2023-08-26_8327c193ded5b52b059bca7bc1b62d80_floxif_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_8327c193ded5b52b059bca7bc1b62d80_floxif_icedid_JC.exe
Size

2.8MB
MD5

8327c193ded5b52b059bca7bc1b62d80
SHA1

82ba993881c9711cd78b40297182ced54cfa71cd
SHA256

269a4a398f521aeb2455df98adbc12cf902af75e316fdb65b31ff675138fa7d6
SHA512

faa93feefea115e3fc0899b064abc6031a70f5b6418bb5368f47cfed314202e9f24e1d6d43dd7e51de84b04670c9405745b94389a1f5ac47109fb6caf93f5f6b
SSDEEP

49152:opU5nNexivjgr2OLyVvDZa5Grs0D+l+CVkAiogbSq9xZPu1:kQNexivjTO0vDZa5Grs0DQyAiogbSq9U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_8327c193ded5b52b059bca7bc1b62d80_floxif_icedid_JC.exe

Files

2023-08-26_8327c193ded5b52b059bca7bc1b62d80_floxif_icedid_JC.exe
.exe windows:5 windows x86

344827982b3a2178e884093ca0ee8bba

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetEnumResourceW
WNetOpenEnumW
WNetCloseEnum
WNetAddConnection2W

ntdll

RtlInitializeCriticalSection
RtlEnterCriticalSection
RtlLeaveCriticalSection
RtlGetVersion
RtlConvertSidToUnicodeString
NtAllocateVirtualMemory
RtlFreeUnicodeString
RtlCompareUnicodeString
RtlNtStatusToDosError
RtlUpcaseUnicodeString
NtClose
NtQueryInformationProcess
NtQuerySystemInformation
RtlUnicodeToMultiByteN
RtlUnicodeToMultiByteSize
RtlMultiByteToUnicodeN
LdrGetProcedureAddress
RtlInitUnicodeString
NtOpenDirectoryObject
NtDelayExecution
LdrGetDllHandle
RtlInitAnsiString
NtWaitForSingleObject
RtlDosPathNameToNtPathName_U
NtQueryInformationToken
NtOpenProcessToken
RtlUpcaseUnicodeChar
NtSetInformationProcess
NtRaiseHardError
NtTerminateProcess
NtClearEvent
NtCreateEvent
NtReadFile
NtQueryInformationFile
NtOpenFile
RtlRaiseException

kernel32

EncodePointer
FreeResource
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
GlobalFree
GetCurrentProcessId
GlobalAlloc
CreateDirectoryW
CopyFileW
WideCharToMultiByte
GlobalFlags
SetThreadPriority
ResumeThread
GetCurrentThread
GetVersionExW
lstrcmpA
GetPrivateProfileIntW
GlobalGetAtomNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
FileTimeToSystemTime
lstrcmpiW
GetCurrentDirectoryW
FlushFileBuffers
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcpyW
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetTickCount
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
CreateThread
ExitThread
GetSystemTimeAsFileTime
HeapQueryInformation
GetModuleHandleExW
GetSystemInfo
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
GetStdHandle
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
GetSystemWindowsDirectoryW
GetWindowsDirectoryW
ExpandEnvironmentStringsW
SetEnvironmentVariableW
GetCurrentThreadId
GetLongPathNameW
GetSystemDirectoryW
GetPrivateProfileSectionNamesW
FormatMessageW
LocalFree
MultiByteToWideChar
GetTempPathW
GetCommandLineW
GetStartupInfoW
CreateProcessW
CreatePipe
SetHandleInformation
Sleep
WaitForSingleObject
GetExitCodeProcess
TerminateProcess
ExitProcess
GetShortPathNameW
GetVolumeInformationW
GetLogicalDrives
GetFileSize
DeleteFileW
SetCurrentDirectoryW
PeekNamedPipe
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
GetDiskFreeSpaceExW
GetEnvironmentVariableW
GetModuleHandleW
GetModuleFileNameW
FindNextFileW
FindFirstFileW
GetFullPathNameW
FindClose
SetLastError
GlobalUnlock
GlobalLock
FindResourceW
LoadLibraryW
SizeofResource
LoadResource
GetProcAddress
LockResource
GetFileAttributesW
CreateFileW
WritePrivateProfileStringW
GetPrivateProfileStringW
EnumResourceNamesW
LoadLibraryExW
CloseHandle
SetFilePointer
ReadFile
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
FreeLibrary
DecodePointer
OutputDebugStringA
MulDiv
LoadLibraryA
GlobalSize
LoadLibraryExA

user32

LoadMenuW
WindowFromPoint
RealChildWindowFromPoint
GetMessageW
TranslateMessage
ShowOwnedPopups
DestroyMenu
GetMenuItemInfoW
InflateRect
SystemParametersInfoW
IntersectRect
CopyImage
IsClipboardFormatAvailable
MessageBeep
DeleteMenu
DestroyIcon
CharUpperW
GetNextDlgGroupItem
SetCapture
ReleaseCapture
DrawFocusRect
SetRectEmpty
OffsetRect
IsRectEmpty
DrawIconEx
GetIconInfo
GetAsyncKeyState
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
SetWindowRgn
UnionRect
IsMenu
UpdateLayeredWindow
MonitorFromPoint
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
TrackMouseEvent
GetComboBoxInfo
IsZoomed
PostThreadMessageW
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
SetCursorPos
SetParent
LockWindowUpdate
SetClassLongW
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuW
CharUpperBuffW
FrameRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetUpdateRect
SubtractRect
RemoveMenu
CreateMenu
MapDialogRect
DestroyCursor
GetWindowRgn
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
DispatchMessageW
RegisterWindowMessageW
CopyRect
MapVirtualKeyW
GetKeyNameTextW
IsWindow
FillRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
CharNextExA
DrawIcon
AppendMenuW
GetSystemMenu
GetSystemMetrics
IsIconic
ShowWindow
PostQuitMessage
PeekMessageW
LoadBitmapW
GetWindowRect
InvalidateRect
ReleaseDC
DrawTextW
SetDlgItemTextW
LoadCursorW
GetParent
ScreenToClient
GetCursorPos
SetCursor
SetWindowTextW
SetFocus
WaitForInputIdle
PostMessageW
SendMessageA
GetSysColorBrush
GetSysColor
KillTimer
SetTimer
GetDlgCtrlID
IsWindowVisible
MessageBoxW
GetClientRect
RegisterClipboardFormatW
GetDlgItem
CreateIconIndirect
LoadImageW
LoadIconW
GetDC
EnableWindow
UnregisterClassW
SendMessageW
InsertMenuW
GetMenuState
GetMenuStringW
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
IsWindowEnabled
IsDlgButtonChecked
CheckDlgButton
MoveWindow
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
SetRect
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow

gdi32

GetStockObject
CreateFontIndirectW
PatBlt
CreateCompatibleBitmap
CreateDIBSection
SelectObject
DeleteObject
CreateCompatibleDC
BitBlt
GetTextFaceW
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
SetPixelV
PtInRegion
FrameRgn
RoundRect
CreateRoundRectRgn
OffsetRgn
GetRgnBox
EnumFontFamiliesExW
Rectangle
Polyline
Polygon
CreatePolygonRgn
GetTextColor
Ellipse
CreateEllipticRgn
SetDIBColorTable
StretchBlt
SetPixel
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
GetBkColor
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
GetTextMetricsW
DPtoLP
SetRectRgn
CombineRgn
GetObjectW
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteDC
Escape
ExcludeClipRect
GetClipBox
GetDeviceCaps
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
CopyMetaFileW
CreateDCW
GetTextExtentPoint32W
SetBkColor

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegQueryValueW
RegCreateKeyW
RegDeleteValueW
RegOpenKeyW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegEnumValueW
RegCloseKey
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW

shell32

SHAppBarMessage
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteW
SHGetFileInfoW
ShellExecuteExW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc

comctl32

ImageList_Remove
InitCommonControlsEx
ImageList_ReplaceIcon

uxtheme

OpenThemeData
DrawThemeParentBackground
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText

ole32

RevokeDragDrop
RegisterDragDrop
CoCreateInstance
CoInitialize
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
CoCreateGuid
StringFromCLSID
CoUninitialize

oleaut32

VarBstrFromDate
VariantCopy
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
SysFreeString
SysAllocString
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdiplusShutdown
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipAlloc

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 355KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 174KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 796KB - Virtual size: 796KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

344827982b3a2178e884093ca0ee8bba

Headers

DLL Characteristics

File Characteristics

Imports

mpr

ntdll

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

uxtheme

ole32

oleaut32

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 355KB - Virtual size: 355KB

.data Size: 174KB - Virtual size: 208KB

.rsrc Size: 796KB - Virtual size: 796KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 355KB - Virtual size: 355KB

.data
Size: 174KB - Virtual size: 208KB

.rsrc
Size: 796KB - Virtual size: 796KB