2024-01-26_39bb629ce897895654361c25486dda7d_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-26_39bb629ce897895654361c25486dda7d_icedid
Size

4.2MB
MD5

39bb629ce897895654361c25486dda7d
SHA1

bb3b2a6c8ecda9339c385c995122592e75c441a6
SHA256

b0a9ac701e6b21d3f66e62bfa9d2b78cad2e2e64623407b12c315450af2a13c0
SHA512

4e384b9701b9e966108707dfc506dcefd97ff52fe97e8257e37fa0ae54c33e03bd2f3d36ddd44475f9b5c89cc559d2e8dedf564e33c02163aa748c6fe1b645dd
SSDEEP

98304:E31dcVf8GfnO4N8qgQfO5OfpAQAkynogBziNYZSz+DWFLOAkGkzdnEVomFHKnP:E38gp5kAZZSz+qFLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-01-26_39bb629ce897895654361c25486dda7d_icedid

Files

2024-01-26_39bb629ce897895654361c25486dda7d_icedid
.exe windows:5 windows x86 arch:x86

fd05363233d75ec36e27d00a9f2076bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointerEx
GetStdHandle
GetStartupInfoW
IsValidCodePage
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetConsoleCP
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDateFormatW
GetTimeFormatW
LCMapStringW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
LoadResource
SizeofResource
GetTickCount
FindResourceA
FindResourceW
MultiByteToWideChar
WideCharToMultiByte
GetNumberFormatA
GetCurrentDirectoryA
OpenProcess
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
TerminateThread
GetLastError
CreateIoCompletionPort
GetQueuedCompletionStatus
PostQueuedCompletionStatus
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetCriticalSectionSpinCount
DeleteCriticalSection
SetEvent
WaitForSingleObject
WaitForMultipleObjects
Sleep
CloseHandle
GetLocalTime
SetLocalTime
GetSystemInfo
GetModuleFileNameA
GetVersionExA
GlobalReAlloc
GlobalSize
MulDiv
CreateFileA
GetFileAttributesA
DecodePointer
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
InitializeCriticalSectionAndSpinCount
DeleteFileA
ReleaseSemaphore
CreateSemaphoreA
OpenSemaphoreA
FindClose
GetWindowsDirectoryA
CreateDirectoryA
FindFirstFileA
GetModuleHandleA
SetLastError
LocalFree
FormatMessageA
CopyFileA
GetCurrentProcessId
OutputDebugStringA
EncodePointer
GetSystemDirectoryW
FreeLibrary
FreeResource
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
LoadLibraryW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
lstrcmpA
FlushFileBuffers
GetFileSize
GetFullPathNameA
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
lstrcmpiA
GetVolumeInformationA
GetThreadLocale
GetCurrentThread
lstrcpyA
FileTimeToSystemTime
CreateEventA
SetThreadPriority
SuspendThread
ResumeThread
GetProfileIntA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
VerSetConditionMask
VerifyVersionInfoA
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalFlags
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SetErrorMode
GetACP
VirtualProtect
GetTempPathA
GetTempFileNameA
SearchPathA
FindResourceExW
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
ExitProcess
GetModuleHandleExW
AreFileApisANSI
CreateThread
ExitThread
GetCommandLineA
VirtualAlloc
VirtualQuery
SetStdHandle
GetFileType
HeapQueryInformation
GetConsoleMode
ReadConsoleW
LockResource

user32

MapVirtualKeyA
GetKeyNameTextA
DrawIconEx
DrawFocusRect
GetSysColorBrush
SetWindowRgn
GetIconInfo
MonitorFromPoint
DrawStateA
SetLayeredWindowAttributes
PostQuitMessage
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
CheckDlgButton
SetDlgItemTextA
SetDlgItemInt
MoveWindow
ShowWindow
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
GetMenuItemInfoA
DestroyMenu
CharUpperA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
CallNextHookEx
SetWindowsHookExA
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
MapWindowPoints
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
ScrollWindow
ValidateRect
GetForegroundWindow
TrackPopupMenu
SetMenu
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
DestroyWindow
IsChild
CreateWindowExA
GetClassInfoExA
RegisterClassA
CallWindowProcA
GetMessageTime
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
UnhookWindowsHookEx
GetLastActivePopup
IsWindowEnabled
EndPaint
BeginPaint
GetWindowDC
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringA
GetKeyboardLayout
TrackMouseEvent
GetDesktopWindow
GetWindowLongA
AdjustWindowRectEx
GetMenu
SetWindowPlacement
GetWindowPlacement
IsRectEmpty
CopyRect
WindowFromPoint
ClientToScreen
GetDoubleClickTime
UnregisterClassA
GetWindow
LoadBitmapW
IntersectRect
InvertRect
ClipCursor
GetCapture
GetKeyState
IsClipboardFormatAvailable
IsWindow
GetClassInfoA
DefWindowProcA
GetMessagePos
LoadCursorA
SetRect
GetSysColor
SetCursor
DrawEdge
ReleaseDC
GetDC
LoadIconA
InvalidateRect
RedrawWindow
SetActiveWindow
SystemParametersInfoA
FrameRect
FillRect
ScreenToClient
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ReleaseCapture
SetCapture
GetFocus
IsWindowVisible
SetWindowPos
GetParent
InflateRect
LoadImageA
UpdateLayeredWindow
GetUpdateRect
ReuseDDElParam
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetClientRect
LoadIconW
GetWindowThreadProcessId
FindWindowA
OffsetRect
GetCursorPos
GetWindowRect
SetForegroundWindow
DrawIcon
EndMenu
GetSubMenu
LoadMenuW
GetSystemMetrics
TranslateAcceleratorA
LoadAcceleratorsA
EnableWindow
KillTimer
SetTimer
IsIconic
PostMessageA
UpdateWindow
GetWindowRgn
DestroyCursor
CreateMenu
MapVirtualKeyExA
IsCharLowerA
CharUpperBuffA
SubtractRect
TranslateMDISysAccel
DefMDIChildProcA
SendMessageA
MessageBeep
MessageBoxA
GetActiveWindow
SetFocus
DefFrameProcA
DrawMenuBar
GetComboBoxInfo
HideCaret
CreateAcceleratorTableA
ToAsciiEx
DrawFrameControl
GetKeyboardState
UnpackDDElParam
InsertMenuItemA
LoadMenuA
EqualRect
PtInRect
InvalidateRgn
CopyAcceleratorTableA
LoadAcceleratorsW
SetClassLongA
DestroyAcceleratorTable
ModifyMenuA
SetMenuDefaultItem
GetMenuDefaultItem
CopyIcon
EnableScrollBar
LockWindowUpdate
CreatePopupMenu
SetCursorPos
NotifyWinEvent
IsZoomed
LoadImageW
SetParent
PostThreadMessageA
GetSystemMenu
IsMenu
DestroyIcon
GetNextDlgGroupItem
DeleteMenu
GetDialogBaseUnits
CopyImage
RealChildWindowFromPoint
EnumDisplayMonitors
SetRectEmpty
UnionRect
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
RegisterClipboardFormatA
CharNextA
GetMessageA
LoadCursorW
GetAsyncKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
BringWindowToTop
WaitMessage
FindWindowExA
TranslateMessage

gdi32

RectVisible
PtVisible
CreateCompatibleDC
CreateCompatibleBitmap
Escape
TextOutA
GetTextFaceA
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
EnumFontFamiliesExA
GetPaletteEntries
SetPixelV
PtInRegion
FrameRgn
OffsetRgn
GetRgnBox
CreateRoundRectRgn
SetDIBColorTable
StretchBlt
RealizePalette
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
RoundRect
SetPixel
Rectangle
DPtoLP
SetRectRgn
GetMapMode
GetSystemPaletteEntries
GetNearestPaletteIndex
CreatePalette
Polyline
CreatePolygonRgn
GetTextColor
CreateRectRgnIndirect
CreateEllipticRgn
CombineRgn
CreateDIBSection
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
CreateBitmap
CreateDCA
CopyMetaFileA
GetStockObject
SetTextColor
GetTextMetricsA
PatBlt
DeleteDC
GetObjectA
GetBkColor
GetDeviceCaps
GetCurrentObject
CreateFontIndirectA
GetTextExtentPoint32A
Polygon
Ellipse
CreateSolidBrush
CreatePen
CreateFontA
DeleteObject
ExtTextOutA
BitBlt

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyA
OpenProcessToken
RegEnumValueA
RegQueryValueA

shell32

SHGetSpecialFolderLocation
ShellExecuteA
ShellExecuteExA
SHGetFileInfoA
SHAppBarMessage
SHBrowseForFolderA
SHGetDesktopFolder
DragAcceptFiles
SHGetPathFromIDListA
DragFinish
DragQueryFileA

comctl32

ImageList_GetImageInfo
ImageList_AddMasked
_TrackMouseEvent
ord17
ImageList_Draw

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
DrawThemeText
DrawThemeParentBackground
GetCurrentThemeName

ole32

OleDuplicateData
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
OleGetClipboard
OleUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
OleInitialize
CoFreeUnusedLibraries
CoCreateGuid
CoInitializeEx
ReleaseStgMedium
CreateStreamOnHGlobal
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
StgOpenStorageOnILockBytes

oleaut32

VariantClear
VariantChangeType
OleCreateFontIndirect
SysStringLen
LoadTypeLi
SafeArrayDestroy
VariantInit
VariantCopy
VarBstrFromDate
SysAllocString
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
VarUdateFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime

oledlg

ord8

urlmon

URLDownloadToFileA

ws2_32

freeaddrinfo
WSASend
WSARecv
WSAIoctl
WSAAsyncSelect
WSAGetLastError
WSACleanup
WSAStartup
socket
shutdown
setsockopt
send
recv
inet_addr
htons
getsockname
connect
closesocket
bind
WSASetLastError
getaddrinfo

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdiplusShutdown
GdiplusStartup
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipCloneStringFormat
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawString
GdipDeleteFont
GdipCloneFont
GdipCreateFont
GdipCloneFontFamily
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDrawImageRectRectI
GdipDeleteGraphics
GdipCreateFromHWNDICM
GdipCreateFromHWND
GdipCreateFromHDC
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipAlloc
GdipFree
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext

dsound

ord11

winmm

mmioAdvance
mmioSetInfo
mmioGetInfo
mmioSeek
mmioWrite
mmioRead
mmioClose
mmioOpenA
PlaySoundA
mmioDescend
mmioAscend
mmioCreateChunk

dbghelp

MakeSureDirectoryPathExists

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmSetConversionStatus
ImmReleaseContext
ImmGetOpenStatus
ImmGetConversionStatus
ImmGetContext

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 473KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 1012KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd05363233d75ec36e27d00a9f2076bc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

urlmon

ws2_32

gdiplus

dsound

winmm

dbghelp

oleacc

imm32

Sections

.text Size: 2.4MB - Virtual size: 2.4MB

.rdata Size: 473KB - Virtual size: 473KB

.data Size: 29KB - Virtual size: 1012KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 2.4MB - Virtual size: 2.4MB

.rdata
Size: 473KB - Virtual size: 473KB

.data
Size: 29KB - Virtual size: 1012KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB