2024-02-19_0a19a8dc0b752323d99a7ee5bb7b7c2a_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-19_0a19a8dc0b752323d99a7ee5bb7b7c2a_icedid
Size

2.3MB
MD5

0a19a8dc0b752323d99a7ee5bb7b7c2a
SHA1

25a50e2f3556b931c961653b2db92ecf1939a250
SHA256

51c3fb9353b0f2836ef4266bfef52563e3ac13f71773ce57c1cc77d094ec2be9
SHA512

01f9169080a335985ea91c7777c5057c5b86e43297731bceb08ee8a01b39f399fe62eea0ab74be938dd9e1a64f06fc894c24d929fb5ec3dfdbdbe016955c400c
SSDEEP

49152:YHbNsI+dZZZh7/fxcDpowyW0+kLIesFIyFMEGwjK3n2sN752sN7i2sN7K2sN7y2b:YJsTZx7/fOowyWbkLIhIyFMEGwjK32sL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-19_0a19a8dc0b752323d99a7ee5bb7b7c2a_icedid

Files

2024-02-19_0a19a8dc0b752323d99a7ee5bb7b7c2a_icedid
.exe windows:6 windows x86 arch:x86

413885d3afedb7b9f192b55657800b39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
HeapQueryInformation
IsValidCodePage
GetStringTypeW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetConsoleCP
GetConsoleMode
GetStdHandle
SetFilePointerEx
GetTimeZoneInformation
CreateFileW
ReadConsoleW
ExitThread
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCurrentDirectoryW
GetDateFormatW
GetTimeFormatW
LCMapStringW
WriteConsoleW
OutputDebugStringW
SetEnvironmentVariableA
LoadResource
LockResource
CreateThread
VirtualQuery
VirtualAlloc
SizeofResource
GetSystemInfo
FindResourceW
WideCharToMultiByte
GetDriveTypeW
FindFirstFileExW
GetCommandLineA
AreFileApisANSI
GetVersionExA
FreeLibrary
GetModuleFileNameA
GetProcAddress
LoadLibraryA
MultiByteToWideChar
CreateFileA
FileTimeToLocalFileTime
GetFileInformationByHandle
CloseHandle
GetCurrentProcess
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetCurrentDirectoryA
DeleteFileA
FindClose
FindFirstFileA
GetFullPathNameA
GetFullPathNameW
GetPrivateProfileStringA
WritePrivateProfileStringA
WritePrivateProfileSectionA
GetCPInfo
DecodePointer
GetModuleHandleExW
ExitProcess
GetSystemTimeAsFileTime
PeekNamedPipe
GetFileType
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwind
FindResourceExW
GetWindowsDirectoryA
VirtualProtect
GetACP
SearchPathA
GetProfileIntA
GetTickCount
Sleep
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetPrivateProfileIntA
GetCurrentThread
GetVolumeInformationA
lstrcmpiA
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFileSize
RaiseException
GetLastError
FlushFileBuffers
lstrcpyA
GetCurrentProcessId
ResumeThread
SetThreadPriority
WaitForSingleObject
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
FreeResource
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
lstrcmpA
GetModuleHandleA
GetFileTime
GetFileSizeEx
GetFileAttributesExA
CopyFileA
MulDiv
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
FormatMessageA
LocalFree
InitializeCriticalSectionAndSpinCount
GetFileAttributesA
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc

user32

GetWindowRgn
SubtractRect
InvertRect
HideCaret
DestroyCursor
MapVirtualKeyExA
IsCharLowerA
MapDialogRect
CreateMenu
GetUpdateRect
GetDoubleClickTime
IsClipboardFormatAvailable
GetIconInfo
GetNextDlgGroupItem
WaitMessage
PostThreadMessageA
TranslateMDISysAccel
DefMDIChildProcA
DrawMenuBar
GetComboBoxInfo
FrameRect
CopyIcon
CopyAcceleratorTableA
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
LockWindowUpdate
CharUpperBuffA
LoadImageW
EmptyClipboard
SetClipboardData
SetRect
SetCursorPos
SetParent
SetClassLongA
DestroyAcceleratorTable
ModifyMenuA
DrawIconEx
DrawFocusRect
DrawStateA
DrawEdge
RegisterClipboardFormatA
EnumDisplayMonitors
SetLayeredWindowAttributes
ReuseDDElParam
UnpackDDElParam
LoadImageA
DestroyIcon
InsertMenuItemA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
CopyImage
RealChildWindowFromPoint
GetSysColorBrush
ShowOwnedPopups
PostQuitMessage
GetDesktopWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
CheckDlgButton
ShowWindow
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
SendDlgItemMessageA
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
GetMenuItemInfoA
DrawFrameControl
NotifyWinEvent
LoadCursorW
MessageBeep
SetWindowRgn
DeleteMenu
EnableMenuItem
CheckMenuItem
GetSystemMenu
CharUpperA
IsZoomed
TrackMouseEvent
MonitorFromPoint
SystemParametersInfoA
LoadCursorA
IsRectEmpty
OffsetRect
UnionRect
IntersectRect
InflateRect
SetRectEmpty
SetCursor
EnableScrollBar
DestroyMenu
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetAsyncKeyState
UpdateLayeredWindow
SendMessageA
IsChild
OpenClipboard
CloseClipboard
IsMenu
MapVirtualKeyA
GetKeyNameTextA
GetWindowThreadProcessId
IsWindowEnabled
GetCursorPos
GetActiveWindow
TranslateMessage
GetMessageA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetParent
GetClassLongA
EqualRect
CopyRect
MapWindowPoints
MessageBoxA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
DefFrameProcA
CallWindowProcA
IsWindow
MoveWindow
IsWindowVisible
SetFocus
GetFocus
GetSystemMetrics
GetWindowDC
ReleaseDC
InvalidateRect
GetWindowRect
ClientToScreen
WindowFromPoint
PtInRect
GetWindowLongA
SetWindowLongA
GetClassNameA
GetWindow
GetDlgItem
EnableWindow
GetSysColor
LoadMenuA
LoadMenuW
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
UnregisterClassA
IsIconic
DrawIcon
GetClientRect
LoadIconW
GetDC
InsertMenuA
AppendMenuA
RemoveMenu
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
BeginPaint
EndPaint
ScreenToClient
FillRect
RegisterWindowMessageA
DispatchMessageA
PeekMessageA
GetMessagePos
GetMessageTime
PostMessageA
DefWindowProcA

gdi32

SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateDIBSection
CreateRoundRectRgn
CreateFontIndirectA
CombineRgn
SetRectRgn
DPtoLP
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetTextMetricsA
GetTextColor
CreateEllipticRgn
Ellipse
GetBkColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
SetPixel
GetRgnBox
OffsetRgn
RealizePalette
StretchBlt
ExtTextOutA
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
RoundRect
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
EnumFontFamiliesExA
GetTextFaceA
SetPixelV
TextOutA
MoveToEx
SetTextAlign
SetTextColor
SaveDC
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SetDIBColorTable
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
DeleteDC
GetTextExtentPoint32A
CopyMetaFileA
CreateDCA
GetDeviceCaps
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteObject
Escape
ExcludeClipRect
GetClipBox
SelectClipRgn

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumValueA
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHGetDesktopFolder
SHGetFileInfoA
DragQueryFileA
DragFinish
ShellExecuteA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHAppBarMessage

shlwapi

PathFindExtensionA
PathFindFileNameA
StrFormatKBSizeA
PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA

uxtheme

DrawThemeText
GetWindowTheme
GetThemeSysColor
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
DrawThemeParentBackground
OpenThemeData
CloseThemeData

ole32

CoDisconnectObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoInitialize
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
DoDragDrop
CreateStreamOnHGlobal
OleGetClipboard
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
CoTaskMemFree
RevokeDragDrop
RegisterDragDrop

oleaut32

VariantChangeType
SysAllocStringByteLen
SysAllocStringLen
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
VariantCopy
VarBstrFromDate
VariantInit
SysFreeString
SysAllocString

gdiplus

GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdiplusStartup
GdiplusShutdown
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdipSetInterpolationMode

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 347KB - Virtual size: 346KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 568KB - Virtual size: 630KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

413885d3afedb7b9f192b55657800b39

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 347KB - Virtual size: 346KB

.data Size: 568KB - Virtual size: 630KB

.rsrc Size: 77KB - Virtual size: 77KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 347KB - Virtual size: 346KB

.data
Size: 568KB - Virtual size: 630KB

.rsrc
Size: 77KB - Virtual size: 77KB