2023-08-25_9ca0f6728b703a9ba4c8702502809b23_icedid_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-25_9ca0f6728b703a9ba4c8702502809b23_icedid_JC.exe
Size

500KB
MD5

9ca0f6728b703a9ba4c8702502809b23
SHA1

b8f79f114b69bc9e9e247cc47e27717632678446
SHA256

b94fedf15b708f55aa59dafdbcd340ac9b5a52cd43351c15f4b109070bb4f54f
SHA512

f82aa826ef63282f42ff38ca84b9f21b5b2461ebe6e175c3d5c272942a70c7335ed9c1917d1314f46ed1970714a210f118e30e2fb67f38247ac792ec68600b90
SSDEEP

6144:a0jw0D+pHOcXBjnP5V6/UMR4K2HTxoZzFU0nzB2NnZXSqrdgDjvomSE+:aSwy+nO/bR4KKgFU4zc9Eqqfon

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_9ca0f6728b703a9ba4c8702502809b23_icedid_JC.exe

Files

2023-08-25_9ca0f6728b703a9ba4c8702502809b23_icedid_JC.exe
.exe windows:4 windows x86

baede93cd901835be1f38e4838808b55

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

kernel32

GetStartupInfoW
RtlUnwind
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
IsBadWritePtr
SetUnhandledExceptionFilter
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
SetErrorMode
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
WritePrivateProfileStringW
GlobalFlags
lstrcmpiW
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GlobalGetAtomNameW
InterlockedDecrement
GetLastError
SetLastError
MulDiv
FormatMessageW
LocalFree
GlobalFindAtomW
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcatW
GetVersionExA
GlobalAddAtomW
lstrlenW
GetCurrentThread
GetCurrentThreadId
lstrcmpW
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
WideCharToMultiByte
GetModuleHandleW
GetProcAddress
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcpyW
LoadLibraryW
GetLocaleInfoW
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
CreateFileW
GetModuleFileNameW
GetWindowsDirectoryW
Sleep
CreateProcessW
WaitForSingleObject
lstrcpynW
DeviceIoControl
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
OpenMutexW
CreateMutexW
FindResourceW
LoadResource
LockResource
SizeofResource
CloseHandle
GetStartupInfoA

user32

GetSysColorBrush
SystemParametersInfoW
GetMenuItemInfoW
InflateRect
DestroyMenu
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsW
InvalidateRect
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
TranslateAcceleratorW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
ShowWindow
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
MessageBoxW
TrackPopupMenu
GetClientRect
GetMenu
GetMenuItemID
GetMenuItemCount
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClassInfoW
RegisterClassW
UnregisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
SetMenuItemBitmaps
GetFocus
ModifyMenuW
GetMenuState
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
IsWindowVisible
GetKeyState
PeekMessageW
ValidateRect
ShowOwnedPopups
SetCursor
PostQuitMessage
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
EndDeferWindowPos
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
keybd_event
wsprintfW
GetCursorPos
DestroyIcon
GetSystemMetrics
LoadIconW
SetForegroundWindow
KillTimer
SetTimer
PostMessageW
SendMessageW
LoadMenuW
GetSubMenu
EnableMenuItem
LoadKeyboardLayoutW
LoadCursorW
EnableWindow
FindWindowW
UpdateWindow

gdi32

CreateSolidBrush
CreateCompatibleBitmap
SelectObject
CreateFontIndirectW
GetTextExtentPoint32W
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetPixel
BitBlt
GetStockObject
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetTextColor
GetClipBox
CreateBitmap
CreateFontW
DeleteObject
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetDeviceCaps
GetObjectW
SetBkColor
SetViewportOrgEx

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegCreateKeyExW
RegCloseKey

shell32

DragFinish
DragQueryFileW
Shell_NotifyIconW

comctl32

ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy

shlwapi

PathFindFileNameW
PathFindExtensionW

ole32

StringFromGUID2
CoUninitialize
CoInitialize

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 327KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

baede93cd901835be1f38e4838808b55

Headers

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 36KB - Virtual size: 33KB

.data Size: 8KB - Virtual size: 21KB

.rsrc Size: 328KB - Virtual size: 327KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 36KB - Virtual size: 33KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 328KB - Virtual size: 327KB