2023-08-26_c2d19446e13462ad88c3b1959545806d_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_c2d19446e13462ad88c3b1959545806d_icedid_JC.exe
Size

1020KB
MD5

c2d19446e13462ad88c3b1959545806d
SHA1

8fdcb750e1704d25c88a0c1a51a85387a1fa79f9
SHA256

95b869fceacd8872e1028f8026c34629667d9cd76c08e353d732c5dee1967469
SHA512

6e624a7e28dad3cd53c438c8383c0b27d6ff4e05718220183da070a7b4d039be54ed8b6406c3eaa2e147a0da4462ce70d9c9f02dc7caff8b4a59be98bf612dac
SSDEEP

24576:HMYfDthHB1dKDNwh9j2DGQ0Wu3VWzEUUCbbcAJE18b:sY5hHkY1AEUUCbbcCEib

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_c2d19446e13462ad88c3b1959545806d_icedid_JC.exe

Files

2023-08-26_c2d19446e13462ad88c3b1959545806d_icedid_JC.exe
.exe windows:5 windows x86

1168d45d0a02a24e8106601f071fa25a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetEnvironmentVariableA
CompareStringW
InterlockedIncrement
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
VirtualFree
HeapFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetTimeZoneInformation
IsValidCodePage
GetACP
LoadLibraryW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
ExitProcess
ExitThread
GetFileType
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
RaiseException
RtlUnwind
IsBadReadPtr
HeapValidate
GetStartupInfoA
GetCommandLineA
GetDateFormatA
GetTimeFormatA
GetFullPathNameA
GetVolumeInformationA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
FindFirstFileA
FindClose
GetFileTime
GetFileSizeEx
GetFileAttributesA
GetOEMCP
GetCPInfo
VirtualProtect
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetModuleHandleW
SetErrorMode
GetThreadLocale
FileTimeToSystemTime
WritePrivateProfileStringA
InterlockedExchange
GetCurrentThread
GetLocaleInfoA
ConvertDefaultLocale
EnumResourceLanguagesA
WaitForSingleObject
lstrcmpA
GetAtomNameA
GetProfileIntA
GetModuleFileNameW
CompareStringA
FreeResource
lstrcmpW
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
SuspendThread
ResumeThread
SetThreadPriority
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetCurrentProcessId
SetLastError
GlobalFree
lstrlenW
CopyFileA
GlobalAlloc
MultiByteToWideChar
GetTickCount
TerminateThread
GetModuleFileNameA
CreateThread
SetupComm
CreateMutexA
ReadFile
GetOverlappedResult
WriteFile
LocalFree
GetCommMask
WaitForMultipleObjects
ClearCommError
GetLastError
WaitCommEvent
PurgeComm
SetCommState
BuildCommDCBA
GetCommState
SetCommMask
SetCommTimeouts
LeaveCriticalSection
CreateFileA
EnterCriticalSection
InitializeCriticalSection
CreateEventA
ResetEvent
Sleep
DeleteCriticalSection
CloseHandle
SetEvent
MulDiv
GlobalUnlock
GlobalLock
GlobalSize
GlobalReAlloc
QueryPerformanceCounter
GetVersionExA
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
HeapAlloc
lstrlenA
FormatMessageA
GetProcessHeap
InterlockedDecrement
OpenEventA

user32

UnpackDDElParam
ReuseDDElParam
DestroyMenu
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
GetMessageA
TranslateMessage
GetMenuCheckMarkDimensions
EndDialog
CreateDialogIndirectParamA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterClipboardFormatA
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
RegisterClassA
SendDlgItemMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
GetScrollInfo
SetScrollInfo
WinHelpA
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
SetMenu
GetMenu
GetMessageTime
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
GetWindowPlacement
LoadIconA
PostThreadMessageA
GetScrollPos
MapDialogRect
SetWindowContextHelpId
GetForegroundWindow
SetForegroundWindow
WindowFromPoint
IsChild
GetWindow
GetTopWindow
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
GetFocus
SetCapture
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRgn
InvalidateRect
UpdateWindow
MapWindowPoints
GetClientRect
GetWindowRect
BringWindowToTop
IsZoomed
IsIconic
PostMessageA
EndPaint
BeginPaint
SystemParametersInfoA
GetDC
ReleaseDC
GetSysColor
DrawTextA
GetWindowDC
ClientToScreen
ScreenToClient
LoadMenuA
SetMenuItemBitmaps
ModifyMenuA
InsertMenuItemA
GetMenuItemInfoA
GetClipboardFormatNameA
UnregisterClassA
CharUpperA
CopyAcceleratorTableA
EnableMenuItem
CheckMenuItem
CharNextA
MessageBeep
IsRectEmpty
SetCursor
IsWindow
GetClassInfoA
DefWindowProcA
InflateRect
SetRect
PtInRect
GetKeyState
GetCursorPos
IsClipboardFormatAvailable
GetSystemMetrics
GetMessagePos
ClipCursor
ReleaseCapture
SendMessageA
MessageBoxA
PostQuitMessage
LoadCursorA
GetDoubleClickTime
GetMenuItemID
GetMenuState
GetSubMenu
GetMenuItemCount
IsMenu
PeekMessageA
GetWindowThreadProcessId
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowLongA
GetSysColorBrush
LoadBitmapA
FillRect
FrameRect
InvertRect
DrawIcon
DrawEdge
TabbedTextOutA
DrawTextExA
GrayStringA
CreatePopupMenu

gdi32

GetWindowExtEx
PtVisible
RectVisible
PatBlt
BitBlt
GetPixel
TextOutA
ExtTextOutA
GetTextExtentPoint32A
GetTextMetricsA
Escape
GetCurrentObject
DeleteDC
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
DeleteObject
ExtSelectClipRgn
GetViewportExtEx
GetMapMode
GetTextColor
GetBkColor
SelectObject
GetRgnBox
GetObjectA
CopyMetaFileA
GetDeviceCaps
GetStockObject
GetObjectType
CreatePen
CreateCompatibleDC
CreateSolidBrush
CreatePatternBrush
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateBitmap
CreateFontA
CreateFontIndirectA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

SetThreadToken
OpenThreadToken
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RevertToSelf

shell32

DragFinish
DragQueryFileA

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
PathIsUNCA
PathFindExtensionA
PathStripToRootA

oledlg

ord8

ole32

StringFromGUID2
CLSIDFromString
CLSIDFromProgID
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
CoRevokeClassObject
StgCreateDocfileOnILockBytes
DoDragDrop
OleGetClipboard
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
OleDuplicateData
CoUninitialize
CoInitialize
OleRun
CoCreateInstance
CoGetClassObject
CoRegisterMessageFilter
CreateILockBytesOnHGlobal

oleaut32

SystemTimeToVariantTime
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarUdateFromDate
SysStringLen
SysAllocStringLen
SafeArrayDestroy
OleCreateFontIndirect
GetErrorInfo
VariantTimeToSystemTime

Sections

.text
Size: 778KB - Virtual size: 777KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1168d45d0a02a24e8106601f071fa25a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 778KB - Virtual size: 777KB

.rdata Size: 189KB - Virtual size: 189KB

.data Size: 12KB - Virtual size: 28KB

.rsrc Size: 39KB - Virtual size: 40KB

.text
Size: 778KB - Virtual size: 777KB

.rdata
Size: 189KB - Virtual size: 189KB

.data
Size: 12KB - Virtual size: 28KB

.rsrc
Size: 39KB - Virtual size: 40KB