2023-08-25_4f88943f2e0125c92fa1b4e0c72afdf1_icedid_JC[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

2023-08-25_4f88943f2e0125c92fa1b4e0c72afdf1_icedid_JC.exe
Size

532KB
MD5

4f88943f2e0125c92fa1b4e0c72afdf1
SHA1

7f09dda03a04304b35aed443186890b39dbc34e5
SHA256

35c1c439ac5a45176c2e55c3a6d5e9097133af0b3e2a49958b1e13dad1bc1dbe
SHA512

185e54d705b9fab222dcca574753efdb899557aef1bae3200113916a3988eedcb78756ab99c33491eb49f1c249c3b432cbee71ca7b24d72401dbf2a04cadffd6
SSDEEP

12288:FoBpkzx1E56f8952jk72BltZ+yBGe0J5smnAg3urhXuiPaGv:FoO/Ecfhk7aZ+eGJJ5JAgerhXuiPaGv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2023-08-25_4f88943f2e0125c92fa1b4e0c72afdf1_icedid_JC.exe

Files

2023-08-25_4f88943f2e0125c92fa1b4e0c72afdf1_icedid_JC.exe
.exe windows:4 windows x86

2626bb12967c51d02ba06d29312bfffa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
RtlUnwind
HeapFree
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapReAlloc
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
TerminateProcess
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
SetErrorMode
LocalFileTimeToFileTime
FileTimeToLocalFileTime
GetShortPathNameA
CreateFileA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
SystemTimeToFileTime
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GlobalFlags
InterlockedDecrement
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetPrivateProfileIntA
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
LoadLibraryA
FreeLibrary
lstrcatA
lstrcmpW
GetModuleHandleA
GetProcAddress
SetLastError
MulDiv
GlobalAlloc
FormatMessageA
lstrcpynA
LocalFree
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
GetStringTypeExA
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
WritePrivateProfileStringA
CreateEventA
CreateDirectoryA
ResetEvent
CreateMutexA
ReleaseMutex
GetLocalTime
CreateThread
CloseHandle
WaitForSingleObject
SetEvent
GetTickCount
Sleep
GetPrivateProfileStringA
GetModuleFileNameA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
SetUnhandledExceptionFilter
InterlockedExchange

user32

PostThreadMessageA
WindowFromPoint
GetDCEx
LockWindowUpdate
SetParent
InflateRect
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
IsZoomed
LoadMenuA
DestroyMenu
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
TranslateAcceleratorA
ReleaseDC
GetDC
ReleaseCapture
LoadCursorA
SetCapture
InvalidateRect
ClientToScreen
SetWindowRgn
DrawIcon
FillRect
IsRectEmpty
FindWindowA
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
GetMessageA
GetCursorPos
ValidateRect
ShowOwnedPopups
SetCursor
PostQuitMessage
wsprintfA
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
MessageBeep
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
ScrollWindow
MessageBoxA
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetClientRect
GetMenu
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
SetRect
CharNextA
PtInRect
GetWindow
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
GetDesktopWindow
GetActiveWindow
DestroyIcon
DeleteMenu
GetMenuItemInfoA
GetSysColorBrush
RegisterWindowMessageA
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
EndDialog
CharUpperA
GetSystemMetrics
KillTimer
SetTimer
GetFocus
UpdateWindow
PostMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
SendMessageA
EnableWindow
UnregisterClassA
GetClassLongA

gdi32

SetTextAlign
ExtSelectClipRgn
CreatePatternBrush
GetStockObject
CreateSolidBrush
CreateFontIndirectA
SetRectRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateFontA
GetCharWidthA
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
CombineRgn
GetDeviceCaps
DeleteObject
StretchDIBits
GetTextMetricsA
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
PatBlt
CreateRectRgnIndirect
Ellipse
LPtoDP
CreateEllipticRgn
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
DeleteDC
EndDoc
EndPage
StartPage
StartDocA
GetTextExtentPoint32A
DPtoLP

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegCloseKey
SetFileSecurityA

shell32

DragQueryFileA
ExtractIconA
SHGetFileInfoA
DragFinish

comctl32

ord17
ImageList_Destroy
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoTaskMemAlloc

oleaut32

OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysStringLen
SysFreeString

pin_ipc_2001

ord11
ord13
ord9
ord17
ord8
ord18
ord20
ord16
ord6
ord5
ord12
ord2
ord1
ord19
ord10

prr_ipc

ord2
ord12
ord10
ord1

Sections

.text
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2626bb12967c51d02ba06d29312bfffa

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

pin_ipc_2001

prr_ipc

Sections

.text Size: 324KB - Virtual size: 323KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 104KB - Virtual size: 103KB

.text
Size: 324KB - Virtual size: 323KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 104KB - Virtual size: 103KB