2023-08-26_63f8c2f5c4e354b34e65a01669be2805_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-26_63f8c2f5c4e354b34e65a01669be2805_icedid_JC.exe
Size

2.2MB
MD5

63f8c2f5c4e354b34e65a01669be2805
SHA1

7c3c2e6271e9a646954d12e23ce53e76a78f9ba0
SHA256

04ab19220f80a16c2577c771a9a167d3b1d4dbe8152710ab7aed489a1da2bbe7
SHA512

603d5ceed243ddd369c5eb2b62ece28097a23057a1b691eba01a758caddde0b2aa4d104a46bb9e6eeff125dc286c2c227af4846d7a95f14813a9cf6f696323d7
SSDEEP

49152:EdiDOpmZXivno6D18dT987S4ZgECt/k0AEkJghaEO9PyzjdX:Ec4mOpYT6S0gDW0OJgIJazjd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_63f8c2f5c4e354b34e65a01669be2805_icedid_JC.exe

Files

2023-08-26_63f8c2f5c4e354b34e65a01669be2805_icedid_JC.exe
.exe windows:5 windows x86

9355147178cb9c9bfbadef00f7178e6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetUniversalNameA

dunzip32

dunzip

kernel32

SetErrorMode
RtlUnwind
Sleep
ExitProcess
GetSystemTimeAsFileTime
GetLocalTime
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
RaiseException
VirtualAlloc
HeapReAlloc
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStdHandle
InitializeCriticalSectionAndSpinCount
SetStdHandle
GetFileType
SetHandleCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
GetProcessHeap
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCurrentProcess
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentDirectoryA
GetModuleHandleW
InterlockedIncrement
GetFullPathNameA
GetFileAttributesA
GlobalFlags
GetOEMCP
GetCPInfo
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
InterlockedDecrement
GetModuleFileNameW
GetCurrentProcessId
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
SetLastError
MultiByteToWideChar
lstrcmpW
GetVersionExA
lstrcmpA
lstrcmpiA
MulDiv
LocalAlloc
LocalLock
LocalUnlock
CompareStringA
GetDriveTypeA
SetFileAttributesA
CreateProcessA
WaitForSingleObject
WritePrivateProfileStringA
GetPrivateProfileIntA
GetTickCount
OpenFile
FindClose
FindNextFileA
FindFirstFileA
GetVolumeInformationA
CopyFileA
GetLastError
lstrlenA
GetPrivateProfileStringA
WideCharToMultiByte
SizeofResource
LocalFree
FormatMessageA
GetModuleHandleA
GetModuleFileNameA
GetTempPathA
GetTempFileNameA
FindResourceA
LoadResource
LockResource
CreateFileA
WriteFile
CloseHandle
FreeResource
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA

user32

ReuseDDElParam
LoadMenuA
DestroyMenu
ReleaseCapture
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
TranslateAcceleratorA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
TabbedTextOutA
FillRect
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
ShowOwnedPopups
GetMessageA
GetActiveWindow
GetCursorPos
ValidateRect
IsWindowEnabled
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
LoadIconA
SendDlgItemMessageA
WinHelpA
GetCapture
SetWindowsHookExA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetKeyState
SetMenu
SetForegroundWindow
IsWindowVisible
PostMessageA
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
ScreenToClient
EqualRect
DeferWindowPos
CopyRect
PtInRect
MessageBoxA
UpdateWindow
EnableWindow
SendMessageA
PostQuitMessage
DefWindowProcA
CallWindowProcA
GetMenu
GetWindowLongA
SetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
GetWindow
GetDlgCtrlID
GetFocus
IsChild
IsIconic
UnregisterClassA
GetMenuItemInfoA
GetSysColorBrush
CallNextHookEx
UnpackDDElParam
DestroyWindow
InvalidateRect
SetFocus
ShowWindow
CreateWindowExA
GetWindowRect
InflateRect
OffsetRect
CharToOemA
DispatchMessageA
TranslateMessage
PeekMessageA
ReleaseDC
DrawTextA
wsprintfA
GetDC
GetClientRect
GetDlgItem
SetDlgItemTextA
SetWindowTextA
RegisterWindowMessageA
GetWindowTextLengthA
SetActiveWindow
GetTabbedTextExtentA
SetRect
MessageBeep
IsClipboardFormatAvailable
AdjustWindowRectEx
LoadCursorA
SetCursor
GetParent
GetDesktopWindow
MoveWindow
OemToCharA
CreateDialogParamA
IsWindow

gdi32

SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreatePatternBrush
Escape
CreateCompatibleBitmap
ScaleViewportExtEx
EndPage
SetAbortProc
AbortDoc
EndDoc
SetViewportExtEx
OffsetViewportOrgEx
ExtTextOutA
TextOutA
RectVisible
PtVisible
StartDocA
GetPixel
BitBlt
StartPage
SetViewportOrgEx
GetTextExtentPoint32A
CreateCompatibleDC
IntersectClipRect
SetMapMode
RestoreDC
SaveDC
CreateDCA
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateFontIndirectA
GetCharWidthA
GetTextMetricsA
DPtoLP
GetDeviceCaps
GetObjectA
GetStockObject
CreateSolidBrush
SelectObject
Rectangle
SetBkMode
DeleteObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetJobA
ClosePrinter

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

DragFinish
DragQueryFileA

shlwapi

PathFindFileNameA
PathFindExtensionA
PathRemoveFileSpecW

ole32

CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitializeEx

oleaut32

VariantChangeType
VariantInit
VariantClear

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9355147178cb9c9bfbadef00f7178e6b

Headers

DLL Characteristics

File Characteristics

Imports

mpr

dunzip32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 9KB - Virtual size: 25KB

.rsrc Size: 248KB - Virtual size: 247KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 9KB - Virtual size: 25KB

.rsrc
Size: 248KB - Virtual size: 247KB