2023-08-25_7c40f8375bba5c09cf224c4e1431c90a_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-25_7c40f8375bba5c09cf224c4e1431c90a_icedid_JC.exe
Size

1.8MB
MD5

7c40f8375bba5c09cf224c4e1431c90a
SHA1

1e5fb84efa75894a97811127fb46fe4501df296e
SHA256

f18be8be94c3af0040f52da5d9e58cd815a351790808f3749ed5de646e800b8d
SHA512

68cc3116298c18393d3fa49d1d2eb00da587f530f3d8a64708d482f39d577193d590b9beafa7badd216a8af2583ac03608addcbf959c7489d5725eeb61559e68
SSDEEP

49152:PUk/pxPMY8ykLwntA+LHrEBF1cWWO9tWJjT:8IXPfXkLwnW+LLEBkmWJjT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_7c40f8375bba5c09cf224c4e1431c90a_icedid_JC.exe

Files

2023-08-25_7c40f8375bba5c09cf224c4e1431c90a_icedid_JC.exe
.exe windows:5 windows x86

6fd3a9f5c57e9c69510436bc81e4c61d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
WritePrivateProfileStringA
SetErrorMode
FileTimeToLocalFileTime
GetFileSizeEx
GetFileTime
GetTickCount
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitProcess
GetSystemTimeAsFileTime
RaiseException
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetTimeFormatA
GetDateFormatA
GetCommandLineA
GetStartupInfoA
ExitThread
CreateThread
HeapCreate
VirtualFree
GetStdHandle
GetACP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetHandleCount
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
GetThreadLocale
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetModuleFileNameW
GlobalAlloc
FormatMessageA
LocalFree
GetCurrentProcessId
MulDiv
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
SetFilePointer
ReadFile
CloseHandle
CreateFileA
FindFirstFileA
FindClose
GetWindowsDirectoryA
FreeLibrary
GetFileAttributesA
GetModuleFileNameA
FileTimeToSystemTime
OpenProcess
TerminateProcess
Sleep
GetVersionExA
TerminateThread
HeapFree
InterlockedDecrement
GetTempPathA
lstrlenA
MultiByteToWideChar
GetVersion
HeapReAlloc
GetProcessHeap
HeapAlloc
HeapSize
LoadResource
LockResource
SizeofResource
FindResourceA
WideCharToMultiByte
GetModuleHandleA
LoadLibraryA
GetProcAddress
GetLastError
SetLastError

user32

SetCapture
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageA
MapWindowPoints
SetMenu
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
EqualRect
DeferWindowPos
DefWindowProcA
CallWindowProcA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
WindowFromDC
GetClassLongA
DrawEdge
BeginPaint
ClientToScreen
MoveWindow
SetDlgItemInt
SetDlgItemTextA
SetClassLongA
LoadCursorA
CopyIcon
GetDC
GetMessagePos
ScreenToClient
PtInRect
MessageBeep
KillTimer
GetDlgCtrlID
GetMenuItemCount
GetKeyState
GetWindow
OffsetRect
IsWindow
LoadMenuA
GetSubMenu
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemInfoA
TrackPopupMenuEx
MessageBoxA
GetMenu
IsIconic
GetSystemMetrics
DrawIcon
GetDlgItem
GetSystemMenu
GetMenuItemID
EnableMenuItem
AppendMenuA
SetTimer
LoadIconA
GetCursorPos
IsWindowVisible
GetParent
SetWindowLongA
GetWindowLongA
FillRect
RedrawWindow
GetSysColor
SetWindowContextHelpId
MapDialogRect
GetMessageA
CopyRect
SetWindowPos
DrawFrameControl
GetWindowRect
GetWindowDC
ReleaseDC
InvalidateRect
PostMessageA
LoadBitmapA
EnableWindow
SetCursor
IsRectEmpty
ReleaseCapture
GetClientRect
SendMessageA
UnregisterClassA
GetSysColorBrush
CharUpperA
AdjustWindowRectEx
DestroyMenu
TranslateMessage
ValidateRect
PostQuitMessage
SetRect
SetRectEmpty
WindowFromPoint
GetWindowThreadProcessId
ShowWindow
SetWindowTextA
IsDialogMessageA
GetDlgItemTextA
GetDlgItemInt
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
CheckMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetWindowTextA
SetFocus
EndPaint
GetWindowTextLengthA
GetFocus

gdi32

GetTextExtentPointA
GetTextMetricsA
ExtTextOutA
DPtoLP
GetViewportExtEx
GetWindowExtEx
GetMapMode
LPtoDP
PtVisible
RectVisible
TextOutA
Escape
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
CreateFontW
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
GetDeviceCaps
CreateRectRgnIndirect
GetCharWidthA
StretchDIBits
GetTextColor
GetRgnBox
GetStockObject
GetTextExtentPoint32A
CreateFontIndirectA
CreateRectRgn
CreateCompatibleBitmap
GetBkColor
SelectObject
DeleteObject
CreateCompatibleDC
GetObjectA
BitBlt
CreatePen
SelectClipRgn
CreateFontA
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyA
RegOpenKeyExA
RegDeleteKeyA
RegCloseKey
RegDeleteValueA
RegCreateKeyA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA

comctl32

_TrackMouseEvent

shlwapi

PathRemoveFileSpecW
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleIsCurrentClipboard
CoTaskMemAlloc
CoTaskMemFree
CoInitializeEx
CoCreateInstance
CoUninitialize
CoSetProxyBlanket
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysAllocString
VarDateFromStr
SysFreeString
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
VariantClear

Sections

.text
Size: 682KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1021KB - Virtual size: 1021KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fd3a9f5c57e9c69510436bc81e4c61d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 682KB - Virtual size: 681KB

.rdata Size: 122KB - Virtual size: 121KB

.data Size: 13KB - Virtual size: 64KB

.rsrc Size: 1021KB - Virtual size: 1021KB

.text
Size: 682KB - Virtual size: 681KB

.rdata
Size: 122KB - Virtual size: 121KB

.data
Size: 13KB - Virtual size: 64KB

.rsrc
Size: 1021KB - Virtual size: 1021KB