2024-02-13_319f3f1f1d6234185ed37ac3dbfa38d3_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-13_319f3f1f1d6234185ed37ac3dbfa38d3_icedid
Size

3.0MB
MD5

319f3f1f1d6234185ed37ac3dbfa38d3
SHA1

bca560524d1c6cd05ea5373c94dba5daa405b5de
SHA256

ec431a4c730c45357c2bd5bd7697f88f3b115efcf3a7aeb54aa3ac268d8717ac
SHA512

834d97c466aca547f23c85ef8ea90164715fa88468f73e4767b425aafff525eecd6d4258303bc7f8f8538496d7e43aa0e4745ed4ad2941a91c979bb487f697fa
SSDEEP

49152:xab+Lu6lQKJpal/Q/x2//sahRbunk6XENFsJT5Xf++:vRlhi/sMRSE+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-13_319f3f1f1d6234185ed37ac3dbfa38d3_icedid

Files

2024-02-13_319f3f1f1d6234185ed37ac3dbfa38d3_icedid
.exe windows:5 windows x86 arch:x86

28532b89924dbba3f5fcfa727abc0139

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

kernel32

HeapCreate
VirtualFree
IsValidCodePage
GetStdHandle
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetDriveTypeA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetProcessHeap
GetLastError
HeapSize
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
ExitProcess
GetModuleFileNameA
MultiByteToWideChar
GetACP
MulDiv
GlobalLock
GlobalUnlock
GlobalAlloc
ExpandEnvironmentStringsA
GetProcAddress
LoadLibraryA
GlobalFree
GetTickCount
CloseHandle
WaitForSingleObject
ResumeThread
lstrlenA
LocalFree
FormatMessageA
SetLastError
DeleteFileA
GetThreadLocale
ReadFile
WriteFile
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
Sleep
HeapReAlloc
GetStartupInfoA
GetCommandLineA
RtlUnwind
HeapAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
TerminateProcess
HeapFree
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
GlobalFlags
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetModuleHandleW
FindNextFileA
GetFileTime
GetFileSizeEx
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
RaiseException
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetVersionExA
GlobalAddAtomA
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
CompareStringA
InterlockedExchange
GetPrivateProfileStringA
WritePrivateProfileStringA
SetEndOfFile
GetPrivateProfileIntA
GetCurrentThreadId
GetCurrentProcessId
lstrcmpA
FreeResource
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
GetModuleHandleA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize

user32

PostThreadMessageA
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
SetRect
CopyAcceleratorTableA
CharNextA
UnregisterClassA
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
RegisterWindowMessageA
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
ScrollWindow
SetMenu
SetScrollPos
GetScrollPos
SetForegroundWindow
UpdateWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
SetScrollInfo
DefWindowProcA
CallWindowProcA
GetMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
SetFocus
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
CheckDlgButton
GetWindow
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetWindowThreadProcessId
GetLastActivePopup
MessageBoxA
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
UnhookWindowsHookEx
CharUpperA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PeekMessageA
CloseClipboard
EnumClipboardFormats
RegisterClipboardFormatA
OpenClipboard
GetAsyncKeyState
EqualRect
DestroyMenu
MessageBeep
PtInRect
InvertRect
GetCursor
SetCursor
GetFocus
DrawEdge
ScreenToClient
ReleaseDC
GetDC
MapDialogRect
UnionRect
IntersectRect
SendMessageA
ClientToScreen
SetRectEmpty
FrameRect
FillRect
GetSysColor
CopyRect
OffsetRect
GetWindowRect
MapWindowPoints
IsWindow
ReleaseCapture
KillTimer
SetTimer
SetCapture
IsRectEmpty
GetCursorPos
GetParent
GetClientRect
RedrawWindow
EnableWindow
LoadImageA
GetSystemMetrics
PostMessageA
LoadCursorA

gdi32

SetWinMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileHeader
SetEnhMetaFileBits
PlayEnhMetaFile
RealizePalette
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
ExtTextOutA
SetBkColor
SelectObject
CreateBitmap
GetClipBox
SetTextColor
GetObjectA
SaveDC
RestoreDC
SetBkMode
SetMapMode
LineTo
MoveToEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
GetStockObject
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
GetMapMode
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
DeleteObject
GetDIBits
SetDIBitsToDevice
GetDeviceCaps
DeleteDC
EnumFontFamiliesExA
Rectangle
BitBlt
SetDIBits
CreateCompatibleBitmap
CreateCompatibleDC
GetFontData
GetViewportExtEx
GetTextExtentPoint32A
CreateFontIndirectA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegSetValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteA

comctl32

_TrackMouseEvent

shlwapi

PathIsUNCA
PathFindExtensionA
PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathRemoveFileSpecW

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitializeEx
CoCreateInstance
CoUninitialize
CLSIDFromString
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromProgID

oleaut32

SysAllocStringByteLen
SysFreeString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocString
VariantCopy
VariantInit
VariantChangeType
SysAllocStringLen
VariantClear
SysStringLen

ws2_32

htons
ntohl
ntohs
htonl

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 433KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

28532b89924dbba3f5fcfa727abc0139

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.rdata Size: 433KB - Virtual size: 433KB

.data Size: 27KB - Virtual size: 115KB

.rsrc Size: 53KB - Virtual size: 52KB

.text
Size: 2.5MB - Virtual size: 2.5MB

.rdata
Size: 433KB - Virtual size: 433KB

.data
Size: 27KB - Virtual size: 115KB

.rsrc
Size: 53KB - Virtual size: 52KB