2023-08-25_710bb929d19fa85b747efbec2c5dea0d_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-25_710bb929d19fa85b747efbec2c5dea0d_icedid_JC.exe
Size

1.2MB
MD5

710bb929d19fa85b747efbec2c5dea0d
SHA1

71eaaecff97873e77c73d8e1209d92263887d048
SHA256

e54488d1880436e2a17f144c45cbe5936be871a8ba8e45d17c4990b5d0ddf3cb
SHA512

cb0ee269ad93979eb29859f5ea4488e29a2cf9bfb2a2e836bd79f789d765acc614f3c0c0ebab0291f7a955b5a97468d8798e51e16217572748118289abd3c25a
SSDEEP

12288:mPWauN3+LlCd1kmkCR3IvMSJiLMbF9S6QGM3kDSUKy5FFCMpxWhnBFhSJtBHOU:yjuNCE1uC5IvTECHS1GM0eU3FdIprii

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_710bb929d19fa85b747efbec2c5dea0d_icedid_JC.exe

Files

2023-08-25_710bb929d19fa85b747efbec2c5dea0d_icedid_JC.exe
.exe windows:4 windows x86

ae9787329b4ddd6aec7e9b263407091b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
SetHandleCount
GetTimeZoneInformation
VirtualFree
HeapCreate
HeapDestroy
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InterlockedExchange
SetUnhandledExceptionFilter
GetCurrentProcessId
QueryPerformanceCounter
HeapSize
GetFileType
SetStdHandle
TerminateProcess
HeapReAlloc
GetCommandLineA
GetStartupInfoA
GetDateFormatA
GetTimeFormatA
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
GetCurrentDirectoryA
SetErrorMode
GetShortPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DeleteFileA
MoveFileA
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
LocalAlloc
GlobalFlags
GetProfileIntA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
InterlockedIncrement
RaiseException
VirtualProtect
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
GetFileSize
GetFileAttributesA
SetFileTime
LocalFileTimeToFileTime
FindFirstFileA
FindClose
FileTimeToLocalFileTime
SystemTimeToFileTime
FileTimeToSystemTime
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
SetLastError
CopyFileA
FormatMessageA
LocalFree
FreeResource
lstrcmpA
InterlockedDecrement
lstrcpyA
GlobalAlloc
IsBadWritePtr
GetModuleHandleA
GetProcAddress
FreeLibrary
GlobalFree
lstrcpynA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateFileA
SetupComm
GetCommState
SetCommState
SetCommTimeouts
SetCommMask
EscapeCommFunction
PurgeComm
CloseHandle
ReadFile
WriteFile
GetTickCount
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
GetStringTypeExA
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
MultiByteToWideChar
Sleep
LoadLibraryA
FindResourceExA
GetCurrentThreadId
GetPrivateProfileStringA
GetModuleFileNameA
GetLastError
WritePrivateProfileStringA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP

user32

DrawIcon
FindWindowA
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
GetWindowThreadProcessId
CopyAcceleratorTableA
DefMDIChildProcA
DefFrameProcA
GetSysColorBrush
SetCursorPos
MapDialogRect
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsA
SetMenuItemBitmaps
EnableMenuItem
GetMenuCheckMarkDimensions
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
WinHelpA
CreateWindowExA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
GetMessageTime
ScrollWindow
MessageBoxA
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
SetScrollInfo
UnregisterClassA
IsIconic
GetWindowPlacement
GetMenuStringA
RemoveMenu
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
EndDialog
EndPaint
BeginPaint
GetDlgItem
AdjustWindowRectEx
GetScrollInfo
WindowFromDC
MapWindowPoints
GetWindowRgn
IsZoomed
LoadStringA
ChildWindowFromPointEx
MoveWindow
ShowWindow
CheckMenuItem
RegisterWindowMessageA
DeferWindowPos
wsprintfA
BringWindowToTop
SetWindowPos
TranslateAcceleratorA
TranslateMDISysAccel
IsChild
RegisterClipboardFormatA
RegisterClassA
GetMenuDefaultItem
CreateIconFromResource
TranslateMessage
GetDCEx
GetKeyboardState
ModifyMenuA
GetDlgCtrlID
SetParent
SetMenuItemInfoA
MenuItemFromPoint
GetTopWindow
LockWindowUpdate
DrawFrameControl
DrawIconEx
ValidateRect
GetUpdateRect
InsertMenuItemA
InsertMenuA
GetMenuItemInfoA
GetClassLongA
SendMessageTimeoutA
LoadIconA
SetFocus
GetWindow
GetSystemMenu
GetMenuState
GetMenuItemID
AppendMenuA
DeleteMenu
CreatePopupMenu
LoadBitmapA
UnionRect
SetRectEmpty
GetClientRect
EnableWindow
SendMessageA
InvalidateRect
GetSysColor
IsWindow
GetMenu
SetMenu
CallWindowProcA
PostMessageA
GetMenuItemCount
ScreenToClient
WindowFromPoint
PtInRect
LoadMenuA
GetSubMenu
DestroyCursor
DestroyMenu
GetNextDlgTabItem
DrawFocusRect
GetIconInfo
CreateIconIndirect
DrawStateA
DestroyIcon
GetWindowDC
SetWindowRgn
EqualRect
GetDoubleClickTime
CreateMenu
GetNextDlgGroupItem
CharNextA
IsWindowVisible
ClientToScreen
CopyRect
ClipCursor
IsClipboardFormatAvailable
GetSystemMetrics
GetClassInfoA
DefWindowProcA
GrayStringA
DrawTextExA
TabbedTextOutA
GetCapture
InvertRect
IntersectRect
GetKeyState
DrawTextA
SetCursor
LoadCursorA
DrawEdge
FrameRect
FillRect
InflateRect
SetRect
SystemParametersInfoA
GetDC
ReleaseDC
RedrawWindow
CharUpperA
InvalidateRgn
PostThreadMessageA
MessageBeep
GetClassNameA
GetWindowRect
GetAsyncKeyState
GetActiveWindow
DrawMenuBar
EndDeferWindowPos
OffsetRect
BeginDeferWindowPos
IsRectEmpty
SetWindowLongA
GetWindowLongA
GetParent
SetWindowsHookExA
IsMenu
UnhookWindowsHookEx
GetMessagePos
CallNextHookEx
GetDesktopWindow
GetFocus
SetCapture
ReleaseCapture
WaitMessage
GetCursorPos
PeekMessageA
DispatchMessageA
GetMessageA
UpdateWindow
ShowScrollBar
LoadImageA
SetTimer
KillTimer

gdi32

OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectPalette
StretchDIBits
SetWindowOrgEx
GetViewportOrgEx
EnumFontFamiliesExA
GetWindowOrgEx
GetTextColor
GetRgnBox
GetTextFaceA
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
IntersectClipRect
ExcludeClipRect
SetMapMode
RestoreDC
SaveDC
GetClipBox
CopyMetaFileA
CreatePolygonRgn
GetClipRgn
ExtSelectClipRgn
OffsetRgn
SetRectRgn
CreateRectRgnIndirect
LPtoDP
SetDIBitsToDevice
GetPaletteEntries
UnrealizeObject
CreatePatternBrush
CreateDIBitmap
Ellipse
CreatePalette
RealizePalette
SetBkMode
MoveToEx
LineTo
CreateEllipticRgn
GetStockObject
Polygon
DPtoLP
GetCharWidthA
GetMapMode
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
DeleteDC
CreateRectRgn
CombineRgn
DeleteObject
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetBkColor
CreateCompatibleBitmap
CreateFontA
CreatePen
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
SetStretchBltMode
SetBrushOrgEx
StretchBlt
CreateCompatibleDC
GetObjectA
Rectangle
SelectObject
CreateSolidBrush
SetPixelV

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
SetFileSecurityA
GetFileSecurityA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegQueryValueExA

shell32

SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA

comctl32

ImageList_BeginDrag
ImageList_Add
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_EndDrag
ImageList_Destroy
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Draw
ord17
ImageList_DragMove
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_DragLeave
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Read
ImageList_Write
ImageList_Duplicate
ImageList_Create
ImageList_DrawIndirect

shlwapi

PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFindExtensionA

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
CoGetClassObject
CoRevokeClassObject
CoRegisterMessageFilter
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
OleLockRunning
OleDuplicateData
ReleaseStgMedium
CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes

oleaut32

SystemTimeToVariantTime
VarUdateFromDate
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
SysAllocString
OleCreateFontIndirect

Sections

.text
Size: 816KB - Virtual size: 814KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae9787329b4ddd6aec7e9b263407091b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 816KB - Virtual size: 814KB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 232KB - Virtual size: 230KB

.text
Size: 816KB - Virtual size: 814KB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 232KB - Virtual size: 230KB