2023-08-25_61a3f25b8fe6f1b3fe8089269d960365_icedid_JC[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

2023-08-25_61a3f25b8fe6f1b3fe8089269d960365_icedid_JC.exe
Size

1.4MB
MD5

61a3f25b8fe6f1b3fe8089269d960365
SHA1

61632d6a08c0df0c62957348503dca05ca543070
SHA256

3fa6bc041bae173858c268f3f303c56bdca43981898fc5a58f031b87da610bc9
SHA512

b5191355b162b98f102f6c84cdb6248fb42f27947aa6fd1f0f89d97a3050f78788ffff6d961e3911a67b8b0c11a292cac71ecc936aa2f8994611d1ec89b3e028
SSDEEP

24576:iXL/uvThLQZQfrA4JHqvyIgYTwiIg11lzF5E6RCgqvdlCW6zTcCkZrSozrSobrSI:iXLQETXmKCgawPzTDk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_61a3f25b8fe6f1b3fe8089269d960365_icedid_JC.exe

Files

2023-08-25_61a3f25b8fe6f1b3fe8089269d960365_icedid_JC.exe
.exe windows:4 windows x86

b5090ee07648d8286315dc94e7e90dbc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
CompareStringA
CompareStringW
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetCurrentDirectoryA
FreeEnvironmentStringsA
IsBadReadPtr
IsBadCodePtr
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
GetDriveTypeA
GetLocaleInfoW
GetACP
GetOEMCP
SetEnvironmentVariableA
UnhandledExceptionFilter
HeapSize
FindResourceA
GlobalAddAtomA
GetProfileStringA
InterlockedExchange
GetFileType
SetStdHandle
GetLocalTime
GetSystemTime
GetTimeZoneInformation
ExitThread
CreateThread
HeapReAlloc
GetDriveTypeW
RaiseException
HeapFree
HeapAlloc
RtlUnwind
ExitProcess
GetStartupInfoW
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
FindResourceExW
GetCurrentDirectoryW
GlobalFlags
FindNextFileW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetVolumeInformationW
FindFirstFileW
FindClose
UnlockFile
LockFile
SetFilePointer
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetProfileIntW
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetProcessVersion
GlobalGetAtomNameW
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetFullPathNameW
GetTempFileNameW
GetFileAttributesW
GlobalFree
SuspendThread
lstrcmpW
lstrcmpA
lstrcmpiA
GetCurrentThread
LoadLibraryA
GetVersion
lstrcatW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
InterlockedDecrement
InterlockedIncrement
MulDiv
GetModuleHandleA
SetLastError
SizeofResource
LoadResource
LockResource
GlobalAlloc
GlobalLock
GlobalUnlock
SetCurrentDirectoryW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileStringW
FindResourceW
FlushFileBuffers
WriteFile
ReadFile
SetFilePointerEx
SetEndOfFile
GetFileSizeEx
CreateFileW
MultiByteToWideChar
GetWindowsDirectoryW
GetModuleFileNameW
LeaveCriticalSection
WideCharToMultiByte
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCurrentProcess
GetTempPathW
CreateDirectoryW
GetFileAttributesExW
GetLongPathNameW
GetShortPathNameW
GetLastError
LocalFree
MoveFileW
DeleteFileW
SetThreadPriority
SetEvent
CreateEventW
Sleep
CreateProcessW
TerminateProcess
GetExitCodeProcess
CloseHandle
FreeLibrary
LoadLibraryW
GetCurrentThreadId
GetModuleHandleW
GetProcAddress
GetVersionExW
lstrcpynW
lstrcpyW
WaitForSingleObject
ResumeThread
GetTickCount
lstrlenW

user32

SetWindowTextW
IsDialogMessageW
IsDlgButtonChecked
SetDlgItemTextW
SendDlgItemMessageW
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetTopWindow
MessageBoxW
IsChild
WinHelpW
GetClassInfoW
RegisterClassW
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthW
GetDlgCtrlID
DestroyWindow
CreateWindowExW
DefWindowProcW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SystemParametersInfoW
GetWindowPlacement
wsprintfW
EndPaint
BeginPaint
GetWindowDC
LockWindowUpdate
CheckMenuItem
SetWindowPos
GetMenu
SetMenu
IsIconic
ExitWindowsEx
DestroyIcon
GetMessageW
PeekMessageW
TranslateMessage
DispatchMessageW
InsertMenuW
FindWindowW
CallNextHookEx
keybd_event
SetWindowsHookExW
TrackPopupMenuEx
UnhookWindowsHookEx
GetMenuStringW
GetMenuItemCount
WindowFromPoint
DestroyMenu
MoveWindow
GetCapture
IntersectRect
IsRectEmpty
SetRectEmpty
GetDC
ReleaseDC
DrawFocusRect
GetSysColor
SetCursor
IsWindowEnabled
SetFocus
RegisterWindowMessageW
GetWindow
CreatePopupMenu
GetMessagePos
RedrawWindow
LoadCursorW
LoadBitmapW
UnregisterClassW
GetWindowTextLengthA
GetWindowTextW
HideCaret
ShowCaret
ExcludeUpdateRgn
BeginDeferWindowPos
OffsetRect
EndDeferWindowPos
GetSystemMenu
RemovePropW
GetPropW
CallWindowProcW
SetPropW
SetWindowLongW
GetMenuItemID
GetMenuDefaultItem
LoadIconW
KillTimer
SetTimer
SetParent
InflateRect
ClientToScreen
SetMenuDefaultItem
CheckMenuRadioItem
ShowWindow
GetClassNameW
CharUpperW
GetDCEx
GetSysColorBrush
wvsprintfW
LoadStringW
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
GetWindowRect
GetCursorPos
GetKeyState
GetParent
LoadMenuW
ScreenToClient
GrayStringW
DrawTextW
TabbedTextOutW
InvalidateRect
GetFocus
SetCapture
ReleaseCapture
PtInRect
IsWindowVisible
SetActiveWindow
SetForegroundWindow
SendMessageW
UpdateWindow
PostMessageW
GetSubMenu
DeleteMenu
AppendMenuW
GetClientRect
CopyRect
GetSystemMetrics
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
GetDesktopWindow
TranslateAcceleratorW
LoadAcceleratorsW
EndDialog
CreateDialogIndirectParamW
MapDialogRect
GetAsyncKeyState
GetActiveWindow
ValidateRect
ShowOwnedPopups
PostQuitMessage
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
EnableMenuItem
SetRect
GetNextDlgTabItem
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
DestroyCursor
EnableWindow
GetWindowLongW
IsWindow

gdi32

OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
SetViewportOrgEx
GetDeviceCaps
CreatePen
CreateSolidBrush
CreatePatternBrush
SetRectRgn
GetTextMetricsW
EnumFontFamiliesExW
SetMapMode
CreateRectRgn
CombineRgn
SetTextColor
SetBkMode
CreateBitmap
SetBkColor
SaveDC
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
RestoreDC
CreateDIBSection
DeleteDC
PatBlt
DeleteObject
SelectObject
GetBkMode
GetBkColor
GetTextExtentPoint32W
GetTextColor
BitBlt
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetObjectW
CreateDIBitmap
ExtTextOutA
GetTextExtentPointA
CreateFontIndirectW

comdlg32

GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueW
RegSetValueExW
RegCreateKeyW
RegSetValueW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
SetFileSecurityW
GetFileSecurityW
RegEnumKeyExW

shell32

SHGetDesktopFolder
SHGetMalloc
SHGetFileInfoW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragQueryFileW
SHFileOperationW
SHGetSpecialFolderPathW
DragAcceptFiles
DragFinish
ShellExecuteW
ExtractIconW

comctl32

ImageList_BeginDrag
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_Draw
_TrackMouseEvent
ImageList_AddMasked
ImageList_DragLeave
ImageList_DragMove
ImageList_EndDrag
ImageList_Destroy
ImageList_Create
ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_DrawIndirect
ImageList_ReplaceIcon

ole32

CoUninitialize
CoCreateGuid
CoInitialize
CoCreateInstance

oleaut32

SysAllocString
SysFreeString

shlwapi

PathFileExistsW
PathFindExtensionW
PathMakePrettyW
PathFindFileNameW
PathRemoveFileSpecW
PathRenameExtensionW
PathIsRootW
PathIsDirectoryW
PathIsURLW

winhttp

WinHttpQueryHeaders
WinHttpCrackUrl
WinHttpReadData
WinHttpCloseHandle
WinHttpOpen
WinHttpConnect
WinHttpOpenRequest
WinHttpAddRequestHeaders
WinHttpSendRequest
WinHttpQueryOption
WinHttpSetOption
WinHttpReceiveResponse

Sections

.text
Size: 820KB - Virtual size: 817KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 428KB - Virtual size: 424KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5090ee07648d8286315dc94e7e90dbc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

shlwapi

winhttp

Sections

.text Size: 820KB - Virtual size: 817KB

.rdata Size: 128KB - Virtual size: 124KB

.data Size: 100KB - Virtual size: 118KB

.rsrc Size: 428KB - Virtual size: 424KB

.text
Size: 820KB - Virtual size: 817KB

.rdata
Size: 128KB - Virtual size: 124KB

.data
Size: 100KB - Virtual size: 118KB

.rsrc
Size: 428KB - Virtual size: 424KB