2024-02-25_dba6cd0bb6a55a831780539dbfdecf60_floxif_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-02-25_dba6cd0bb6a55a831780539dbfdecf60_floxif_icedid
Size

2.0MB
MD5

dba6cd0bb6a55a831780539dbfdecf60
SHA1

1aa5a3675bd3ebfc2b7b32491cb75b93c2bd9fba
SHA256

3b7b188a5ac448350f0f2eb8d08cc4d22fc63abc83d3fed31564a9175742d1a8
SHA512

16cc08633818855d1d6ed8d83f32ab4f37702dd1e0f07902d8110e2990ca149223f13ba2c4e30150edb37e506398d4e8bf410386d2cbfa190ff1039d584a16e3
SSDEEP

49152:hODkpIPJHY/Hc7znsh9BaGxIFpTZmzt2im+2c7/tn:hykpIPJHY/ansh9BxxJzt2imC7V

Score

1^/10

Malware Config

Signatures

Files

2024-02-25_dba6cd0bb6a55a831780539dbfdecf60_floxif_icedid
.exe windows:5 windows x86 arch:x86

09e89a2482ce8ad9a4bbe9f7d2632996

Code Sign

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

21/05/2009, 00:00

Not After

20/05/2019, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

35:81:ea:fc:6d:c4:23:10:a5:21:ca:49:d2:9d:bc:42
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2009-2 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)09,O=VeriSign\, Inc.,C=US

Not Before

28/01/2010, 00:00

Not After

28/01/2011, 23:59

Subject

CN=Sputnikovye Telekomsistemy OOO,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Sputnikovye Telekomsistemy OOO,L=Ufa,ST=Bashkortostan,C=RU

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2c:66:ba:14:5f:8f:71:9c:cd:70:f4:f5:de:1c:6e:ba:e8:0b:b6:f5
Signer

Actual PE Digest

2c:66:ba:14:5f:8f:71:9c:cd:70:f4:f5:de:1c:6e:ba:e8:0b:b6:f5

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\Work\CoverCommander\3DTextCommander.pdb

Imports

opengl32

wglDeleteContext
wglGetProcAddress
wglGetCurrentDC
wglGetCurrentContext
glTexParameterf
glColor3f
wglCreateContext
wglMakeCurrent
glDeleteTextures
glScissor
glMatrixMode
glLoadIdentity
glFrustum
glTranslatef
glRotatef
glPushAttrib
glListBase
glCallLists
glPopAttrib
glDeleteLists
glGenLists
wglUseFontOutlinesA
glNormal3d
glTexCoord2d
glVertex3f
glScalef
glTexGeni
glTexGenfv
glClearStencil
glStencilFunc
glStencilOp
glBegin
glNormal3f
glTexCoord2f
glVertex3d
glEnd
glMultMatrixf
glClipPlane
glPushMatrix
glDisable
glColor4f
glBlendFunc
glMaterialf
glColor4d
glPopMatrix
glScaled
glAccum
glEnable
glShadeModel
glHint
glLightModelf
glMaterialfv
glLightfv
glCullFace
glViewport
glTranslated
glRotated
glClearColor
glClear
glFlush
glTexSubImage2D
glGetIntegerv
glGenTextures
glBindTexture
glTexParameteri
glTexImage2D
glPolygonMode

kernel32

SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetFullPathNameA
CreateFileA
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
UnlockFile
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
InterlockedIncrement
GetCPInfo
GetOEMCP
GetModuleHandleW
FileTimeToSystemTime
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesA
GetFileSizeEx
GetFileTime
RtlUnwind
HeapFree
Sleep
ExitProcess
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapAlloc
RaiseException
HeapReAlloc
GetCommandLineA
GetStartupInfoA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
HeapCreate
VirtualFree
GetStdHandle
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetTimeZoneInformation
SetHandleCount
GetFileType
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetProcessHeap
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
CloseHandle
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetPrivateProfileIntA
GetCurrentProcessId
GetModuleFileNameW
GlobalAlloc
FormatMessageA
LocalFree
MulDiv
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
GetCurrentDirectoryA
GetTickCount
DeleteFileA
WritePrivateProfileStringA
WritePrivateProfileStructA
GetPrivateProfileStructA
GetPrivateProfileStringA
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
GetShortPathNameA
GetModuleFileNameA
GetLastError
SetLastError
MultiByteToWideChar
lstrcpynA
FindFirstFileA
FindNextFileA
FindClose
SetCurrentDirectoryA
GetVersion
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
GetVersionExA
InterlockedDecrement
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
TlsAlloc

user32

GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
UnregisterClassA
CharUpperA
UnionRect
IsRectEmpty
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
ValidateRect
DestroyMenu
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
ShowWindow
MoveWindow
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
EnableMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
TrackPopupMenu
SetMenu
SetForegroundWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
GetScrollInfo
SetWindowPlacement
DefWindowProcA
CallWindowProcA
GetWindowPlacement
GetKeyState
SetWindowPos
WindowFromPoint
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetNextDlgTabItem
EndDialog
MessageBoxA
IsWindowEnabled
ClientToScreen
PostQuitMessage
PeekMessageA
UpdateWindow
IsZoomed
EqualRect
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetDlgItem
IsWindow
TranslateAcceleratorA
SetTimer
KillTimer
SetWindowLongA
ModifyMenuA
GetMenuState
GetMenuItemID
GetWindowTextA
EnumChildWindows
GetClassNameA
SetWindowTextA
MessageBeep
LoadCursorA
CopyIcon
IntersectRect
CloseWindow
LoadIconA
GetWindow
IsIconic
DrawMenuBar
InsertMenuA
GetMenuItemCount
CheckMenuItem
DeleteMenu
RegisterClipboardFormatA
PostThreadMessageA
MapWindowPoints
EnableWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
SendMessageA
GetDC
SetRect
GetClientRect
GetSysColor
DestroyCursor
DestroyIcon
PostMessageA
GetIconInfo
LoadImageA
GetCursorPos
ReleaseCapture
SetCursor
CopyRect
PtInRect
InflateRect
OffsetRect
FillRect
DrawStateA
DrawFocusRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
SetMenuDefaultItem
GetSubMenu
LoadMenuA
GetWindowRect
ScreenToClient
InvalidateRect
IsWindowVisible
RedrawWindow
GetActiveWindow
DrawIcon
GetDlgCtrlID
LoadAcceleratorsA
SetCapture
GetCapture
ReleaseDC
DrawFrameControl
DrawEdge
SetRectEmpty
GetSystemMetrics
GetSysColorBrush
FrameRect
GetMessagePos
SystemParametersInfoA
GetWindowLongA
GetParent
GetMenu

gdi32

Ellipse
UnrealizeObject
CreateHatchBrush
SetBrushOrgEx
LPtoDP
CombineRgn
CreateRectRgn
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetMapMode
ExcludeClipRect
Polyline
LineTo
MoveToEx
CreateFontIndirectA
Escape
ExtTextOutA
TextOutA
BitBlt
RoundRect
Polygon
RectVisible
PtVisible
CreateCompatibleDC
CreateRectRgnIndirect
CreateDIBSection
CreateSolidBrush
CreatePen
SetStretchBltMode
StretchDIBits
PatBlt
StretchBlt
GetObjectA
DeleteObject
GetStockObject
ChoosePixelFormat
SetPixelFormat
IntersectClipRect
GetRgnBox
GetTextColor
GetBkColor
GetCharWidthA
GetMapMode
SelectPalette
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
CreateFontA
SelectObject
DeleteDC
GetTextMetricsA
GetTextExtentPoint32A
Rectangle
RealizePalette
GetDeviceCaps
CreateCompatibleBitmap
CreatePalette
SelectClipRgn
EnumFontFamiliesExA

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueExA
RegCloseKey
RegSetValueExA
RegOpenKeyA
RegEnumKeyA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueA
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyExA
RegDeleteKeyA

shell32

SHGetFileInfoA
ShellExecuteA

comctl32

_TrackMouseEvent
ord17
ImageList_LoadImageA

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathRemoveFileSpecW
PathIsUNCA

oledlg

ord8

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoInitializeEx

oleaut32

VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
VariantClear
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString
SysStringLen
SysAllocStringByteLen
SysFreeString

msvfw32

ICCompressorChoose
ICCompressorFree
ord2

avifil32

AVIStreamRelease
AVIFileRelease
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVIMakeCompressedStream
AVIStreamSetFormat
AVIStreamWrite

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 561KB - Virtual size: 560KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09e89a2482ce8ad9a4bbe9f7d2632996

Code Sign

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5cCertificate

Extended Key Usages

Key Usages

35:81:ea:fc:6d:c4:23:10:a5:21:ca:49:d2:9d:bc:42Certificate

Extended Key Usages

Key Usages

2c:66:ba:14:5f:8f:71:9c:cd:70:f4:f5:de:1c:6e:ba:e8:0b:b6:f5Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

opengl32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

msvfw32

avifil32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 183KB - Virtual size: 182KB

.data Size: 53KB - Virtual size: 104KB

.rsrc Size: 561KB - Virtual size: 560KB

65:52:26:e1:b2:2e:18:e1:59:0f:29:85:ac:22:e7:5c
Certificate

35:81:ea:fc:6d:c4:23:10:a5:21:ca:49:d2:9d:bc:42
Certificate

2c:66:ba:14:5f:8f:71:9c:cd:70:f4:f5:de:1c:6e:ba:e8:0b:b6:f5
Signer

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 183KB - Virtual size: 182KB

.data
Size: 53KB - Virtual size: 104KB

.rsrc
Size: 561KB - Virtual size: 560KB