f:\winapps\ipTIME_NAS_Connect\debug\ipTIME NAS 접속기.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-02-23_beb857931c143da7664b1d6144192047_icedid.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-02-23_beb857931c143da7664b1d6144192047_icedid.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
2024-02-23_beb857931c143da7664b1d6144192047_icedid
-
Size
3.1MB
-
MD5
beb857931c143da7664b1d6144192047
-
SHA1
30d91e9d80adc7b19c28f1d7b6fbd2a593c062b1
-
SHA256
dcb42c2c050f2f2c300b301998a127eba7286ea2dd5dffa10569cfffb2fa3750
-
SHA512
9415f3bb4236f5bfc52a7ee50b5f32d221141d917b95d81558128716c0613ffbbb8d1a952b4a0a58c4de131ff437b38fd720ea875898663d7c82013fbdbe70e5
-
SSDEEP
24576:Y3G98kI171Sb4Pfw4YdonqsJW7qF11l7bzPiRIcJhLT0qtyj/rL4M0:YWGol4n5bAXUqt4rLU
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-02-23_beb857931c143da7664b1d6144192047_icedid
Files
-
2024-02-23_beb857931c143da7664b1d6144192047_icedid.exe windows:4 windows x86 arch:x86
0a8434099618166e984fea727f34d983
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
SetEnvironmentVariableA
GetConsoleOutputCP
WriteConsoleA
GetTimeZoneInformation
GetDriveTypeA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
CreateFileA
SetStdHandle
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
HeapReAlloc
SetConsoleCtrlHandler
FatalAppExitA
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
QueryPerformanceCounter
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
VirtualQuery
GetSystemInfo
VirtualAlloc
ExitProcess
GetModuleFileNameA
IsBadReadPtr
HeapValidate
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
ExitThread
CreateThread
RtlUnwind
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
GetDiskFreeSpaceW
GetTempFileNameW
FindResourceExW
SetFileAttributesW
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileAttributesW
GetCurrentDirectoryW
SystemTimeToFileTime
FileTimeToSystemTime
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedIncrement
GetProfileIntW
VirtualProtect
GetVersionExW
lstrlenA
InterlockedDecrement
GetAtomNameW
SetErrorMode
GlobalFlags
GetShortPathNameW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
GetVolumeInformationW
DeleteFileW
MoveFileW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
GetHandleInformation
FindNextFileW
FindFirstFileW
FindClose
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoW
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GetCurrentProcessId
GetModuleFileNameW
WideCharToMultiByte
GlobalSize
FormatMessageW
LocalFree
GetModuleHandleA
lstrlenW
SuspendThread
GetThreadPriority
SetThreadPriority
CompareStringW
LoadLibraryA
SetLastError
LoadLibraryW
lstrcmpW
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
GetProcAddress
GetVersionExA
lstrcpyW
GetTickCount
WinExec
SetEvent
ResetEvent
WaitForSingleObject
FreeResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
MulDiv
GlobalFree
CloseHandle
CreateEventW
CreateMutexW
GetLastError
GetWindowsDirectoryW
lstrcatW
CopyFileW
Sleep
LoadResource
LockResource
MultiByteToWideChar
SizeofResource
FindResourceW
OpenEventA
user32
DrawTextExW
DrawTextW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateW
DrawIcon
InvertRect
FrameRect
ExcludeUpdateRgn
WindowFromDC
GetSysColorBrush
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckRadioButton
CheckDlgButton
OpenIcon
CloseWindow
PostThreadMessageW
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageW
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
GetLastActivePopup
FindWindowExW
FindWindowW
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirListW
SetCapture
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRgn
ValidateRect
InvalidateRgn
GetUpdateRgn
GetUpdateRect
UpdateWindow
GetWindowDC
EndPaint
BeginPaint
ClientToScreen
BringWindowToTop
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
HiliteMenuItem
GetSystemMenu
DrawMenuBar
SetMenu
GetMenu
GetTabbedTextExtentW
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
RegisterWindowMessageW
MessageBoxW
GetMenuItemID
GetClassInfoExW
GetClassInfoW
RegisterClassW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
GetClientRect
MapWindowPoints
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetParent
GetWindow
GetCapture
WinHelpW
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetKeyState
GetDlgCtrlID
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
SetWindowLongW
SetWindowPos
OffsetRect
GetMenuState
GetMenuStringW
GetMenuItemInfoW
SetMenuItemInfoW
GetSysColor
DestroyIcon
GetMessagePos
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
TabbedTextOutW
MapDialogRect
EndDialog
GetDesktopWindow
GetActiveWindow
SetActiveWindow
IsWindow
EnableWindow
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
PeekMessageW
TranslateMessage
DispatchMessageW
PostMessageW
SendMessageW
GrayStringW
ScrollDC
CreateMenu
CreatePopupMenu
IsMenu
DeleteMenu
AppendMenuW
InvalidateRect
CopyRect
FillRect
CheckMenuItem
EnableMenuItem
SetMenuDefaultItem
GetMenuDefaultItem
DragDetect
GetMenuItemCount
UnregisterClassA
MsgWaitForMultipleObjects
PeekMessageA
IsWindowUnicode
GetMessageA
DispatchMessageA
SubtractRect
UnionRect
InflateRect
PtInRect
SetCursor
LoadCursorW
GetSystemMetrics
SetRect
ReleaseDC
GetDC
GetSubMenu
InsertMenuW
InsertMenuItemW
ModifyMenuW
RemoveMenu
LoadMenuW
LoadMenuIndirectW
SetMenuContextHelpId
GetMenuContextHelpId
CheckMenuRadioItem
PostQuitMessage
GetKeyNameTextW
MapVirtualKeyW
GetWindowThreadProcessId
GetMessageW
GetCursorPos
WaitMessage
CharUpperW
GetDialogBaseUnits
GetAsyncKeyState
SetRectEmpty
ReleaseCapture
GetClipboardFormatNameA
GetClipboardFormatNameW
UnpackDDElParam
DestroyMenu
SystemParametersInfoW
LoadAcceleratorsW
TranslateAcceleratorW
ReuseDDElParam
CharNextW
CopyAcceleratorTableW
MessageBeep
UnregisterClassW
RegisterClipboardFormatW
InSendMessage
IsClipboardFormatAvailable
IsRectEmpty
GetTabbedTextExtentA
CreateWindowExW
gdi32
CreateFontW
CreateBitmapIndirect
SetBitmapBits
GetBitmapBits
SetBitmapDimensionEx
GetBitmapDimensionEx
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
PtInRegion
RectInRegion
CreateDCW
CreateICW
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
CreateBrushIndirect
CreateFontIndirectW
GetFontLanguageInfo
GetCharacterPlacementW
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCW
GetOutlineTextMetricsW
GetCharABCWidthsW
GetFontData
GetKerningPairsW
GetGlyphOutlineW
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatW
GetCharWidthFloatW
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
CreateHatchBrush
ExtCreatePen
CreatePenIndirect
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
CreateDIBPatternBrushPt
GetCharWidthW
CreatePatternBrush
CreatePen
GetObjectType
UnrealizeObject
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
ExtTextOutW
CloseEnhMetaFile
CreateEnhMetaFileW
CloseMetaFile
CreateMetaFileW
BitBlt
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
SelectObject
DeleteObject
GetDeviceCaps
GetTextCharacterExtra
DeleteMetaFile
EnumFontFamiliesExW
StretchDIBits
CopyMetaFileW
PlayMetaFile
EnumMetaFile
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
GetClipRgn
PolyBezierTo
GetStockObject
comdlg32
GetFileTitleW
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
GetJobW
advapi32
ControlService
RegQueryValueExW
RegOpenKeyExW
QueryServiceStatus
StartServiceW
CreateServiceW
DeleteService
CloseServiceHandle
OpenServiceW
OpenSCManagerW
RegSetValueW
RegOpenKeyW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyW
SetFileSecurityW
GetFileSecurityW
SetThreadToken
RevertToSelf
OpenThreadToken
RegCloseKey
shell32
ExtractIconW
DragAcceptFiles
SHGetFileInfoW
DragFinish
DragQueryFileW
ShellExecuteW
comctl32
ImageList_GetIconSize
InitCommonControlsEx
shlwapi
PathRemoveExtensionW
PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW
oledlg
OleUIInsertObjectW
OleUIConvertW
OleUIChangeIconW
OleUIEditLinksW
OleUIUpdateLinksW
OleUIPasteSpecialW
OleUIBusyW
ole32
CreateItemMoniker
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
OleRun
CoRevokeClassObject
CoRegisterClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
StringFromGUID2
CoDisconnectObject
GetClassFile
CLSIDFromProgID
StgIsStorageILockBytes
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
CreateGenericComposite
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
OleLockRunning
OleSetContainedObject
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
CoLockObjectExternal
GetRunningObjectTable
IsAccelerator
OleTranslateAccelerator
CreateDataAdviseHolder
CreateOleAdviseHolder
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleRegGetMiscStatus
OleRegEnumVerbs
DoDragDrop
OleSetMenuDescriptor
OleGetClipboard
OleQueryLinkFromData
OleQueryCreateFromData
OleIsRunning
OleSaveToStream
WriteClassStm
OleGetIconOfClass
CoGetMalloc
CreateFileMoniker
SetConvertStg
CreateBindCtx
CoTaskMemFree
OleDuplicateData
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CLSIDFromString
GetHGlobalFromILockBytes
OleSave
OleLoad
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
OleCreate
OleCreateLinkToFile
ReleaseStgMedium
OleCreateFromFile
oleaut32
SystemTimeToVariantTime
VariantClear
VariantInit
SysFreeString
SysAllocString
VariantChangeType
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
SysStringByteLen
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
VariantCopy
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
VarBstrFromDec
VarDecFromStr
VarDateFromStr
VarBstrFromDate
OleCreateFontIndirect
LoadTypeLi
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
OleLoadPicture
ws2_32
WSAGetLastError
shutdown
listen
ioctlsocket
bind
getsockopt
setsockopt
getsockname
getpeername
connect
sendto
recvfrom
socket
select
WSACleanup
WSAAsyncSelect
send
recv
gethostbyname
closesocket
htonl
inet_addr
htons
accept
ntohs
inet_ntoa
WSAStartup
WSASetLastError
iphlpapi
GetIfTable
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 812KB - Virtual size: 808KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 796KB - Virtual size: 792KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ