2023-08-26_400c7fa28169211ca3e493bd418b6adf_icedid_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-26_400c7fa28169211ca3e493bd418b6adf_icedid_JC.exe
Size

666KB
MD5

400c7fa28169211ca3e493bd418b6adf
SHA1

b68f5515349754d3ca18739bc4f1f7dd8cc9745d
SHA256

819a106fc98a5d53721493c7819ffce5d5a2966599fbaf96a15101a9d87bc8dd
SHA512

1c6bcd0256860f27aa83e610497b60cc7d37233d40910260642610b229198fd02dd28160bea7f4ffbcc40ddc2a305ae8960d089832609182737935cd4d624689
SSDEEP

6144:S5aMPtxVCsIUDY5nPnfhuE9CUvgz1ujVNfFywbiqS3eDc6YJ/5710HjpS3PJVMA1:lM56nfhVoUvGY3NywbvgwYs4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-26_400c7fa28169211ca3e493bd418b6adf_icedid_JC.exe

Files

2023-08-26_400c7fa28169211ca3e493bd418b6adf_icedid_JC.exe
.exe windows:4 windows x86

58739d740076ca35b861ebeb668db0c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpc2810

c_set_curve_vertex
ord1000
init_board
set_outmode
set_home_mode
set_dir
enable_sd
enable_el
enable_org
enable_alm
set_sd_logic
set_el_logic
set_org_logic
set_alm_logic
ord1800
set_encoder_mode
open_list
close_list
add_list
start_lookahead
end_lookahead
set_maxspeed
set_conspeed
set_profile
set_vector_conspeed
set_vector_profile
c_set_vector_profile
set_ellipse_ratio
c_set_max_accel
set_s_curve
set_s_section
ord1300
reset_pos
set_steps_pr
set_enc_thread
ord1100
con_pmove2
con_pmove3
con_pmove4
fast_pmove
fast_pmove2
fast_pmove3
fast_pmove4
con_vmove
con_vmove2
con_vmove3
con_vmove4
fast_vmove
fast_vmove2
fast_vmove3
fast_vmove4
con_hmove
con_hmove2
con_hmove3
con_hmove4
fast_hmove
fast_hmove2
fast_hmove3
fast_hmove4
con_line2
con_line3
con_line4
fast_line2
fast_line3
fast_line4
arc_center
fast_arc_center
arc_final
get_encoder
ord1200
sudden_stop2
sudden_stop3
sudden_stop4
sudden_stop_list
decel_stop
decel_stop2
decel_stop3
decel_stop4
decel_stop_list
move_pause
move_pause_list
move_resume
move_resume_list
delay_time
ord1500
checkin_bit
outport_bit
outport_byte
check_sfr
check_sfr_bit
Outport
Inport
ord1600
start_backlash
end_backlash
set_watchdog_time
reset_watchdog
start_watchdog
stop_watchdog
get_watchdog_status
enable_io_pos
set_poscmp_source
set_io_pos
enable_lock_enc
reset_locked_flag
get_locked_flag
get_locked_encoder
enable_gear
enable_handwheel
enable_softlimit
set_softlimit
set_softlimit_data
check_softlimit
enable_poserr_limit
set_poserr_limit
get_poserr_limit
enable_input_mode
set_im_deadband
change_speed
set_tan_flag
set_tan_initpos
set_tan_tune
set_tan_map
set_tan_axis
set_tan_profile
set_tan_stopangle
set_tan_io
get_tan_lastpos
get_max_axe
get_board_num
get_axe
check_IC
get_rel_pos
get_done_source
get_conspeed
get_vector_conspeed
get_profile
get_vector_profile
get_cur_dir
check_status
check_done
check_limit
check_home
check_SD
check_alarm
check_delay_status
get_cmd_counter
reset_cmd_counter
set_cmd_counter
ord1900
get_last_err
reset_err
get_lib_ver
get_sys_ver
get_card_ver
ord1400
get_rate
c_set_multiple

graphhd

GF_SetOptimizeFg
GF_LoadDXFFile
GF_GetNodeLenth
GF_GetXMax
GF_GetYMax
GF_GetXMin
GF_GetYMin
GF_GetCurNodeInfo
GF_NodeMoveNext
GF_Init

kernel32

IsBadCodePtr
IsBadReadPtr
GetStringTypeW
LCMapStringW
LCMapStringA
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
GetStringTypeA
SetHandleCount
GetProcAddress
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
LockResource
LoadResource
FindResourceA
FreeLibrary
LoadLibraryA
MulDiv
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
LocalFree
FormatMessageA
lstrcmpA
SetLastError
GlobalUnlock
GlobalLock
GlobalFree
lstrcpynA
GetCurrentThread
GlobalAlloc
GetModuleFileNameA
CloseHandle
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetFileAttributesA
GetTempFileNameA
GetFullPathNameA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
GetLastError
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GetStdHandle
TlsFree
LeaveCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
SizeofResource
GetCurrentDirectoryA
GetThreadLocale
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
DeleteFileA
FindClose
FindFirstFileA
GetVolumeInformationA
GetStringTypeExA
GetShortPathNameA
GetFileSize
LocalFileTimeToFileTime
SystemTimeToFileTime
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
RaiseException
TerminateProcess
HeapSize
HeapReAlloc
GetACP
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GlobalHandle

user32

GetDesktopWindow
SetCursor
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
wvsprintfA
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
IsRectEmpty
FillRect
FindWindowA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
LoadIconA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
SetActiveWindow
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
DestroyMenu
GetCapture
WinHelpA
wsprintfA
GetTabbedTextExtentA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SendMessageA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
SetTimer
CharUpperA
GetNextDlgGroupItem
GetWindow
IsWindow
SetFocus
IsChild
UpdateWindow
SetWindowLongA
MessageBeep
PostMessageA
TranslateMessage
DispatchMessageA
LoadBitmapA
CopyRect
GetSysColor
OffsetRect
GetDC
LoadMenuA
PostThreadMessageA
MessageBoxA
RegisterClipboardFormatA
ReleaseDC
InvalidateRect
GetWindowRect
GetClientRect
PtInRect
GetKeyState
GetWindowLongA
GetParent
GetFocus
EnableWindow
CopyAcceleratorTableA
CharNextA
DestroyIcon
GetMenuStringA
InsertMenuA
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
WindowFromPoint
KillTimer
InflateRect
LoadStringA
GetSysColorBrush
GetClassNameA
SetRect
LoadCursorA
DestroyCursor
MapDialogRect
SetWindowContextHelpId
GetMessageA
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
GetSystemMenu
DeleteMenu
AppendMenuA
SetParent
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
GetClassInfoA
SetMenu
GetPropA

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
DeleteObject
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
SetStretchBltMode
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextMetricsA
StretchDIBits
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
Rectangle
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
GetMapMode
SetRectRgn
CombineRgn
CreateFontIndirectA
GetTextColor
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
SetROP2
SetPolyFillMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
DeleteDC
CreateRectRgnIndirect
PatBlt
DPtoLP
LPtoDP
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
GetTextExtentPoint32A
GetObjectA
BitBlt
CreatePen
CreateDIBitmap
GetTextExtentPointA
Ellipse

comdlg32

PrintDlgA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegSetValueA
RegCreateKeyA
RegCloseKey
SetFileSecurityA
RegDeleteValueA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA

comctl32

ord17
ImageList_Destroy

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oadxmyb
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

drlpxxq
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 172KB - Virtual size: 171KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

58739d740076ca35b861ebeb668db0c6

Headers

File Characteristics

Imports

mpc2810

graphhd

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 296KB - Virtual size: 293KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 20KB - Virtual size: 33KB

.rsrc Size: 80KB - Virtual size: 80KB

oadxmyb Size: - Virtual size: 4KB

drlpxxq Size: 8KB - Virtual size: 4KB

Size: 172KB - Virtual size: 171KB

.text
Size: 296KB - Virtual size: 293KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 20KB - Virtual size: 33KB

.rsrc
Size: 80KB - Virtual size: 80KB

oadxmyb
Size: - Virtual size: 4KB

drlpxxq
Size: 8KB - Virtual size: 4KB