2023-08-25_aedce0a91614bcef1aa50cc42faaca69_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-25_aedce0a91614bcef1aa50cc42faaca69_icedid_JC.exe
Size

800KB
MD5

aedce0a91614bcef1aa50cc42faaca69
SHA1

189dad7c4e7fb561ce5cffba231369c80579da5b
SHA256

7cd8a54a52e92846270a29e9f40110dbbc2d0e5a1cbc0b8c258c6265fc7f12df
SHA512

ac5611ee2fceff7cba52ef532fa3bfb4de383410be03e5ee260d87176ad0e2ef25a8663f40a772cb1e90e0a034c79ba9fa5f4d35fa1cbce51a30a1e88f430929
SSDEEP

12288:bxp0w/++3dDKtJQkNBXeTGhUosL7filfuCxMRW61YWk:bxp0w/X3dDSeTa9Cf0uCq1Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_aedce0a91614bcef1aa50cc42faaca69_icedid_JC.exe

Files

2023-08-25_aedce0a91614bcef1aa50cc42faaca69_icedid_JC.exe
.exe windows:4 windows x86

64db5a7c77cdce4a76bedfb9d9932d82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
HeapReAlloc
GetOEMCP
GetCPInfo
IsBadWritePtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapAlloc
TerminateProcess
ExitThread
HeapFree
GetModuleFileNameA
ExitProcess
RtlUnwind
GetStartupInfoW
FileTimeToLocalFileTime
SetErrorMode
GetFileTime
GetFileAttributesW
FileTimeToSystemTime
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
lstrcmpA
GlobalGetAtomNameW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
SetFilePointer
lstrcmpiW
InterlockedDecrement
lstrcpyW
GlobalAlloc
lstrcpynW
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcmpW
GetModuleHandleW
GetVersionExA
GlobalLock
GlobalUnlock
GlobalFree
RaiseException
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
SetLastError
GetVersion
FormatMessageW
LocalFree
GetTickCount
FreeResource
MulDiv
CreateNamedPipeW
CreateThread
ConnectNamedPipe
CreateFileW
ReadFile
DisconnectNamedPipe
GetCurrentThreadId
GetExitCodeThread
TerminateThread
ResetEvent
WriteFile
GetOverlappedResult
FlushFileBuffers
GetPrivateProfileStringW
GetUserDefaultLangID
GetSystemDefaultLangID
lstrlenW
WritePrivateProfileStringW
GetCurrentProcess
SetProcessWorkingSetSize
GetWindowsDirectoryW
lstrcatW
GetModuleFileNameW
CreateProcessW
LoadLibraryW
GetProcAddress
FreeLibrary
Sleep
CreateEventW
GetComputerNameW
GetLastError
SetEvent
WaitForSingleObject
CloseHandle
WaitForMultipleObjects
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FindResourceW
LoadResource
LockResource
LCMapStringW
SizeofResource

user32

LockWindowUpdate
PostQuitMessage
SetParent
IsZoomed
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
SetRectEmpty
BringWindowToTop
SetCursorPos
ReleaseCapture
SetCapture
GetMessageW
ValidateRect
CharUpperW
EndPaint
BeginPaint
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
CheckRadioButton
GetMenuStringW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
GetTopWindow
GetMessageTime
LoadIconW
MapWindowPoints
TrackPopupMenu
GetKeyState
SetScrollPos
GetScrollPos
SetForegroundWindow
AdjustWindowRectEx
DeferWindowPos
RegisterClassW
GetDlgCtrlID
DefWindowProcW
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetActiveWindow
GetDCEx
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
UnregisterClassW
PeekMessageW
TranslateMessage
DispatchMessageW
TranslateAcceleratorW
ScreenToClient
SetWindowsHookExW
CopyAcceleratorTableW
MapVirtualKeyW
GetKeyNameTextW
CallNextHookEx
SetMenuInfo
GetClassNameW
SetPropW
GetPropW
RemovePropW
UnhookWindowsHookEx
GetMessagePos
MessageBoxW
SetWindowPos
GetSystemMetrics
WindowFromDC
DestroyIcon
GetIconInfo
GetMenuItemRect
SetMenu
CallWindowProcW
GetDesktopWindow
ModifyMenuW
GetSubMenu
GetMenuItemInfoW
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
AppendMenuW
DeleteMenu
DrawEdge
LoadMenuW
IsMenu
IntersectRect
OffsetRect
SetRect
IsRectEmpty
CopyRect
SystemParametersInfoW
DrawStateW
IsWindow
SetTimer
FindWindowW
GetSysColorBrush
UpdateWindow
wsprintfW
GetMenuInfo
MenuItemFromPoint
GetClassInfoW
IsChild
KillTimer
GetWindowDC
GetMenu
DestroyMenu
GetSystemMenu
GetCursorPos
DestroyCursor
GetFocus
InsertMenuW
CreatePopupMenu
DrawFocusRect
SetCursor
PtInRect
BeginDeferWindowPos
EndDeferWindowPos
EqualRect
WindowFromPoint
SetActiveWindow
ShowOwnedPopups
LoadBitmapW
MessageBeep
RedrawWindow
FrameRect
InflateRect
IsWindowVisible
InvalidateRect
GetWindowRect
PostMessageW
GetParent
ClientToScreen
GetClientRect
GetSysColor
GetWindowLongW
SetWindowLongW
SendMessageW
ReleaseDC
GetDC
FillRect
LoadCursorW
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
EnableWindow
IsWindowEnabled

gdi32

GetStockObject
SetRectRgn
GetTextMetricsW
StretchDIBits
GetCharWidthW
CreateFontW
GetBkColor
SetTextColor
GetClipBox
GetWindowOrgEx
SelectClipRgn
SetPixel
RoundRect
Rectangle
CombineRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePatternBrush
CreatePen
SetBrushOrgEx
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetBkMode
RestoreDC
SaveDC
CreateCompatibleBitmap
UnrealizeObject
PatBlt
GetDeviceCaps
CreateFontIndirectW
SelectObject
DPtoLP
CreateBitmap
SetMapMode
SetBkColor
DeleteObject
DeleteDC
GetTextExtentPoint32W
GetPixel
GetNearestColor
CreateSolidBrush
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
BitBlt
GetMapMode
CreateCompatibleDC
GetObjectW

comdlg32

ChooseColorW
GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
RegCreateKeyExW

shell32

DragFinish
DragQueryFileW
ShellExecuteW

comctl32

ImageList_Add
ImageList_GetImageCount
ImageList_Replace
ImageList_GetImageInfo
ord8
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
ImageList_GetIconSize
ImageList_Destroy
ImageList_Create
ord17
ImageList_DrawIndirect

shlwapi

PathIsUNCW
PathFindExtensionW
PathStripToRootW
PathFindFileNameW

oleaut32

SysAllocStringLen
VariantClear
VariantChangeType
VariantInit

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

ws2_32

WSARecv
WSASend
WSAWaitForMultipleEvents
WSAGetOverlappedResult
shutdown
closesocket
WSASocketW
WSAGetLastError
WSAResetEvent
WSAConnect
htons
WSAStringToAddressW
setsockopt
WSAStartup
WSACloseEvent
gethostname
gethostbyname

mswsock

AcceptEx

Sections

.text
Size: 388KB - Virtual size: 386KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 320KB - Virtual size: 319KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64db5a7c77cdce4a76bedfb9d9932d82

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

version

ws2_32

mswsock

Sections

.text Size: 388KB - Virtual size: 386KB

.rdata Size: 80KB - Virtual size: 77KB

.data Size: 8KB - Virtual size: 23KB

.rsrc Size: 320KB - Virtual size: 319KB

.text
Size: 388KB - Virtual size: 386KB

.rdata
Size: 80KB - Virtual size: 77KB

.data
Size: 8KB - Virtual size: 23KB

.rsrc
Size: 320KB - Virtual size: 319KB