2023-08-23_6776b5776a77ee833d2c4a0e40947108_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-23_6776b5776a77ee833d2c4a0e40947108_icedid_JC.exe
Size

1.7MB
MD5

6776b5776a77ee833d2c4a0e40947108
SHA1

b557e349ad01bd4c224666812fb5640468f88eed
SHA256

3fee4a37e315b88caf93503dc44407c23890f79e43ca18e2d64da2978bbb6210
SHA512

828163ea8a9de245c1caea51e6b8eb33464fa7ee8368a796e38de25d9d3ae143389d8c3832cab907bcbf3616e2d3868bc24a2f57b832610246f71d658933b83d
SSDEEP

24576:u5ZFrfOrWqsWxjLI7ko31oIL9x+3wtH6Hpy3nP9CwGwr3dFimH4zVLfzj:u5ksWxnI7ko31oILH+YCeP+w7/P4zh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-23_6776b5776a77ee833d2c4a0e40947108_icedid_JC.exe

Files

2023-08-23_6776b5776a77ee833d2c4a0e40947108_icedid_JC.exe
.exe windows x86

da4432535cecd1079500a91d80604cfe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
SetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
SetHandleCount
SetEnvironmentVariableA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
IsBadWritePtr
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
HeapReAlloc
ExitProcess
GetCommandLineA
FlushInstructionCache
WriteProcessMemory
GetProcessHeap
GetTempPathA
GetStartupInfoA
CreateThread
ExitThread
GetFileType
PeekNamedPipe
GetFileInformationByHandle
GetSystemTimeAsFileTime
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualProtect
HeapAlloc
HeapFree
GetFileTime
GetFileAttributesA
SetErrorMode
GetFullPathNameA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentDirectoryA
GetOEMCP
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
RaiseException
SetEvent
SetThreadPriority
InterlockedDecrement
SetLastError
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
lstrcpynA
FreeResource
DeviceIoControl
CreateEventA
ResetEvent
WaitForSingleObject
GetTempFileNameA
MoveFileA
FindClose
CopyFileA
FindFirstFileA
FindNextFileA
CreateDirectoryA
GetFileAttributesExA
VirtualAlloc
VirtualLock
InitializeCriticalSection
SetFilePointer
FormatMessageA
LocalFree
EnterCriticalSection
LeaveCriticalSection
Sleep
VirtualUnlock
VirtualFree
DeleteCriticalSection
WriteFile
CreateFileA
GetFileSize
ReadFile
CloseHandle
DeleteFileA
RemoveDirectoryA
GetTickCount
SuspendThread
ResumeThread
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
GetDriveTypeA
GetPrivateProfileIntA
GetVolumeInformationA
GetModuleHandleA
GetProcAddress
GetDiskFreeSpaceExA
GetDiskFreeSpaceA
GetModuleFileNameA
lstrcatA
WinExec
lstrcpyA
GetSystemTime
GetPrivateProfileStringA
WritePrivateProfileStringA
CompareStringW
CompareStringA
GetCPInfo
lstrlenA
lstrlenW
lstrcmpiA
FindResourceA
LoadResource
LockResource
GetVersionExA
SizeofResource
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersion

user32

CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetMenu
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
UnregisterClassA
CallWindowProcA
GetWindowLongA
SetWindowPos
IntersectRect
GetWindowPlacement
GetWindow
DefWindowProcA
GetDlgCtrlID
WindowFromPoint
IsChild
ClientToScreen
DeferWindowPos
SetRectEmpty
GetMenuStringA
DestroyMenu
CopyImage
GetDlgItem
ReleaseCapture
GetFocus
SetCapture
GetCapture
MapWindowPoints
DrawFocusRect
DrawFrameControl
OffsetRect
MessageBoxA
UpdateWindow
GetKeyState
SetWindowsHookExA
CopyIcon
IsWindow
GetMessagePos
InvalidateRect
ScreenToClient
CharLowerA
CharUpperA
SetRect
CopyRect
GetSysColor
FillRect
GetSysColorBrush
LoadBitmapA
DrawEdge
CreateMenu
CreatePopupMenu
InflateRect
PtInRect
LoadCursorA
SetCursor
GetCursorPos
PostQuitMessage
LoadIconA
KillTimer
SetTimer
RedrawWindow
GetClientRect
GetWindowRect
IsIconic
GetSystemMenu
LoadMenuA
EnableMenuItem
CheckMenuItem
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
IsWindowEnabled
DrawIcon
MessageBeep
GetParent
PostMessageA
SendMessageA
TranslateMessage
DispatchMessageA
GetMenuItemInfoA
GetSystemMetrics
SystemParametersInfoA
DrawIconEx
DestroyIcon
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
EnableWindow
GetDesktopWindow
ReleaseDC
GetDC
ModifyMenuA
GetSubMenu
CreateWindowExA
WinHelpA
RegisterWindowMessageA
SetWindowLongA
CreateIconIndirect
DestroyCursor
LoadStringA
LoadImageA
GetWindowWord
SetWindowWord
EnumChildWindows
DrawStateA
IsMenu
DrawMenuBar
EnableScrollBar
RegisterClassExA
GetIconInfo
SetWindowRgn
GetWindowInfo
CharUpperBuffA
IsZoomed
AppendMenuA
GetMenuItemCount
GetMenuItemID
GetMenuState
SetMenuItemBitmaps
ValidateRect
GetActiveWindow
GetMessageA
GetWindowDC
BeginPaint
EndPaint
EndDialog
PostThreadMessageA
RegisterClipboardFormatA
SetParent
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
IsRectEmpty
CharNextA
LockWindowUpdate
GetDCEx
InsertMenuItemA
SetMenu
SetWindowContextHelpId
MapDialogRect
wsprintfA
CreateDialogIndirectParamA
GetNextDlgTabItem
GetMenuCheckMarkDimensions

gdi32

RestoreDC
SetBkMode
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SelectClipRgn
GetClipRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SaveDC
ExtSelectClipRgn
CreatePatternBrush
SelectPalette
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
GetTextColor
GetRgnBox
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetBkColor
CreateFontA
GetCharWidthA
StretchDIBits
CreateDIBitmap
StretchBlt
CreateRectRgn
GetTextMetricsA
GetStockObject
GetTextExtentPoint32W
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
SetPixel
GetPixel
PatBlt
Rectangle
Ellipse
GetBkMode
GetDeviceCaps
GetObjectA
CreateCompatibleBitmap
CreateFontIndirectA
CreatePen
CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
CreateSolidBrush
DeleteObject
OffsetRgn
ExtCreateRegion
GetRegionData
GetDIBits
CreateICA
RealizePalette
Polygon
GetTextExtentPointA
SetDIBitsToDevice
PtInRegion
UnrealizeObject
SetBrushOrgEx
DeleteDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueA
RegDeleteValueA
RegFlushKey
RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyA
RegQueryValueExA

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteA
ExtractIconExA

comctl32

ImageList_EndDrag
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_DragMove
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_DragLeave
ImageList_DrawEx
ord17
ImageList_Destroy
ImageList_Create
ImageList_Draw
_TrackMouseEvent

shlwapi

PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoGetClassObject
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
CoTaskMemFree
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoTaskMemAlloc

oleaut32

SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect

imagehlp

ImageDirectoryEntryToData

Sections

.text
Size: 612KB - Virtual size: 609KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 956KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da4432535cecd1079500a91d80604cfe

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

imagehlp

Sections

.text Size: 612KB - Virtual size: 609KB

.rdata Size: 132KB - Virtual size: 129KB

.data Size: 20KB - Virtual size: 110KB

.rsrc Size: 956KB - Virtual size: 952KB

.text
Size: 612KB - Virtual size: 609KB

.rdata
Size: 132KB - Virtual size: 129KB

.data
Size: 20KB - Virtual size: 110KB

.rsrc
Size: 956KB - Virtual size: 952KB