2024-01-10_37f082c944407d8de66f14189d0554cd_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-10_37f082c944407d8de66f14189d0554cd_icedid
Size

3.2MB
MD5

37f082c944407d8de66f14189d0554cd
SHA1

32224dc386c6261ca130c8dd08f7aa4faeffad6c
SHA256

3b2f98ae6f98fe332dfb6fadaf5842bc51a4c234c87e24498df54e3c24ddabd5
SHA512

696654f04bcec4711713fc00611f7abc306a2af669f41b61bb3c16bfa1f19cbd375aa5cee190aa24995afc7b27ea145e9cf5a8b2ba877bc6bb0d985483078c20
SSDEEP

98304:fX5N8SD66Rz1RbWPWzN9vbxa2qnvsvwNA/DCpw05q8:BN8CvxV9v6nVNAew05q8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-10_37f082c944407d8de66f14189d0554cd_icedid

Files

2024-01-10_37f082c944407d8de66f14189d0554cd_icedid
.exe windows:5 windows x86 arch:x86

1693cb60620601aef17a020db6648b11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIconSize
ord17

imagehlp

GetTimestampForLoadedLibrary

otsw32

s_1mains

kernel32

GetStringTypeW
WriteConsoleW
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
LCMapStringW
IsValidCodePage
IsProcessorFeaturePresent
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapQueryInformation
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
EncodePointer
RaiseException
CompareStringW
CreateThread
ExitThread
SetStdHandle
GetProcessHeap
HeapSize
SetCurrentDirectoryA
SetEnvironmentVariableA
CreateDirectoryA
RemoveDirectoryA
GetFileType
GetConsoleMode
GetConsoleCP
HeapFree
HeapAlloc
DecodePointer
ExitProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetDriveTypeW
SetCurrentDirectoryW
GetCurrentDirectoryW
FindNextFileA
FindFirstFileExA
GetLocalTime
RtlUnwind
GlobalSize
Sleep
GetExitCodeProcess
CopyFileA
CopyFileExA
GlobalMemoryStatusEx
FormatMessageA
GetLastError
GetDiskFreeSpaceA
FreeLibrary
GetProcAddress
LoadLibraryA
SetEndOfFile
MapViewOfFile
OpenFileMappingA
GetDriveTypeA
GetVersionExA
CloseHandle
UnmapViewOfFile
UnlockFile
LockFile
lstrlenA
CreateProcessA
GetModuleFileNameA
SetErrorMode
SetLastError
DeactivateActCtx
CreateActCtxW
ReleaseActCtx
ActivateActCtx
GetModuleFileNameW
InterlockedDecrement
SizeofResource
LockResource
LoadResource
FindResourceW
WideCharToMultiByte
MulDiv
GlobalUnlock
GlobalLock
SetThreadPriority
ResumeThread
GetCurrentThreadId
WaitForSingleObject
LocalAlloc
LocalFree
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
GlobalAlloc
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
GlobalFree
TlsFree
GetCurrentProcessId
MultiByteToWideChar
lstrlenW
CreateFileW
lstrcmpA
GlobalFlags
CompareStringA
lstrcmpW
LoadLibraryW
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
FreeResource
FindResourceA
GetModuleHandleW
InterlockedIncrement
FileTimeToSystemTime
InterlockedExchange
GetLocaleInfoA
GetUserDefaultUILanguage
GetCPInfo
GetOEMCP
GetSystemDirectoryW
lstrcpyA
GetACP
lstrcmpiA
CreateFileA
DeleteFileA
MoveFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetCurrentDirectoryA
GetTempFileNameA
GetTempPathA
GetWindowsDirectoryA
GetNumberFormatA
GetFileAttributesExA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileSizeEx
GetFileTime
GetTickCount
GetProfileIntA
SearchPathA
VirtualProtect
FindResourceExW

user32

UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadAcceleratorsA
InsertMenuItemA
TranslateAcceleratorA
GetNextDlgGroupItem
LoadImageA
GetIconInfo
GetNextDlgTabItem
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
LockWindowUpdate
BringWindowToTop
SetCursorPos
SetRect
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyA
ToAsciiEx
CopyAcceleratorTableA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateA
MessageBeep
ReleaseCapture
SetCapture
GetSystemMenu
LoadMenuW
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
IsIconic
OffsetRect
IsRectEmpty
KillTimer
SetTimer
DeleteMenu
ShowOwnedPopups
SetCursor
CharUpperA
DestroyIcon
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
CopyImage
PostQuitMessage
SystemParametersInfoA
DestroyMenu
GetMenuItemInfoA
LoadCursorA
GetSystemMetrics
GetSysColorBrush
RegisterWindowMessageA
LoadIconW
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
EmptyClipboard
ValidateRect
DefFrameProcA
PeekMessageA
GetKeyState
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
RedrawWindow
UpdateWindow
GetClientRect
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
IsWindowVisible
GetActiveWindow
DispatchMessageA
TranslateMessage
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MonitorFromPoint
UnionRect
UpdateLayeredWindow
IsMenu
CreateMenu
PostThreadMessageA
WaitMessage
SetMenuDefaultItem
IsClipboardFormatAvailable
GetMessageA
CallNextHookEx
SetWindowsHookExA
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
GetWindowThreadProcessId
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuA
EndPaint
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
GetWindow
CheckDlgButton
SendDlgItemMessageA
IsDialogMessageA
IsWindow
GetDlgCtrlID
SetWindowLongA
MoveWindow
SetWindowPos
GetFocus
GetWindowTextLengthA
PtInRect
GetClassNameA
GetWindowRect
RealChildWindowFromPoint
GetDesktopWindow
CopyRect
InflateRect
IntersectRect
CheckMenuItem
EnableMenuItem
ModifyMenuA
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetMenu
CallWindowProcA
DefWindowProcA
GetWindowPlacement
SetWindowPlacement
LoadImageW
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
FrameRect
GetUpdateRect
CreateDialogIndirectParamA
OpenClipboard
SetClipboardData
GetCursorPos
CloseClipboard
GetDoubleClickTime
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
SubtractRect
MessageBoxA
GetWindowTextA
SetDlgItemTextA
ShowWindow
DestroyWindow
EnableWindow
GetDlgItem
EndDialog
DialogBoxParamA
SendMessageA
SetWindowTextA
SetFocus
SetActiveWindow
SetForegroundWindow
GetDlgItemTextA
InvalidateRect
UnhookWindowsHookEx
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ScreenToClient
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
GetWindowRgn
DestroyCursor
DrawIcon
GetSysColor
MapDialogRect

gdi32

SetPixelV
GetTextFaceA
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
EnumFontFamiliesExA
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
GetTextColor
GetBkColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
CreateCompatibleBitmap
CreateDIBitmap
GetTextExtentPoint32A
DPtoLP
PatBlt
CombineRgn
SetRectRgn
CreateRectRgnIndirect
CreateFontIndirectA
CreateDCA
CopyMetaFileA
CreateHatchBrush
CreateSolidBrush
CreatePen
GetDeviceCaps
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
CreateBitmap
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
GetObjectA
CreateRectRgn
SelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegQueryValueExA
RegOpenKeyExA
CryptReleaseContext
CryptDestroyKey
CryptDestroyHash
CryptDecrypt
CryptEncrypt
CryptDeriveKey
CryptHashData
CryptCreateHash
RegEnumKeyExA
RegSetValueExA
RegDeleteValueA
CryptAcquireContextA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

shell32

SHAppBarMessage
SHGetFileInfoA
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
DragQueryFileA
DragFinish
ShellExecuteA

ole32

OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleDuplicateData
CoInitializeEx
DoDragDrop
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree

oleaut32

SysStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
SysAllocString
SysAllocStringLen

msimg32

TransparentBlt
AlphaBlend

shlwapi

PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipDrawImageRectI
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 419KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1693cb60620601aef17a020db6648b11

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

imagehlp

otsw32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

shlwapi

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 265KB - Virtual size: 265KB

.data Size: 419KB - Virtual size: 1.3MB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 265KB - Virtual size: 265KB

.data
Size: 419KB - Virtual size: 1.3MB

.rsrc
Size: 5KB - Virtual size: 5KB