHGetSpecialFolderPathW
DragAcceptFiles
SHGetFileInfoW
ExtractIconW
SHChangeNotify
DragFinish
shlwapi
PathStripToRootW
PathFindExtensionW
PathRemoveExtensionW
PathFindFileNameW
PathIsUNCW
PathRemoveFileSpecW
oledlg
OleUIInsertObjectW
OleUIConvertW
OleUIChangeIconW
OleUIEditLinksW
OleUIUpdateLinksW
OleUIPasteSpecialW
OleUIBusyW
ole32
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleGetClipboard
OleSetMenuDescriptor
DoDragDrop
OleRegEnumVerbs
OleRegGetMiscStatus
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CreateOleAdviseHolder
CreateDataAdviseHolder
OleTranslateAccelerator
IsAccelerator
GetRunningObjectTable
CoLockObjectExternal
OleCreateLinkToFile
OleCreateFromFile
OleCreateLinkFromData
OleCreateFromData
OleSetContainedObject
OleLockRunning
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoGetMalloc
GetClassFile
CreateFileMoniker
CreateGenericComposite
CreateItemMoniker
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
OleSaveToStream
CoRegisterClassObject
StgOpenStorageOnILockBytes
CoGetClassObject
StringFromGUID2
OleRun
CoInitializeEx
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTreatAsClass
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
OleDuplicateData
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
ReleaseStgMedium
CoDisconnectObject
WriteClassStm
OleGetIconOfClass
StringFromCLSID
CoTaskMemFree
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
GetHGlobalFromILockBytes
StgIsStorageILockBytes
OleSave
OleLoad
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
CoRevokeClassObject
OleCreate
oleaut32
SystemTimeToVariantTime
OleLoadPicture
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayGetDim
SysStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
VariantCopy
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VarBstrFromDec
VarDecFromStr
VarDateFromStr
VarBstrFromDate
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
SafeArrayGetElemsize
winmm
PlaySoundW
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 319KB - Virtual size: 318KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 541KB - Virtual size: 541KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ