Static task
static1
Behavioral task
behavioral1
Sample
2024-02-21_44281f7e12d6a0d2b1fe8fd76a0d2a4d_icedid.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-02-21_44281f7e12d6a0d2b1fe8fd76a0d2a4d_icedid.exe
Resource
win10v2004-20240221-en
General
-
Target
2024-02-21_44281f7e12d6a0d2b1fe8fd76a0d2a4d_icedid
-
Size
26KB
-
MD5
44281f7e12d6a0d2b1fe8fd76a0d2a4d
-
SHA1
c0baca3d4fa2698dae906b952a6a7b2f9743cbcc
-
SHA256
9cb1724a5caedc00b49c6905690b1e5ec5855dc83ebc4ab751e4bea0e9fc1bbe
-
SHA512
59fa08710a8e4ab1763a75cb51b6eab37d63c03231934a29faa2ca88edb6dd9ef14c39c808cdc775dc955d3c8ed9adb887d2039f7bdd035eb230c54533ea4ae4
-
SSDEEP
768:c5A1kb3vrCB8CLu79lsafQj3n/AC6/1VKs:4fWp679ljyXICj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-02-21_44281f7e12d6a0d2b1fe8fd76a0d2a4d_icedid
Files
-
2024-02-21_44281f7e12d6a0d2b1fe8fd76a0d2a4d_icedid.exe windows:5 windows x86 arch:x86
1c84f9abb785b65833cb9aa7942c260c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
shlwapi
StrToIntA
StrStrIA
msvcrt
memset
kernel32
GetSystemDirectoryW
GetProcessHeap
HeapFree
HeapAlloc
LoadLibraryA
GetCommandLineA
SetCurrentDirectoryW
Sleep
ExitProcess
CreateProcessW
GetModuleHandleA
lstrcatW
GetNativeSystemInfo
GetModuleFileNameW
GetProcAddress
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
bss Size: - Virtual size: 1KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1024B - Virtual size: 864B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 184B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ