2024-02-03_85b9fff5c28c56a35a46963009cf874e_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-03_85b9fff5c28c56a35a46963009cf874e_icedid
Size

1.7MB
MD5

85b9fff5c28c56a35a46963009cf874e
SHA1

f5b7d9aecd1b6857ac505ab28e02ad1d429c01d4
SHA256

ba1383e26c4940429c003d503add6c1ed9e4d23448f2600d135c6586992409af
SHA512

41c74e8bd249bf8f450a1b99c32537fc7964daba822ef8a78ca1ebd617fa33e88de163503f0d9ff965c701b4a66263b7f1dc4c7340bae464fd26eb05df346d1d
SSDEEP

24576:HXyDDvPi/9bisQT62XglMxum7QUyjliv7g8YEisvnj+:CTofQTLQ48gvkNuj+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-03_85b9fff5c28c56a35a46963009cf874e_icedid

Files

2024-02-03_85b9fff5c28c56a35a46963009cf874e_icedid
.exe windows:4 windows x86 arch:x86

b9d02bcb774345aca5420be1a635dd9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsDlgButtonChecked
ScrollWindowEx
GetDlgItemTextA
ShowScrollBar
CheckRadioButton
SetScrollRange
GetScrollPos
GetTopWindow
SetWindowPlacement
GetWindowTextLengthA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetForegroundWindow
IntersectRect
GetWindowPlacement
WindowFromPoint
RegisterWindowMessageA
IsCharAlphaA
LoadBitmapA
GetClassInfoA
TileWindows
InvalidateRgn
IsCharAlphaNumericA
AdjustWindowRectEx
MoveWindow
GetClassNameA
SetDlgItemTextA
IsRectEmpty
GetActiveWindow
CreateWindowExA
MapDialogRect
GetDC
ReleaseDC
EnumChildWindows
GetSysColorBrush
TrackPopupMenu
DestroyMenu
GetDlgCtrlID
DrawFocusRect
RedrawWindow
GetMessagePos
CopyRect
LoadMenuA
UnpackDDElParam
ReuseDDElParam
SetMenu
GetSystemMenu
CheckMenuItem
AppendMenuA
GetWindowTextA
MessageBeep
FlashWindow
OffsetRect
SetWindowPos
SystemParametersInfoA
InflateRect
GetKeyboardState
ToAscii
GetKeyNameTextA
MapVirtualKeyA
GetSubMenu
TranslateAcceleratorA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
SetWindowTextA
CreateAcceleratorTableA
GetDoubleClickTime
RegisterClipboardFormatA
BringWindowToTop
IsDialogMessageA
MessageBoxA
keybd_event
ScreenToClient
SetCursor
DefWindowProcA
LoadCursorA
LoadIconA
RegisterClassA
OemToCharA
SetFocus
SetActiveWindow
GetMenuStringA
GetDesktopWindow
EnableMenuItem
GetMenu
IsMenu
GetMenuItemInfoA
RemoveMenu
DrawMenuBar
wvsprintfA
PeekMessageA
TranslateMessage
DispatchMessageA
GetDlgItem
IsCharUpperA
CharLowerA
GetClipboardData
IsWindowVisible
SetCursorPos
GetCursorPos
GetSystemMetrics
GetSysColor
GetWindowLongA
SetClipboardData
CharToOemBuffA
OemToCharBuffA
ReleaseCapture
SetCapture
SetTimer
SetCaretPos
ClientToScreen
KillTimer
SetRect
GetCaretPos
ShowCaret
HideCaret
DestroyCaret
CreateCaret
FillRect
GetAsyncKeyState
IsWindow
PtInRect
GetMessageTime
GetFocus
IsChild
GetClientRect
SetRectEmpty
GetParent
InSendMessage
ReplyMessage
GetWindowRect
InsertMenuA
GetMenuItemID
GetMenuState
GetWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsWindowEnabled
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
ValidateRect
ScrollWindow
SetScrollInfo
GetMessageA
PostQuitMessage
LoadAcceleratorsA
DefFrameProcA
TranslateMDISysAccel
InvertRect
DefMDIChildProcA
ShowOwnedPopups
DestroyCursor
GetDialogBaseUnits
WaitMessage
GetWindowThreadProcessId
DestroyIcon
UnregisterClassA
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
PostThreadMessageA
SetParent
CopyAcceleratorTableA
GetKeyboardLayout
ShowWindow
DestroyAcceleratorTable
EqualRect
SendDlgItemMessageA
MapWindowPoints
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetScrollInfo
FrameRect
LoadImageA
UnionRect
DrawFrameControl
DrawStateA
CreatePopupMenu
DrawIconEx
SetMenuDefaultItem
SetMenuItemInfoA
DrawEdge
GetMenuDefaultItem
GetScrollRange
EmptyClipboard
ModifyMenuA
SendMessageA
OpenClipboard
wsprintfA
LoadStringA
SetWindowLongA
InvalidateRect
GetCapture
WinHelpA
GetLastActivePopup
FindWindowA
IsClipboardFormatAvailable
DeleteMenu
GetMenuItemCount
IsZoomed
PostMessageA
EnableWindow
CloseClipboard
GetKeyState
SetForegroundWindow
CharUpperA
IsIconic
SetScrollPos
UpdateWindow
IsCharLowerA

kernel32

VirtualFree
CompareStringW
SetUnhandledExceptionFilter
ExpandEnvironmentStringsA
IsValidLocale
TerminateProcess
GetTimeZoneInformation
_lopen
_lcreat
_lclose
GetModuleHandleA
_llseek
_lread
_lwrite
GetLocaleInfoW
SetEnvironmentVariableA
IsBadWritePtr
IsBadReadPtr
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
SetHandleCount
SetStdHandle
EnumSystemLocalesA
IsValidCodePage
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
ExitThread
CreateThread
ExitProcess
GetCommandLineA
GetStartupInfoA
GetFileType
PeekNamedPipe
GetFileInformationByHandle
GetACP
RaiseException
RtlUnwind
SetErrorMode
GetOEMCP
FreeLibrary
GetDiskFreeSpaceA
GetProcAddress
LoadLibraryA
GetCurrentDirectoryA
GetTickCount
Sleep
lstrcmpA
lstrlenA
lstrcpyA
ResumeThread
SuspendThread
GlobalAddAtomA
GetLastError
CreateFileMappingA
CloseHandle
GetModuleFileNameA
CreateProcessA
GetShortPathNameA
GlobalUnlock
GlobalLock
GlobalFree
GlobalHandle
GlobalAlloc
MulDiv
FindNextFileA
GetFullPathNameA
FindClose
FindFirstFileA
lstrcmpiA
GetFileAttributesA
GetDriveTypeA
lstrcatA
UnmapViewOfFile
GetTempFileNameA
GetTempPathA
lstrcpynA
MapViewOfFile
CreateFileA
DeleteFileA
GetFileSize
FlushFileBuffers
SetEndOfFile
SetFilePointer
SetFileTime
GetFileTime
SetFileAttributesA
MultiByteToWideChar
GetProcessVersion
InitializeCriticalSection
DeleteCriticalSection
SetEvent
EnterCriticalSection
WaitForSingleObject
FindNextChangeNotification
WaitForMultipleObjects
ResetEvent
FindCloseChangeNotification
FindFirstChangeNotificationA
LeaveCriticalSection
LocalFree
FormatMessageA
SetCurrentDirectoryA
CreateDirectoryA
CopyFileA
GetVolumeInformationA
SystemTimeToFileTime
GetSystemTime
GetVersionExA
GetCurrentProcess
GetCurrentThread
GetCurrentProcessId
CreateEventA
SetThreadLocale
GetLocaleInfoA
GetUserDefaultLCID
GlobalDeleteAtom
GlobalGetAtomNameA
GetPrivateProfileStringA
GlobalReAlloc
EnumResourceLanguagesA
GetLocalTime
GetProfileIntA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTimeFormatA
GetDateFormatA
LockResource
LoadResource
FindResourceA
CompareStringA
SetLastError
GetEnvironmentVariableA
GetExitCodeProcess
DuplicateHandle
ReadFile
CreatePipe
InterlockedExchange
VirtualQuery
VirtualLock
VirtualAlloc
GetCPInfo
HeapAlloc
GetProcessHeap
HeapFree
IsBadCodePtr
OpenMutexA
MapViewOfFileEx
OpenFileMappingA
ReleaseMutex
GetSystemInfo
OpenProcess
VirtualQueryEx
CreateMutexA
GetCurrentThreadId
GetVersion
GlobalFindAtomA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
SetThreadPriority
WriteFile
LockFile
UnlockFile
MoveFileA
GetStringTypeExA
GetThreadLocale
LocalAlloc
TlsAlloc
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GetPrivateProfileIntA
WritePrivateProfileStringA
GlobalFlags
LocalFileTimeToFileTime

gdi32

GetCurrentObject
GetTextExtentPointA
StretchBlt
GetPaletteEntries
GetRgnBox
SetPaletteEntries
GetDIBits
CreateDIBitmap
Ellipse
ExtSelectClipRgn
GetWindowOrgEx
GetTextFaceA
GetROP2
GetBkMode
GetPolyFillMode
GetStretchBltMode
LPtoDP
CreateFontA
CreateCompatibleBitmap
StretchDIBits
SetRectRgn
CreateDCA
GetViewportOrgEx
Rectangle
Escape
TextOutA
RectVisible
PtVisible
CreatePatternBrush
ExtCreatePen
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetCurrentPositionEx
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
ExtFloodFill
BitBlt
RealizePalette
SetStretchBltMode
SetDIBitsToDevice
CreatePalette
CreateRectRgnIndirect
CombineRgn
CreateRectRgn
GetNearestColor
CreateICA
EnumFontFamiliesA
EnumFontFamiliesExA
DeleteDC
ExtTextOutA
SelectObject
GetTextExtentPoint32A
GetTextAlign
CreateCompatibleDC
GetTextMetricsA
GetCharWidthA
GetBkColor
GetTextColor
PtInRegion
CreatePen
DeleteObject
RectInRegion
SetAbortProc
StartDocA
GetDeviceCaps
DPtoLP
StartPage
EndPage
EndDoc
AbortDoc
CreatePolygonRgn
FillRgn
CreateSolidBrush
CreateHatchBrush
PatBlt
GetObjectA
CreateFontIndirectA

advapi32

RegOpenKeyExA
RegConnectRegistryA
RegCreateKeyA
RegDeleteValueA
RegQueryValueExA
FreeSid
GetFileSecurityA
AllocateAndInitializeSid
GetTokenInformation
EqualSid
OpenThreadToken
RegEnumValueA
OpenProcessToken
RegCreateKeyExA
RegEnumKeyExA
SetFileSecurityA
RegCloseKey
RegOpenKeyA
RegSetValueA
RegSetValueExA
RegDeleteKeyA
RegQueryValueA
RegQueryInfoKeyA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

mpr

WNetOpenEnumA
WNetCloseEnum

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 280KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 264KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b9d02bcb774345aca5420be1a635dd9c

Headers

File Characteristics

Imports

user32

kernel32

gdi32

advapi32

winspool.drv

mpr

version

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 280KB - Virtual size: 277KB

.data Size: 48KB - Virtual size: 66KB

.rsrc Size: 264KB - Virtual size: 276KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 280KB - Virtual size: 277KB

.data
Size: 48KB - Virtual size: 66KB

.rsrc
Size: 264KB - Virtual size: 276KB