2024-02-24_43c917cdfc0d191eb34d8cf556730c02_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-02-24_43c917cdfc0d191eb34d8cf556730c02_icedid
Size

360KB
MD5

43c917cdfc0d191eb34d8cf556730c02
SHA1

f78d8af79e6ae31635b55291a2faa38da06d3c26
SHA256

0b691e94a973223738dafac019d1f5bd3244711b8eab96bb374e5ed2f8e6c647
SHA512

0d944f4701065d10a59717cc4edcbc6452196b24176a456d4e13118ded80b8fda64850a5b58453c4c679733de9c010b91ed8acfe5156b9853d8bd28ffb8f1792
SSDEEP

3072:/dSXZXjEmPBMQ1h0Oa4ZCtvJ0B4bLRlhaypj2:uXrqkwaoqoFJh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-02-24_43c917cdfc0d191eb34d8cf556730c02_icedid

Files

2024-02-24_43c917cdfc0d191eb34d8cf556730c02_icedid
.exe windows:4 windows x86 arch:x86

7903b5f0ad4a5d7f602e17998fad189f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

sysinst

?Register_CCH_COMs_New@@YGHDPAD0@Z

kernel32

lstrcatA
GetTempPathA
GetTempFileNameA
GlobalAlloc
GlobalFree
WinExec
GetPrivateProfileStringA
lstrcmpA
CreateMutexA
CreateProcessA
WaitForSingleObject
LocalAlloc
LocalFree
FindResourceA
LoadResource
LockResource
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalMemoryStatus
GetModuleFileNameA
lstrcpyA
lstrcpynA
FormatMessageA
SizeofResource
SetLastError
RaiseException
InitializeCriticalSection
FindFirstFileA
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCurrentThreadId
GetModuleHandleA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCPInfo
GetOEMCP
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
GetFileAttributesA
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
HeapSize
TerminateProcess
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FindClose
CreateFileA
LoadLibraryA
CloseHandle
FreeLibrary
lstrlenA
lstrcmpiA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetProcAddress
DeleteCriticalSection

user32

MapWindowPoints
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
GetForegroundWindow
RemovePropA
GetPropA
SetPropA
GetClassInfoExA
GetClassLongA
GetCapture
WinHelpA
RegisterWindowMessageA
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
DestroyMenu
GetClientRect
GetMenu
PostMessageA
AdjustWindowRectEx
GetClassInfoA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowPos
SetWindowLongA
GetDlgItem
SetWindowsHookExA
CallNextHookEx
GetKeyState
ValidateRect
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetFocus
SetWindowTextA
GetClassNameA
GetParent
GetLastActivePopup
IsWindowEnabled
UnhookWindowsHookEx
GetDC
CharUpperA
DefWindowProcA
PostQuitMessage
KillTimer
TranslateMessage
ReleaseDC
GetSysColor
UnregisterClassA
GetMenuState
GetMenuItemID
GetMenuItemCount
DispatchMessageA
GetMessageA
RegisterClassA
LoadCursorA
LoadIconA
wsprintfA
GetWindowLongA
MessageBoxA
EndDialog
WaitForInputIdle
SetTimer
CreateWindowExA
GetSystemMetrics
ShowWindow
IsZoomed
SetForegroundWindow
GetWindowTextA
FindWindowA
GetSubMenu
EnableWindow
BringWindowToTop
PeekMessageA
SendMessageA
BeginPaint
EndPaint
SetCursor
DialogBoxParamA
SetRect
GetSysColorBrush

gdi32

ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SelectPalette
RealizePalette
CreateCompatibleDC
CreateBitmap
GetClipBox
SetBkColor
SaveDC
RestoreDC
SetMapMode
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
GetStockObject
CreateFontA
GetDeviceCaps
CreatePalette
DeleteObject
ExtTextOutA
SetBkMode
SetTextAlign
SetTextColor
SelectObject
DeleteDC
BitBlt
SetDIBits
CreateCompatibleBitmap

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA

comctl32

ord17

oleacc

CreateStdAccessibleObject
LresultFromObject

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

oleaut32

VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7903b5f0ad4a5d7f602e17998fad189f

Headers

File Characteristics

Imports

sysinst

kernel32

user32

gdi32

advapi32

comctl32

oleacc

winspool.drv

oleaut32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 8KB - Virtual size: 19KB

.rsrc Size: 248KB - Virtual size: 244KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 8KB - Virtual size: 19KB

.rsrc
Size: 248KB - Virtual size: 244KB