2024-01-24_e17a28902cc9bd937bc8b54b494a04ac_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-24_e17a28902cc9bd937bc8b54b494a04ac_icedid
Size

3.1MB
MD5

e17a28902cc9bd937bc8b54b494a04ac
SHA1

987ceeab9e17213d903bdd2e9f0d9484657e4c97
SHA256

68feb16971209ccefb9f5c2cd1c0a84d59dc352bf7e91eafc24154e2847b0eaa
SHA512

bea4188f587027e8fb3ff994f5c35feb86c058e69510143575df65d59520992fade60a61bb5b19cfc789f81c914343bb7123221a84ee0fdf8fe9241cd827b9e3
SSDEEP

49152:FbBcNAMIPAeyBSlD4u/ThgUVrIxHh9nVqnFVeUDsxhLbV8QYO0JFHTIo2tt:FbBQTIPJystgUhIXVwnFM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-24_e17a28902cc9bd937bc8b54b494a04ac_icedid

Files

2024-01-24_e17a28902cc9bd937bc8b54b494a04ac_icedid
.exe windows:4 windows x86 arch:x86

de894a12461963c3dfd4c50acbd4e105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
IsDebuggerPresent
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
SetUnhandledExceptionFilter
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
GetFileType
SetStdHandle
HeapSize
ExitProcess
HeapReAlloc
CreateThread
RaiseException
GetSystemTimeAsFileTime
RtlUnwind
GetStartupInfoW
FindResourceExW
GetSystemDirectoryW
GetProfileIntW
lstrcpynW
GetExitCodeThread
TerminateThread
GetTempPathW
GetPrivateProfileSectionNamesW
EnumResourceTypesW
EnumResourceNamesW
CreateDirectoryW
GetProcessHeap
HeapAlloc
HeapFree
GetVersionExW
SetErrorMode
SetFileAttributesW
LocalFileTimeToFileTime
CreateFileW
GetShortPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GetStringTypeExW
DeleteFileW
MoveFileW
GetCurrentDirectoryW
lstrlenA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GlobalFlags
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
GetTickCount
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
LoadLibraryExW
CompareStringA
InterlockedExchange
GetModuleHandleA
InterlockedDecrement
GetModuleFileNameW
SystemTimeToFileTime
FileTimeToSystemTime
CopyFileW
GlobalSize
GlobalAlloc
FormatMessageW
LocalFree
MulDiv
GetThreadLocale
InterlockedIncrement
GlobalFree
WaitForSingleObject
ResumeThread
SetThreadPriority
CloseHandle
FreeResource
GetCurrentThreadId
GlobalFindAtomW
GlobalDeleteAtom
FreeLibrary
CompareStringW
SizeofResource
LoadLibraryA
lstrcmpW
GetVersionExA
GetVersion
GlobalLock
GlobalUnlock
GetCurrentProcessId
GetProcAddress
GetModuleHandleW
LoadLibraryW
GlobalGetAtomNameW
GlobalAddAtomW
lstrlenW
GetLastError
SetLastError
GetLocaleInfoW
SetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
FindResourceW
LoadResource
LockResource

user32

SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
MessageBoxW
GetClassInfoExW
RegisterClassW
ScreenToClient
DeferWindowPos
SetWindowTextW
PtInRect
DefWindowProcW
CallWindowProcW
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetClassNameW
GetSysColor
UnpackDDElParam
ReuseDDElParam
DestroyMenu
IsRectEmpty
SetWindowRgn
SetTimer
KillTimer
SetCapture
GetWindow
WinHelpW
SetFocus
GetWindowThreadProcessId
IsWindowEnabled
EqualRect
GetDlgItem
GetKeyState
GetDlgCtrlID
SetCursor
GetCapture
ReleaseCapture
LoadAcceleratorsW
SetActiveWindow
IsWindowVisible
InvalidateRect
InsertMenuItemW
MoveWindow
ValidateRect
GetCursorPos
GetMessageW
EndDialog
GetClassInfoW
IntersectRect
SetScrollInfo
IsDialogMessageW
GetParent
EnableWindow
DrawIcon
SendMessageW
IsIconic
GetNextDlgTabItem
GetScrollInfo
CreateDialogIndirectParamW
GetClientRect
LoadIconW
GetSystemMetrics
GetSubMenu
LoadMenuW
GetMessagePos
UpdateWindow
OffsetRect
RedrawWindow
InflateRect
SetWindowPos
SetWindowLongW
GetWindowLongW
GetFocus
DispatchMessageW
TranslateMessage
PeekMessageW
CreatePopupMenu
DeleteMenu
AppendMenuW
GetMenuItemCount
InsertMenuW
RegisterWindowMessageW
DefFrameProcW
GetMenu
DefMDIChildProcW
CharNextW
GetMenuStringW
FillRect
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
GetMenuItemInfoW
SystemParametersInfoW
GetKeyNameTextW
MapVirtualKeyW
PostQuitMessage
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
LockWindowUpdate
GetDCEx
WindowFromPoint
PostThreadMessageW
MessageBeep
GetNextDlgGroupItem
CharUpperW
DestroyIcon
UnregisterClassW
InvalidateRgn
SetRect
CopyAcceleratorTableW
UnionRect
SetParent
GetSystemMenu
GetSysColorBrush
LoadCursorW
FindWindowW
GetAsyncKeyState
UnregisterClassA
GetClipboardFormatNameW
DrawEdge
GetDoubleClickTime
SetCursorPos
GetCursor
LookupIconIdFromDirectoryEx
SendMessageTimeoutW
CreateIconIndirect
CopyIcon
GetIconInfo
CreateIconFromResourceEx
GetMenuDefaultItem
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsClipboardFormatAvailable
HideCaret
ShowCaret
IsMenu
GetWindowRgn
DrawFocusRect
DrawFrameControl
InvertRect
GetKeyboardLayout
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayoutList
GetKeyboardState
ToUnicodeEx
CreateAcceleratorTableW
DestroyAcceleratorTable
SetRectEmpty
CopyRect
GetLastActivePopup
PostMessageW
SetMenu
GetDesktopWindow
ShowWindow
AdjustWindowRectEx
IsWindow
TranslateAcceleratorW
TranslateMDISysAccel
BringWindowToTop
GetActiveWindow
DrawMenuBar
CreateWindowExW
GetMenuItemID
DrawIconEx
SetClassLongW
DrawStateW
IsZoomed
LoadImageW
wsprintfW

gdi32

IntersectClipRect
LineTo
MoveToEx
DeleteObject
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
ExcludeClipRect
CreatePen
CreateSolidBrush
CreateFontIndirectW
GetTextExtentPoint32W
CreateRectRgnIndirect
PatBlt
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
SetRectRgn
CombineRgn
GetMapMode
GetCharWidthW
CreateFontW
StretchDIBits
GetTextMetricsW
GetRgnBox
SetStretchBltMode
SetBkMode
RestoreDC
SaveDC
CopyMetaFileW
GetTextColor
GetBkColor
GetDeviceCaps
GetStockObject
CreateBitmap
SetBkColor
SetTextColor
Polygon
Rectangle
StretchBlt
SetPixel
GetCurrentObject
CreateDIBSection
PtInRegion
EnumFontFamiliesExW
GetDIBits
SetDIBits
ExtCreateRegion
GetBitmapBits
CreatePolygonRgn
RoundRect
GetViewportOrgEx
ExtFloodFill
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
SetMapMode
GetObjectW

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

SetFileSecurityW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW
RegSetValueW
RegOpenKeyW
RegCreateKeyW
GetFileSecurityW
RegCloseKey
RegCreateKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW

shell32

SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
ExtractIconW
DragQueryFileW
DragFinish
ShellExecuteW
SHGetSpecialFolderLocation

comctl32

PropertySheetW
_TrackMouseEvent
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_Destroy
InitCommonControlsEx
ImageList_DrawEx

shlwapi

PathStripToRootW
UrlUnescapeW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW

oledlg

OleUIAddVerbMenuW
OleUIBusyW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
CLSIDFromString
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
OleIsCurrentClipboard
OleFlushClipboard
CoCreateInstance
CoRegisterMessageFilter
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
ReleaseStgMedium

oleaut32

OleLoadPicturePath
VariantChangeTypeEx
VarUdateFromDate
LoadTypeLi
SysAllocString
VarBstrFromDate
VarDateFromStr
SafeArrayDestroy
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysStringLen
OleCreateFontIndirect
SysAllocStringLen
VariantInit
VariantChangeType
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear

wininet

InternetCanonicalizeUrlW
HttpOpenRequestW
InternetConnectW
HttpSendRequestExW
HttpEndRequestW
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallbackW
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoW
HttpAddRequestHeadersW
InternetQueryDataAvailable
InternetCrackUrlW

winmm

PlaySoundW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de894a12461963c3dfd4c50acbd4e105

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 296KB - Virtual size: 293KB

.data Size: 32KB - Virtual size: 47KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 296KB - Virtual size: 293KB

.data
Size: 32KB - Virtual size: 47KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB