2023-08-26_cf22ba8ad6f6248dfabd8eaca9c634c0_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_cf22ba8ad6f6248dfabd8eaca9c634c0_icedid_JC.exe
Size

1.8MB
MD5

cf22ba8ad6f6248dfabd8eaca9c634c0
SHA1

38f1a9112a1383eabe72a2ff11f455557d101ce5
SHA256

f5e093250708bbbcde5220932d109711f67be00ad67de2e5f7eb0aa86f005a17
SHA512

66f6f0b4c8f61227808a4124bd689ec69c9870aa8c91b4bd619c4f0a55c55ddb759996474ff6b0e2158cc1391401c516404804a8c9c91c89e07fcca6d44721a9
SSDEEP

24576:zsuQTQwHMj2TGfAWE6TtxvjGqcJ8TOXwwZwJiP8H7K42v+80Qkc:OlHMSTGxE6rUKSXwwysP8bK5JF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_cf22ba8ad6f6248dfabd8eaca9c634c0_icedid_JC.exe

Files

2023-08-26_cf22ba8ad6f6248dfabd8eaca9c634c0_icedid_JC.exe
.exe windows:4 windows x86

df56e59c92c4da28c46ef035e72c65b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord1727
ord5261
ord2446
ord2124
ord5277
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4425
ord3597
ord324
ord825
ord641
ord4234
ord3098
ord4376
ord5953
ord5308
ord4779
ord5811
ord5482
ord2032
ord4411
ord4447
ord4335
ord4863
ord4975
ord5797
ord5479
ord1995
ord967
ord3717
ord523
ord791
ord2077
ord800
ord1200
ord5480
ord540
ord5809
ord823
ord1948
ord4226
ord2396
ord5065
ord5300
ord5303
ord4079
ord4699
ord5307
ord5289
ord5715
ord4622
ord4424
ord817
ord533
ord565
ord798
ord537
ord2726
ord711
ord413
ord4673
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord5302
ord2725
ord4698
ord5714
ord3738
ord561
ord815
ord1146
ord1168
ord4129
ord858
ord5710
ord5683
ord1134
ord2256
ord2642
ord3092
ord4160
ord2863
ord2379
ord755
ord470
ord4224
ord6111
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5280
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1775
ord4078
ord6052
ord2514
ord4710
ord4998
ord4853
ord3346
ord5265
ord1576

msvcrt

_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__dllonexit
floor
fputs
putchar
fflush
printf
calloc
_ftol
_iob
fprintf
malloc
fopen
fclose
exit
atoi
rand
_except_handler3
free
_setmbcp
sprintf
__CxxFrameHandler
_onexit

kernel32

Sleep
FreeLibrary
GetCurrentThreadId
GetTickCount
CloseHandle
LoadLibraryA
CreateFileA
lstrcmpA
GetModuleFileNameA
ResumeThread
SuspendThread
GetModuleHandleA
GetStartupInfoA
GetProcAddress
WriteFile

user32

AppendMenuA
IsWindow
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
GetMenu
InvalidateRect
EnableWindow
GetSystemMenu
SendMessageA
PostQuitMessage
EnableMenuItem
wsprintfA
CheckMenuItem
PostThreadMessageA
LoadIconA

wsock32

gethostname

avicap32

capGetDriverDescriptionA
capCreateCaptureWindowA

msvfw32

DrawDibEnd
DrawDibClose
DrawDibDraw

winmm

mixerClose
mixerGetLineControlsA
mixerOpen
mixerSetControlDetails
mixerGetControlDetailsA
waveOutSetVolume
waveOutOpen
waveOutGetErrorTextA
waveOutClose
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutPrepareHeader
waveInStart
waveInAddBuffer
waveInPrepareHeader
waveInOpen
waveInGetErrorTextA
waveInClose
waveInReset
waveInStop
waveInUnprepareHeader
mixerGetLineInfoA

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 384KB - Virtual size: 819KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df56e59c92c4da28c46ef035e72c65b7

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

wsock32

avicap32

msvfw32

winmm

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 384KB - Virtual size: 819KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 384KB - Virtual size: 819KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB