2024-02-04_0bdaee0da97d0feeb497690888dfdfe0_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-02-04_0bdaee0da97d0feeb497690888dfdfe0_icedid
Size

1.6MB
MD5

0bdaee0da97d0feeb497690888dfdfe0
SHA1

6693d21f8b60d30cf9e954ddfc6718f152b7f202
SHA256

a396460645a9bfbd911333200a3536a2a57c6138eacec995c5836d0abf2ef279
SHA512

fc55c066519be654d78e9a280a360923ac57118920a2899d0ebd3e1c66316ea429fd53eb53d8dc1dc6622571fd6a4591ba13758b8d21a598f5bf019c7eda34ff
SSDEEP

49152:wu9lLAC7wZUn7+TBCHgv8d6N7HP/mO6E8O+nVr1IGmPqGUP2TCYAO+rdhcJ:wqCC7wM7MGgv8INTP/mO6E8XB1IGl+Tp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-04_0bdaee0da97d0feeb497690888dfdfe0_icedid

Files

2024-02-04_0bdaee0da97d0feeb497690888dfdfe0_icedid
.exe windows:5 windows x86 arch:x86

b7d2f87ab201860f7f56534dda6572e4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
CreateProcessA
SetEnvironmentVariableA
QueryPerformanceCounter
GetProcessHeap
CreateFileW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoW
HeapCreate
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetFileType
SetStdHandle
ExitProcess
GetModuleFileNameA
CreateThread
ExitThread
HeapSize
HeapQueryInformation
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
EncodePointer
DecodePointer
RaiseException
RtlUnwind
GetDateFormatA
CompareStringW
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetTimeZoneInformation
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
FindResourceExW
GetUserDefaultLCID
VirtualProtect
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExA
SearchPathA
Sleep
GetProfileIntA
GetTickCount
GetFileAttributesA
GetNumberFormatA
GetWindowsDirectoryA
GetCurrentDirectoryA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
ReadFile
LCMapStringW
GetConsoleMode
GetTimeFormatA
GetConsoleCP
DeleteFileA
lstrcmpiA
GetTempPathA
GetTempFileNameA
CreateFileA
SetFilePointer
GetACP
GetOEMCP
GetCPInfo
GetUserDefaultUILanguage
GetLocaleInfoA
InterlockedExchange
WaitForSingleObject
ResumeThread
SetThreadPriority
CloseHandle
FileTimeToSystemTime
GetModuleHandleW
GlobalFlags
lstrcmpA
GetCurrentProcessId
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
TlsGetValue
GetSystemDirectoryW
InterlockedIncrement
FindResourceA
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LoadLibraryW
lstrcmpW
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CopyFileA
GlobalSize
FormatMessageA
lstrlenW
MulDiv
lstrlenA
GetVersionExA
GetModuleHandleA
WideCharToMultiByte
ActivateActCtx
GetLastError
DeactivateActCtx
SetLastError
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetShortPathNameA
LocalAlloc
LocalLock
LocalUnlock
GetCommandLineW
GetPrivateProfileIntA
WritePrivateProfileStringA
GlobalAlloc
GlobalLock
lstrcpyA
GlobalUnlock
GlobalFree
LoadLibraryA
GetProcAddress
FreeLibrary
LocalFree
WriteConsoleW

user32

SetMenuDefaultItem
WaitMessage
PostThreadMessageA
CreateMenu
IsMenu
UpdateLayeredWindow
UnionRect
MonitorFromPoint
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
UnpackDDElParam
ReuseDDElParam
InsertMenuItemA
GetNextDlgGroupItem
LoadImageA
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
GetMenuDefaultItem
ShowOwnedPopups
DestroyIcon
LockWindowUpdate
BringWindowToTop
SetCursorPos
SetRect
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
MapVirtualKeyA
ToAsciiEx
CopyAcceleratorTableA
DrawFrameControl
DrawEdge
DrawIconEx
DrawStateA
CharUpperA
SetCursor
ReleaseCapture
SetCapture
KillTimer
SetTimer
GetSystemMenu
LoadMenuW
DeleteMenu
IntersectRect
SetClassLongA
GetAsyncKeyState
NotifyWinEvent
WindowFromPoint
CreatePopupMenu
DestroyAcceleratorTable
SetParent
SetWindowRgn
IsZoomed
IsIconic
OffsetRect
IsRectEmpty
CopyImage
GetWindowDC
GrayStringA
DrawTextA
TabbedTextOutA
FillRect
GetCursorPos
GetMenuItemInfoA
InflateRect
RealChildWindowFromPoint
ClientToScreen
GetWindowThreadProcessId
GetSysColorBrush
LoadCursorW
SetLayeredWindowAttributes
GetSystemMetrics
EnumDisplayMonitors
SystemParametersInfoA
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
LoadIconW
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageA
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
RedrawWindow
IsWindowVisible
ValidateRect
UpdateWindow
GetClassInfoExA
GetClassInfoA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
GetMenu
SetWindowPos
CopyRect
PtInRect
GetWindow
UnhookWindowsHookEx
InsertMenuA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuA
GetMenuState
EnableMenuItem
RegisterWindowMessageA
IsWindowEnabled
GetParent
AppendMenuA
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetClientRect
GetSubMenu
RemoveMenu
GetMenuStringA
ScreenToClient
InvalidateRect
FrameRect
GetUpdateRect
LoadImageW
RegisterClipboardFormatA
GetWindowRgn
DestroyCursor
DrawIcon
MapDialogRect
SubtractRect
MonitorFromRect
LoadMenuA
CreateWindowExA
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
GetDoubleClickTime
CharUpperBuffA
SetRectEmpty
CopyIcon
SetMenu
ShowWindow
LoadAcceleratorsA
GetMessageA
IsDialogMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassA
IsWindow
CreateDialogParamA
GetFocus
IsClipboardFormatAvailable
DialogBoxParamA
DefWindowProcA
GetWindowRect
PostQuitMessage
BeginPaint
EndPaint
MoveWindow
GetDlgItemInt
LoadStringA
MessageBoxA
SetWindowTextA
GetWindowLongA
SetWindowLongA
GetWindowTextA
CallWindowProcA
MessageBeep
UnregisterClassA
DestroyMenu
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetFocus
IsDlgButtonChecked
CheckDlgButton
CheckMenuItem
DestroyWindow
GetSysColor
DrawFocusRect
GetDC
ReleaseDC
SetDlgItemTextA
GetDlgItem
SendMessageA
EnableWindow
GetDlgItemTextA
EndDialog
SendDlgItemMessageA
PostMessageA
DrawTextExA

gdi32

GetObjectType
CreateHatchBrush
CreateDIBSection
CreateRoundRectRgn
CreatePolygonRgn
CombineRgn
GetBkColor
GetTextColor
PatBlt
CreateEllipticRgn
Polyline
Ellipse
Polygon
SetRectRgn
DPtoLP
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
GetRgnBox
SetDIBColorTable
SelectPalette
SetPixel
Rectangle
EnumFontFamiliesExA
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
ExtFloodFill
SetPaletteEntries
GetTextFaceA
SetPixelV
DeleteDC
StretchBlt
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutA
RectVisible
SetLayout
GetLayout
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
GetTextMetricsA
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetTextExtentPoint32A
DeleteObject
GetTextCharsetInfo
EnumFontFamiliesA
BitBlt
CreateCompatibleDC
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateFontIndirectA
CreatePatternBrush
CreateSolidBrush
CreatePen
GetStockObject
CreateDIBitmap
GetObjectA
CreateDCA
CopyMetaFileA
GetDeviceCaps
CreateBitmap
CreateFontA
SetBkColor
SetTextColor
ExtTextOutA
SelectObject
SelectClipRgn

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegDeleteValueA
RegSetValueA
RegEnumKeyExA
RegSetValueExA

shell32

SHAppBarMessage
ShellExecuteA
SHGetFileInfoA
SHGetDesktopFolder
SHBrowseForFolderA
CommandLineToArgvW
DragQueryFileA
DragFinish
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

DoDragDrop
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoInitializeEx
CoCreateInstance
CoTaskMemFree
CoUninitialize
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

oleaut32

SysFreeString
SysAllocString
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathRemoveFileSpecW
PathFindExtensionA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 299KB - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 515KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7d2f87ab201860f7f56534dda6572e4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

msimg32

comctl32

shlwapi

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 299KB - Virtual size: 299KB

.data Size: 22KB - Virtual size: 515KB

.rsrc Size: 51KB - Virtual size: 50KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 299KB - Virtual size: 299KB

.data
Size: 22KB - Virtual size: 515KB

.rsrc
Size: 51KB - Virtual size: 50KB