2023-08-26_955ccfb0149c2e11747f4ba222bc55c0_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_955ccfb0149c2e11747f4ba222bc55c0_icedid_JC.exe
Size

1.5MB
MD5

955ccfb0149c2e11747f4ba222bc55c0
SHA1

0a8709774fc11489bc4a9031d5c8f2177f1a1f28
SHA256

850a284ea6cf2ed0ae176d4d3e5663c09f8e4edf54895d18afb9f28a22bd7e36
SHA512

4824ac5056743d2a8ed10899fde808e8790debf64feccd0899598d68dd3d58f1ed80a18e850c645eeff40b754d5b5e13becb7ad360a2c9cf06e0efec34c58eca
SSDEEP

24576:eTaA7bU5nD2cOz/Zi4u6r9nS5Gtxr7T7pqhMXH:0aOu04KxrkS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_955ccfb0149c2e11747f4ba222bc55c0_icedid_JC.exe

Files

2023-08-26_955ccfb0149c2e11747f4ba222bc55c0_icedid_JC.exe
.exe windows:4 windows x86

e3e0c14d2f44ce8b8d72827cf823ad13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
SetEnvironmentVariableA
CreateMutexA
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
GetDriveTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTickCount
QueryPerformanceCounter
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetStartupInfoA
SetHandleCount
GetConsoleMode
GetConsoleCP
VirtualFree
HeapCreate
HeapDestroy
HeapReAlloc
LoadLibraryW
FatalAppExitA
GetACP
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetFileType
SetStdHandle
ExitThread
RaiseException
RtlUnwind
GetProcessHeap
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
IsBadReadPtr
HeapValidate
GetDiskFreeSpaceA
GetTempFileNameA
GetCurrentDirectoryA
GetPrivateProfileIntA
WaitForMultipleObjects
ReleaseMutex
ReleaseSemaphore
CreateSemaphoreA
FindResourceExA
GetCurrentThread
GetLocaleInfoA
ConvertDefaultLocale
EnumResourceLanguagesA
GetOEMCP
GetCPInfo
GlobalFlags
ResetEvent
PulseEvent
GetProfileIntA
VirtualProtect
InterlockedIncrement
FileTimeToSystemTime
ResumeThread
GetThreadPriority
SetThreadPriority
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileAttributesA
TlsGetValue
LocalReAlloc
TlsSetValue
OpenEventA
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
InterlockedDecrement
GetModuleFileNameW
FreeResource
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetAtomNameA
GlobalGetAtomNameA
lstrcmpA
FindNextFileA
GetShortPathNameA
GetThreadLocale
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
GetHandleInformation
LocalAlloc
CreateEventA
SuspendThread
GetCurrentThreadId
SetEvent
MulDiv
GlobalFree
GlobalSize
FormatMessageA
LocalFree
SetLastError
FreeLibrary
SetErrorMode
LoadLibraryA
GetSystemDirectoryA
GetProcAddress
GetVersionExA
GlobalAlloc
GlobalUnlock
GlobalLock
WaitForSingleObject
GetCurrentProcess
GetFullPathNameA
CreateFileA
GetVersion
CompareStringA
lstrcmpiA
InterlockedExchange
GetStringTypeExA
lstrlenW
MultiByteToWideChar
CompareStringW
lstrlenA
CopyFileA
WritePrivateProfileStringA
GetPrivateProfileStringA
ExitProcess
TerminateProcess
GetCurrentProcessId
Process32Next
Process32First
CreateToolhelp32Snapshot
GetLocalTime
TerminateThread
GetExitCodeThread
Sleep
CreateThread
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetModuleHandleA
GetCommandLineA
CloseHandle
GetLastError
EnterCriticalSection

user32

SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
OpenIcon
CloseWindow
LoadCursorA
PostThreadMessageA
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageA
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
FindWindowExA
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExA
DlgDirSelectExA
DlgDirListComboBoxA
DlgDirListA
SetCapture
GetActiveWindow
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRgn
InvalidateRgn
InvalidateRect
GetUpdateRgn
GetUpdateRect
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
HiliteMenuItem
GetSystemMenu
DrawMenuBar
SetMenu
GetMenu
DragDetect
GetMenuCheckMarkDimensions
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
LoadIconA
SendDlgItemMessageA
GetClientRect
MapWindowPoints
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
GetClipboardFormatNameA
IsChild
GetCapture
WinHelpA
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
DestroyWindow
GetDlgCtrlID
GetClassLongA
GetClassNameA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ScreenToClient
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectA
LoadMenuA
SetMenuItemBitmaps
ModifyMenuA
InsertMenuItemA
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringA
GetTabbedTextExtentA
DrawTextExA
MessageBoxA
EndDialog
ShowWindow
SetWindowLongA
GetWindowLongA
SetLayeredWindowAttributes
DrawTextA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
ExcludeUpdateRgn
WindowFromDC
LoadBitmapA
GetSysColorBrush
TabbedTextOutA
MapDialogRect
CallNextHookEx
GetCursorPos
SetWindowsHookExA
ValidateRect
RemoveMenu
IsMenu
GetMenuItemCount
GetSubMenu
GetMenuState
GetMenuStringA
AppendMenuA
UnpackDDElParam
CreateDialogIndirectParamA
GetAsyncKeyState
SetRectEmpty
SetCursor
DestroyMenu
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
UnregisterClassA
GetDialogBaseUnits
GetKeyNameTextA
MsgWaitForMultipleObjects
DestroyIcon
SetScrollPos
GetWindowRect
IsWindowUnicode
GetMessageW
DispatchMessageW
SubtractRect
UnionRect
InflateRect
SetRect
PtInRect
IsRectEmpty
GetSystemMetrics
MoveWindow
SetTimer
IsWindow
KillTimer
PostQuitMessage
CreateDialogParamA
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
InsertMenuA
GetMenuItemID
WaitMessage
PeekMessageA
MapVirtualKeyA
PostMessageA
LoadKeyboardLayoutA
OpenClipboard
AttachThreadInput
IsIconic
keybd_event
GetTopWindow
LoadImageA
GetDC
CharUpperA
GetKeyboardState
ClientToScreen
GetForegroundWindow
SetCursorPos
SendMessageA
SetActiveWindow
SetForegroundWindow
BringWindowToTop
FindWindowA
GetKeyState
SetDlgItemTextA
GetDesktopWindow
GetWindow
GetWindowTextA
GetWindowThreadProcessId
ReleaseCapture

gdi32

GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutA
GetTextExtentPoint32A
GetTextAlign
GetTextFaceA
GetTextMetricsA
GetTextCharacterExtra
GetCharWidthA
GetFontLanguageInfo
GetCharacterPlacementA
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCA
GetOutlineTextMetricsA
GetCharABCWidthsA
GetFontData
GetKerningPairsA
GetGlyphOutlineA
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatA
GetCharWidthFloatA
AbortPath
BeginPath
CloseFigure
GetTextColor
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
SaveDC
RestoreDC
SelectPalette
SetBkColor
SetPolyFillMode
SetROP2
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
GetDCOrgEx
StretchDIBits
EnumFontFamiliesExA
GetStretchBltMode
GetROP2
GetPolyFillMode
GetBkMode
GetBkColor
UpdateColors
RealizePalette
GetNearestColor
EnumObjects
GetBrushOrgEx
RectInRegion
PtInRegion
GetRgnBox
OffsetRgn
EqualRgn
CombineRgn
SetRectRgn
GetRegionData
ExtCreateRegion
PathToRegion
CreateRoundRectRgn
CreatePolyPolygonRgn
CreatePolygonRgn
CreateEllipticRgnIndirect
ResizePalette
CreateEllipticRgn
GetNearestPaletteIndex
AnimatePalette
SetPaletteEntries
GetPaletteEntries
CreateHalftonePalette
CreatePalette
SetTextColor
SetBkMode
CreateSolidBrush
CreateDCA
GetDeviceCaps
DeleteDC
GetBitmapDimensionEx
SetBitmapDimensionEx
SetBitmapBits
CreateBitmapIndirect
CreateRectRgnIndirect
EndPath
CreateDiscardableBitmap
GetCurrentObject
GetDIBits
GetObjectA
GetBitmapBits
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateBitmap
CreateFontIndirectA
CreateDIBPatternBrushPt
CreatePatternBrush
CreateBrushIndirect
CreateHatchBrush
ExtCreatePen
CreatePenIndirect
CreatePen
GetObjectType
UnrealizeObject
GetStockObject
ExtTextOutA
CloseEnhMetaFile
CreateEnhMetaFileA
CloseMetaFile
CreateMetaFileA
CopyMetaFileA
CreateFontA
CreateDIBSection
CreateICA
StretchBlt
SetBrushOrgEx
SetStretchBltMode
BitBlt
CreateRectRgn

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

SetThreadToken
OpenThreadToken
GetFileSecurityA
SetFileSecurityA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyExA
RegSetValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RevertToSelf

shell32

SHGetFileInfoA
DragAcceptFiles
DragFinish
DragQueryFileA
ExtractIconA
ShellExecuteA

shlwapi

PathFindExtensionA
PathFindFileNameA
UrlUnescapeA
PathIsUNCA
PathStripToRootA
PathFileExistsA
PathRemoveExtensionA

ole32

ReleaseStgMedium
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
CoCreateInstance
OleDuplicateData
CoInitialize
OleRun
CoReleaseMarshalData
CoMarshalInterface
CreateStreamOnHGlobal
CoUnmarshalInterface
CoRevokeClassObject
CoRegisterClassObject
CLSIDFromProgID
CoDisconnectObject
CreateBindCtx
StringFromGUID2
CLSIDFromString

oleaut32

SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayRedim
SafeArrayCreate
VariantCopy
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
VariantInit
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VarBstrFromDec
VarDecFromStr
VarDateFromStr
VarBstrFromDate
SysAllocString
LoadTypeLi
VariantChangeType
VariantClear
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SafeArrayAllocDescriptor
SystemTimeToVariantTime
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
SafeArrayGetUBound

ws2_32

inet_addr
WSACleanup
WSAStartup
WSASetLastError
inet_ntoa
ntohs
shutdown
listen
ioctlsocket
bind
getsockopt
setsockopt
getsockname
getpeername
connect
sendto
recvfrom
socket
select
WSAGetLastError
WSAAsyncSelect
send
recv
gethostbyname
closesocket
htonl
accept
htons

keymousehelper

ord7
ord4
ord5
ord13
ord2
ord1
ord6

wininet

GopherGetLocatorTypeA
InternetGetLastResponseInfoA
GopherFindFirstFileA
InternetFindNextFileA
FtpFindFirstFileA
HttpQueryInfoA
HttpSendRequestExA
HttpEndRequestA
HttpSendRequestA
HttpAddRequestHeadersA
InternetErrorDlg
HttpOpenRequestA
GopherOpenFileA
GopherGetAttributeA
GopherCreateLocatorA
FtpGetFileA
FtpPutFileA
FtpCommandA
FtpOpenFileA
FtpGetCurrentDirectoryA
FtpSetCurrentDirectoryA
FtpRemoveDirectoryA
FtpCreateDirectoryA
FtpRenameFileA
FtpDeleteFileA
InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetGetCookieA
InternetSetCookieA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetSetOptionExA
InternetSetStatusCallback

Sections

.text
Size: 996KB - Virtual size: 995KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 556KB - Virtual size: 554KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3e0c14d2f44ce8b8d72827cf823ad13

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

ws2_32

keymousehelper

wininet

Sections

.text Size: 996KB - Virtual size: 995KB

.rdata Size: 556KB - Virtual size: 554KB

.data Size: 12KB - Virtual size: 60KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 996KB - Virtual size: 995KB

.rdata
Size: 556KB - Virtual size: 554KB

.data
Size: 12KB - Virtual size: 60KB

.rsrc
Size: 4KB - Virtual size: 1KB