2024-02-04_061e69beb62aecd74032640f22d4da7a_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-04_061e69beb62aecd74032640f22d4da7a_icedid
Size

408KB
MD5

061e69beb62aecd74032640f22d4da7a
SHA1

664ff62912ed6b7cd1d2541a0d3cb8b8fb4f306c
SHA256

1c9ce4426ece28a703da9a579525d874d79e1da425edb9044e0f287669d760a0
SHA512

469de184c253c23222ac6ecdc5b7a0e16e041831bacd24eb8695ea776ba5c51bc7d4037ba0ffba3b80658c110d2c1738124d6e02f5892aac4f340f9d05066c62
SSDEEP

6144:vAPQw7F8OtLRDzp77aDCj2OVeZeMnAohLdaT/v1sVxLW5aPsyC:vAPQ6Rxfa+j2OVeZeyoYLWz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-04_061e69beb62aecd74032640f22d4da7a_icedid

Files

2024-02-04_061e69beb62aecd74032640f22d4da7a_icedid
.exe windows:4 windows x86 arch:x86

1b7dcf7699ba01ad5efb8289b10dd3d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

EnumProcessModules
GetModuleBaseNameA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey
SetupDiEnumDeviceInfo
SetupDiGetDeviceInterfaceDetailA

ddschk

RunDDSCHK

kernel32

SetFileTime
GetFileTime
GetTempFileNameA
GetDiskFreeSpaceA
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
InterlockedIncrement
GetCPInfo
GetOEMCP
FileTimeToSystemTime
SystemTimeToFileTime
SetErrorMode
FileTimeToLocalFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryA
HeapFree
RtlUnwind
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
GetFileAttributesA
VirtualQuery
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RaiseException
ExitThread
CreateThread
ExitProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
DeleteFileA
MoveFileA
lstrcmpA
InterlockedDecrement
GetModuleFileNameW
GlobalFree
GlobalAlloc
MulDiv
WaitForSingleObject
CreateEventA
ReleaseMutex
CreateMutexA
FreeResource
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
lstrcmpW
GetVersionExA
GlobalLock
GlobalUnlock
GetCurrentProcessId
GetProcAddress
GetModuleHandleA
LoadLibraryA
GlobalGetAtomNameA
GlobalAddAtomA
GetStringTypeExA
lstrlenA
lstrcmpiA
CompareStringW
CompareStringA
GetVersion
MultiByteToWideChar
InterlockedExchange
GetTickCount
GetModuleFileNameA
SetCurrentDirectoryA
FormatMessageA
LocalFree
SetLastError
GetPrivateProfileIntA
GetACP
FindResourceExA
WriteFile
OpenFileMappingA
MapViewOfFileEx
UnmapViewOfFile
DeviceIoControl
GetLastError
CreateFileA
WideCharToMultiByte
OpenProcess
Sleep
FindResourceA
LoadResource
LockResource
SizeofResource
CloseHandle
GetSystemInfo

user32

GetSysColorBrush
LoadCursorA
IsRectEmpty
DeleteMenu
UnregisterClassA
DestroyIcon
CharNextA
CopyAcceleratorTableA
SetRect
InvalidateRgn
SetCapture
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
GetMenuStringA
InsertMenuA
MoveWindow
SetWindowTextA
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
TabbedTextOutA
SetForegroundWindow
GetClientRect
MessageBoxA
CreateWindowExA
GetClassInfoExA
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
PtInRect
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
RegisterWindowMessageA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
GetClassNameA
GetSysColor
WinHelpA
SetWindowPos
SetFocus
GetActiveWindow
IsWindowEnabled
GetFocus
EqualRect
GetDlgItem
SetWindowLongA
GetKeyState
GetDlgCtrlID
GetMenu
LoadIconA
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
IsWindowVisible
InvalidateRect
IsIconic
InsertMenuItemA
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
GetClassInfoA
IntersectRect
OffsetRect
SetRectEmpty
GetMenuItemInfoA
InflateRect
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringA
DrawTextExA
GetTopWindow
DrawTextA
CopyRect
GetLastActivePopup
BringWindowToTop
SetMenu
GetDesktopWindow
ShowWindow
GetWindowLongA
IsWindow
TranslateAcceleratorA
CharUpperA
EnableWindow
UpdateWindow
GetParent
KillTimer
SetTimer
PostMessageA
FindWindowA
GetWindowThreadProcessId
SendMessageA
GetWindow
FillRect
ClientToScreen
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
PostQuitMessage
RegisterClassA

gdi32

OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
RectVisible
CreatePatternBrush
GetStockObject
SetViewportOrgEx
CreateSolidBrush
CreateFontIndirectA
GetTextExtentPoint32A
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
SelectObject
Escape
ExtTextOutA
SaveDC
DeleteObject
GetDeviceCaps
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
SetMapMode
SetBkMode
RestoreDC
TextOutA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegSetValueA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegCreateKeyA

shell32

DragQueryFileA
SHGetFileInfoA
ExtractIconA
DragFinish

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

CoRegisterMessageFilter
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantClear
VariantCopy
SysAllocStringByteLen
SysFreeString
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType

ws2_32

accept
socket
select
gethostbyname
htonl
htons
inet_addr
bind
WSAGetLastError
closesocket
WSASetLastError
connect
sendto
recvfrom
WSAAsyncSelect
send
recv
shutdown
ioctlsocket
WSACleanup
WSAStartup

Sections

.text
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b7dcf7699ba01ad5efb8289b10dd3d0

Headers

File Characteristics

Imports

psapi

setupapi

ddschk

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 272KB - Virtual size: 270KB

.rdata Size: 80KB - Virtual size: 78KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 28KB - Virtual size: 24KB

.text
Size: 272KB - Virtual size: 270KB

.rdata
Size: 80KB - Virtual size: 78KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 28KB - Virtual size: 24KB