2024-02-23_ea2688f74b684ed653a22519072a3336_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-02-23_ea2688f74b684ed653a22519072a3336_icedid
Size

696KB
MD5

ea2688f74b684ed653a22519072a3336
SHA1

996c3f99cd59627c5c57fe909834933c4153eb31
SHA256

d64d7e167c5fb457f163ba7786cc4fa2e5ebd1ea774da9abba48fe31fd5f07cf
SHA512

fa6dd9468eb18cb44ddae48f68f1ae1fde5efc3dbf7dac89ea1bde4478d31c40be362d61b9588ccacd6843bd31264ae29de8880105f2f503810d356e852e1e13
SSDEEP

12288:B85OxY4iPC6WZUysanxM3gAfJjOzcFZJ0ITawD0XnvoV2c+CEeP63/W2RBtzJEPq:B8YxAC6WtKbjOYH06atXn/1n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-23_ea2688f74b684ed653a22519072a3336_icedid

Files

2024-02-23_ea2688f74b684ed653a22519072a3336_icedid
.exe windows:4 windows x86 arch:x86

6fce0323704268a6cd48da8dd045aa34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Projects\FSAIApprSpeed\FSAIApprSpeedEXE\Release\FSAIApprSpeedEXE.pdb

Imports

kernel32

GetFileTime
SetErrorMode
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
ExitProcess
IsBadReadPtr
GetTimeFormatA
GetDateFormatA
ExitThread
CreateThread
HeapReAlloc
TerminateProcess
GetStartupInfoA
SetStdHandle
GetFileType
HeapSize
HeapDestroy
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadCodePtr
SetEnvironmentVariableA
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
GlobalHandle
LocalAlloc
InterlockedIncrement
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetProfileIntA
SuspendThread
ResumeThread
GetCurrentThread
GetModuleFileNameA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
lstrcmpA
WritePrivateProfileStringA
GetPrivateProfileIntA
InterlockedDecrement
FreeResource
GlobalGetAtomNameA
GlobalFindAtomA
LoadLibraryA
FreeLibrary
lstrcatA
lstrcmpW
GetModuleHandleA
GetProcAddress
GlobalFree
CopyFileA
GlobalAlloc
FormatMessageA
CreateFileW
CreateFileA
TlsAlloc
TlsGetValue
TlsSetValue
GetSystemTimeAsFileTime
GetSystemTime
GetFullPathNameW
GetFullPathNameA
UnlockFile
LockFileEx
LockFile
GetFileSize
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetTempPathW
GetTempPathA
GetFileAttributesW
GetFileAttributesA
DeleteFileW
DeleteFileA
SetLastError
LocalFree
GetTickCount
CreateEventA
ResetEvent
SetEvent
WaitForSingleObject
FindResourceExA
GetCurrentThreadId
GetCommandLineA
lstrcpynA
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
GetCurrentProcessId
GlobalAddAtomA
CreateFileMappingA
MapViewOfFile
GlobalDeleteAtom
UnmapViewOfFile
CloseHandle
SetThreadPriority
EnterCriticalSection
LeaveCriticalSection
Sleep
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetProcessHeap
GetLocaleInfoA
GetACP
HeapCreate
InterlockedExchange

user32

CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
GetMessageTime
PeekMessageA
MapWindowPoints
GetScrollPos
SetForegroundWindow
ShowScrollBar
UpdateWindow
GetMenu
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
RegisterClassA
SetWindowPlacement
CallWindowProcA
GetWindowTextLengthA
GetWindowTextA
SetFocus
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongA
SetWindowTextA
GetWindowLongA
IsDialogMessageA
SendDlgItemMessageA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetDoubleClickTime
WindowFromPoint
ClientToScreen
PostThreadMessageA
ReleaseCapture
ClipCursor
GetCursorPos
GetMessagePos
IsClipboardFormatAvailable
GetClassInfoA
DefWindowProcA
GrayStringA
RegisterClipboardFormatA
TabbedTextOutA
SetCapture
GetCapture
ScreenToClient
InvertRect
IntersectRect
PostMessageA
TranslateMessage
DispatchMessageA
DrawFrameControl
PtInRect
IsRectEmpty
DrawTextA
DrawEdge
FrameRect
FillRect
InflateRect
SetRect
SystemParametersInfoA
GetFocus
InvalidateRect
ReleaseDC
GetDC
FindWindowExA
RegisterWindowMessageA
wsprintfA
SendMessageTimeoutA
LoadIconA
GetSystemMetrics
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
DestroyMenu
SetWindowContextHelpId
MapDialogRect
GetMessageA
ValidateRect
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
GetDesktopWindow
LoadCursorA
GetSysColor
SetCursor
GetParent
LoadBitmapA
GetDlgItem
GetClassLongA
SetClassLongA
DeferWindowPos
GetDlgCtrlID
SetWindowPos
GetWindowPlacement
KillTimer
SetTimer
EqualRect
GetWindow
BeginDeferWindowPos
EndDeferWindowPos
EnableWindow
IsWindowVisible
GetClientRect
GetWindowRect
IsZoomed
IsIconic
OffsetRect
CopyRect
IsWindow
UnregisterClassA
CharUpperA
GetKeyState
GetSysColorBrush
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
WinHelpA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
GetTopWindow
DestroyWindow
DrawTextExA
UnhookWindowsHookEx
MessageBoxA

gdi32

CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetMapMode
LineTo
MoveToEx
DeleteObject
GetViewportExtEx
GetWindowExtEx
SelectObject
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
GetStockObject
GetMapMode
GetTextColor
GetRgnBox
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CopyMetaFileA
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontA
CreatePen
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
OffsetViewportOrgEx
GetObjectA
CreateSolidBrush

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegEnumKeyA
RegDeleteKeyA

comctl32

ImageList_AddMasked
ImageList_Draw
ord17
ImageList_GetImageInfo
ImageList_Destroy
ImageList_Create

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
ReleaseStgMedium
CoTaskMemFree
CoCreateInstance
CoInitializeEx
CoUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
RevokeDragDrop
CoLockObjectExternal
CoTaskMemAlloc
RegisterDragDrop

oleaut32

SystemTimeToVariantTime
SysFreeString
SysStringLen
SysAllocStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SysAllocString
OleCreateFontIndirect
VarUdateFromDate

Sections

.text
Size: 508KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fce0323704268a6cd48da8dd045aa34

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 508KB - Virtual size: 504KB

.rdata Size: 112KB - Virtual size: 111KB

.data Size: 16KB - Virtual size: 28KB

.rsrc Size: 56KB - Virtual size: 52KB

.text
Size: 508KB - Virtual size: 504KB

.rdata
Size: 112KB - Virtual size: 111KB

.data
Size: 16KB - Virtual size: 28KB

.rsrc
Size: 56KB - Virtual size: 52KB