2024-02-14_d7a8f40c246d72e0cd2efd55d6d52400_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-14_d7a8f40c246d72e0cd2efd55d6d52400_icedid
Size

13.1MB
MD5

d7a8f40c246d72e0cd2efd55d6d52400
SHA1

8ef45142a43aaa023cb60cbd33992db624b1eee1
SHA256

4fd053a5e45c240af165d9ea70a4c0c21c39f0442abd269b6341be51362b698d
SHA512

8e2f341db280fbd69ed2c4a62f29f466e612643f44eddfbc958a3009516fd2d2cc76691bdc588067e05ae5f291d28de56aed6f1375fc94ed950399e8a6188e1d
SSDEEP

196608:wb4yqWunyea6D6WaaaDOibjnOiKqX8CIN2:wkyHunmfWbaDOibjnOifsCC2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-14_d7a8f40c246d72e0cd2efd55d6d52400_icedid

Files

2024-02-14_d7a8f40c246d72e0cd2efd55d6d52400_icedid
.exe windows:4 windows x86 arch:x86

75a2b9d42d9696e00c50d7cf0b3bcb25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
DeleteFileA
WritePrivateProfileStringA
GetWindowsDirectoryA
GetTempPathA
GetModuleFileNameA
GlobalFree
CloseHandle
CreateFileA
MoveFileExA
FindClose
FindFirstFileA
WriteFile
ReadFile
GlobalAlloc
GetFileSize
FreeLibrary
GlobalUnlock
GlobalSize
GlobalLock
GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
CompareStringW
CompareStringA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLastError
FindNextFileA
GetDriveTypeA
GetFullPathNameA
GetLocalTime
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
RtlUnwind
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
RaiseException
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
Sleep
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapReAlloc
GetTimeZoneInformation
InitializeCriticalSection
CreateDirectoryA

user32

LoadIconA
DestroyWindow
ShowCursor
LoadCursorA
SetCursor
MessageBoxA
RegisterClassA
CreateWindowExA
ShowWindow
DefWindowProcA
wsprintfA

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75a2b9d42d9696e00c50d7cf0b3bcb25

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 24KB - Virtual size: 22KB