2024-02-22_25f361ce472e3ff4e0832ffd3d0fdd6a_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-02-22_25f361ce472e3ff4e0832ffd3d0fdd6a_icedid
Size

272KB
MD5

25f361ce472e3ff4e0832ffd3d0fdd6a
SHA1

9096b742183c9092cc059fdab284b3af36688b5c
SHA256

e69c9e7ba0ff5372fa831f85ec7128b66bafc23d7f64bbd52173d0e65a18805a
SHA512

40ed246bea8aeddac21323c92da25bc15658c932f9cbb6d4bdfba0fa27a4668bc0733960ce3f057b97b8888d481a64a98b8ddf3be9375b297bc2dc578ef1b66a
SSDEEP

3072:JoORA2xwJrBCw9soFErRkcVsMKDICiPpHjT4UKAAYEnloV+kF3:7RA2WJrBviqcVsMKDe4/ArzV+E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-22_25f361ce472e3ff4e0832ffd3d0fdd6a_icedid

Files

2024-02-22_25f361ce472e3ff4e0832ffd3d0fdd6a_icedid
.exe windows:4 windows x86 arch:x86

ae6f4cd758df00df9204b367d7cdc7cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

PDB Paths

c:\Prjs2003\LookALF\Release\LookALF.pdb

Imports

kernel32

GetSystemInfo
SetThreadPriority
Sleep
GlobalUnlock
MultiByteToWideChar
MoveFileW
GetCurrentDirectoryW
CopyFileW
GetUserDefaultUILanguage
GetModuleFileNameW
LoadLibraryExW
FreeLibrary
CreateThread
LocalFileTimeToFileTime
ReadFile
SetFilePointer
GetFileSize
CreateFileMappingW
GlobalAlloc
GlobalLock
GetSystemTime
GetFileTime
FileTimeToSystemTime
SetFileTime
GlobalFree
DeleteFileW
GetLocalTime
CreateFileW
WriteFile
CloseHandle
UnmapViewOfFile
MapViewOfFile
GetLastError
SystemTimeToFileTime
GetTimeZoneInformation
WideCharToMultiByte
GetLocaleInfoA
GetACP
InterlockedExchange
LCMapStringW
LCMapStringA
IsBadCodePtr
IsBadReadPtr
CreateFileA
SetStdHandle
GetOEMCP
lstrcpynW
SetLastError
RaiseException
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceW
lstrlenW
LocalAlloc
LocalFree
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedDecrement
FormatMessageW
lstrcpyW
GetCurrentThreadId
InterlockedIncrement
GetVersion
GetVersionExA
GetProcAddress
GetModuleHandleW
lstrcmpW
lstrcatW
LoadLibraryA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GlobalFlags
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
ExitProcess
RtlUnwind
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
VirtualQuery
TerminateProcess
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
GetCPInfo
GetStringTypeA
GetStringTypeW

user32

MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetForegroundWindow
RemovePropW
GetPropW
SetPropW
GetClassNameW
GetClassLongW
GetClassInfoExW
GetCapture
WinHelpW
RegisterWindowMessageW
ClientToScreen
TabbedTextOutW
DrawTextExW
GrayStringW
GetClassInfoW
PostMessageW
AdjustWindowRectEx
FillRect
SetForegroundWindow
GetWindowPlacement
GetParent
DefMDIChildProcW
GetSubMenu
DeleteMenu
SetWindowPos
InsertMenuW
AppendMenuW
SetScrollRange
SetScrollPos
EnumWindows
LoadIconW
LoadCursorW
RegisterClassW
LoadMenuW
GetMessageW
TranslateMessage
DispatchMessageW
DestroyMenu
PostQuitMessage
DialogBoxParamW
MessageBoxW
SetTimer
BringWindowToTop
SetActiveWindow
GetMenu
EnableMenuItem
DefWindowProcW
DefFrameProcW
KillTimer
GetWindowTextW
SetWindowLongW
CreateWindowExW
GetDC
DestroyWindow
OffsetRect
SetDlgItemInt
GetWindowLongW
GetDlgItemInt
GetDlgItemTextW
SendDlgItemMessageW
GetDlgItem
EnableWindow
SetDlgItemTextW
InvalidateRect
wsprintfW
CreateDialogParamW
SetWindowTextW
GetDlgCtrlID
UnregisterClassW
IsWindowEnabled
GetLastActivePopup
PeekMessageW
SendMessageW
LoadImageW
GetClientRect
GetWindowRect
GetSystemMetrics
MoveWindow
ShowWindow
UpdateWindow
EndDialog
BeginPaint
DrawTextW
EndPaint
LoadStringW
CallWindowProcW
UnhookWindowsHookEx
GetMenuItemCount
GetMenuItemID
GetMenuState
ValidateRect
GetKeyState
CallNextHookEx
SetWindowsHookExW
GetSysColorBrush
GetSysColor
ReleaseDC
LoadBitmapW
GetMenuCheckMarkDimensions
SystemParametersInfoA
IsIconic
CopyRect
PtInRect
GetWindow
SetMenuItemBitmaps
GetFocus
ModifyMenuW
CheckMenuItem
CreatePopupMenu

gdi32

Rectangle
CreateRectRgn
SelectClipRgn
Polyline
SetBkMode
SetTextColor
TextOutW
GetTextExtentPoint32W
CreateFontW
CreateSolidBrush
EndDoc
MoveToEx
LineTo
GetStockObject
Polygon
Ellipse
GetObjectW
DeleteObject
CreateCompatibleDC
GetMapMode
SetMapMode
SelectObject
BitBlt
DeleteDC
ExtTextOutW
EndPage
StartPage
StartDocW
GetDeviceCaps
SetBkColor
GetClipBox
CreateBitmap
CreatePen
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
RectVisible
PtVisible
RestoreDC
SaveDC

comdlg32

GetSaveFileNameW
GetOpenFileNameW
PrintDlgW
ChooseColorW

comctl32

ord17
CreateStatusWindowW
InitCommonControlsEx

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

oleaut32

VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 188KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae6f4cd758df00df9204b367d7cdc7cc

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

comctl32

oleacc

winspool.drv

oleaut32

Sections

.text Size: 188KB - Virtual size: 184KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 8KB - Virtual size: 67KB

.rsrc Size: 44KB - Virtual size: 41KB

.text
Size: 188KB - Virtual size: 184KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 8KB - Virtual size: 67KB

.rsrc
Size: 44KB - Virtual size: 41KB