2023-08-27_2dfebf73f16ffaf40288585368e96c82_icedid_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-27_2dfebf73f16ffaf40288585368e96c82_icedid_JC.exe
Size

500KB
MD5

2dfebf73f16ffaf40288585368e96c82
SHA1

bebfa7a4ffb365f771ac623ba89da51e09679023
SHA256

0d62be242c43671f686b0a2c5b62b5029a5ecb04630d9c449b9ea4d6ec5de98b
SHA512

61acff1a5d2102c7a072a487c48424d8c2a4a0f2878527dbe1cd4413ca64938bb5cbaebedc26425259d642d4eb73b0972fd15365f60e302c8fbafada5f23f3e3
SSDEEP

6144:b5xXT0i6jz8Lw9oveR+xzh00Aeen2tMuDK3:bb0rj4w9oveR2FW3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-27_2dfebf73f16ffaf40288585368e96c82_icedid_JC.exe

Files

2023-08-27_2dfebf73f16ffaf40288585368e96c82_icedid_JC.exe
.exe windows:4 windows x86

25de5672a3a71c854d0a24471afe2cd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapAlloc
HeapFree
CreateDirectoryA
SetEnvironmentVariableA
SetCurrentDirectoryA
GetDriveTypeA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
TerminateProcess
ExitThread
CreateThread
SetStdHandle
GetFileType
HeapSize
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
ExitProcess
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
RtlUnwind
GetCurrentDirectoryA
SetErrorMode
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetFileTime
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
InterlockedDecrement
WritePrivateProfileStringA
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GetModuleHandleA
FreeResource
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
lstrcpyA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
GetDiskFreeSpaceA
GetProfileStringA
GetLastError
lstrcmpiA
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
GetTempPathA
GetLongPathNameA
GetModuleFileNameA
CopyFileA
SetLastError
lstrlenA
DeleteFileA
RemoveDirectoryA
GetFileAttributesA
HeapCreate
SetFileAttributesA

user32

LoadCursorA
GetSysColorBrush
DestroyMenu
EndPaint
BeginPaint
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
SetCursor
PostQuitMessage
wsprintfA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
ShowWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
SetFocus
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
MessageBoxA
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
GetMenuState
GetPropA
GetMenuItemID
GetMenuItemCount
GetSubMenu
CharUpperA
LoadIconA
KillTimer
SetTimer
IsIconic
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
MessageBeep
PostMessageA
GetSystemMetrics
GetClientRect
RedrawWindow
InvalidateRect
EnableWindow
GetWindowTextLengthA

gdi32

DeleteObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
GetStockObject
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
PtVisible

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey

shell32

ShellExecuteA

comctl32

ord17

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathIsDirectoryEmptyA
PathFindFileNameA

ole32

CreateStreamOnHGlobal

oleaut32

VariantInit
VariantClear
VariantChangeType

gdiplus

GdiplusShutdown
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipFree
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdiplusStartup

Sections

.text
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25de5672a3a71c854d0a24471afe2cd2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

gdiplus

Sections

.text Size: 156KB - Virtual size: 154KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 8KB - Virtual size: 20KB

.rsrc Size: 288KB - Virtual size: 286KB

.text
Size: 156KB - Virtual size: 154KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 8KB - Virtual size: 20KB

.rsrc
Size: 288KB - Virtual size: 286KB