2024-03-06_7d89d41bb79e0c255632d60487ea0ca2_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-06_7d89d41bb79e0c255632d60487ea0ca2_icedid
Size

1.9MB
MD5

7d89d41bb79e0c255632d60487ea0ca2
SHA1

5c8510624e4315e437026b52129e779bc90cb545
SHA256

a8fa51590eb31c747d8723cb033cce653b3fb9f9c3ea46ee95991881b027187c
SHA512

a08abd25907770560272cf4663e36b4d8e2b9d9183627fe507de12bf67dfcfb36770b3dbccf68bea3ad91bc97de45eea7843da69955655c9546cd1ee22704a17
SSDEEP

24576:c8hwBx6lScOURq2YJ7IF89+y2Uf+sZC+8J7OW/mbihk1IGYAp3WOJI4rx:cwZOUIJ7pLZgjBCYApmw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-06_7d89d41bb79e0c255632d60487ea0ca2_icedid

Files

2024-03-06_7d89d41bb79e0c255632d60487ea0ca2_icedid
.exe windows:4 windows x86 arch:x86

054731288403a8e985741464432e7115

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
RaiseException
FreeLibrary
HeapAlloc
HeapReAlloc
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
HeapFree
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetLastError
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetProcessHeap
GetCurrentProcess
TerminateProcess
RtlUnwind
GetVersion
GetProcessVersion
FindResourceA
GetModuleHandleA
GetCommandLineA
LoadLibraryA
ExitProcess
IsBadReadPtr
GetProcAddress
GetCurrentThreadId
LCMapStringA
HeapSize
MulDiv
LoadLibraryExA
lstrcpyn
DeviceIoControl
GetWindowsDirectoryA
ResumeThread
LocalSize
WriteProcessMemory
ReadProcessMemory
IsWow64Process
CreateToolhelp32Snapshot
Process32First
Process32Next
OpenProcess
VirtualQueryEx
CreateFileA
RtlFillMemory
GetTickCount
GlobalAddAtomA
Sleep
ReadFile
GetFileSize
GetDiskFreeSpaceExA
GetCurrentDirectoryA
GetLocalTime
GetUserDefaultLCID
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
DeleteFileA
WritePrivateProfileStringA
GlobalFindAtomA
LoadResource
LockResource
GlobalGetAtomNameA
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
lstrlenA
LocalAlloc
LocalFree
GlobalHandle
GlobalReAlloc
LocalReAlloc
SetErrorMode
lstrcatA
lstrcpyA
lstrcpynA
GlobalFlags
VirtualAlloc
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetFilePointer
SetUnhandledExceptionFilter
IsBadCodePtr
LCMapStringW
SetStdHandle
FlushFileBuffers
CloseHandle
RtlMoveMemory
SetErrorMode
GlobalFlags
GetCurrentThread
GetFileTime
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
lstrcmpA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
lstrcpynA
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalFree
InterlockedDecrement
InterlockedIncrement
GetProcessVersion
GetCPInfo
GetOEMCP
GetStartupInfoA
RtlUnwind
GetSystemTime
GetLocalTime
RaiseException
HeapSize
GetACP
UnhandledExceptionFilter
WideCharToMultiByte
GetTimeZoneInformation
SetLastError
MultiByteToWideChar
TerminateProcess
GetCurrentProcess
GetFileSize
SetFilePointer
GetVersion
lstrcmpiA
CreateSemaphoreA
ResumeThread
ReleaseSemaphore
EnterCriticalSection
LeaveCriticalSection
GetProfileStringA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetEnvironmentVariableA
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
WriteFile
WaitForMultipleObjects
CreateFileA
SetEvent
InterlockedExchange
FindResourceA
LoadResource
LockResource
ReadFile
lstrlenW
GetModuleFileNameA
GetCurrentThreadId
ExitProcess
GlobalSize
GlobalFree
DeleteCriticalSection
InitializeCriticalSection
lstrcatA
lstrlenA
WinExec
lstrcpyA
FindNextFileA
GlobalReAlloc
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GetUserDefaultLCID
GetFullPathNameA
FreeLibrary
LoadLibraryA
GetLastError
GetVersionExA
WritePrivateProfileStringA
CreateThread
CreateEventA
Sleep
ExpandEnvironmentStringsA
GlobalAlloc
GlobalLock
GlobalUnlock
FindFirstFileA
FindClose
CloseHandle
WaitForSingleObject
GetTickCount
GetCommandLineA
MulDiv
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
GetVolumeInformationA
SetCurrentDirectoryA
GetCurrentDirectoryA
DeleteFileA
GetFileAttributesA

user32

GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
IsWindow
SetActiveWindow
GetSysColor
MapWindowPoints
UpdateWindow
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
PostThreadMessageA
DestroyMenu
DestroyWindow
GetWindowLongA
wsprintfA
MessageBoxA
EnableWindow
SetCursor
SendMessageA
PostMessageA
PostQuitMessage
EndDialog
SetWindowLongA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
ReleaseDC
GetForegroundWindow
GetDlgItem
FindWindowA
RegisterWindowMessageA
GetAncestor
EnumWindows
SetCursorPos
GetDC
GetClassLongA
SetPropA
GetPropA
CreateWindowExA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
SetForegroundWindow
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
CreateDialogIndirectParamA
IsDialogMessageA
SendDlgItemMessageA
GrayStringA
DrawTextA
TabbedTextOutA
GetMenuItemCount
GetWindowTextA
SetWindowTextA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
RegisterClipboardFormatA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
EndDialog
DestroyWindow
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
CharUpperA
CreateDialogIndirectParamA
GetNextDlgTabItem
GetWindowPlacement
RegisterWindowMessageA
GetLastActivePopup
GetMessageTime
RemovePropA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
GetMenuItemID
GetMenuItemCount
RegisterClassA
GetScrollPos
AdjustWindowRectEx
wsprintfA
CloseClipboard
GetClipboardData
OpenClipboard
SetClipboardData
EmptyClipboard
GetSystemMetrics
GetCursorPos
MessageBoxA
SetWindowPos
SendMessageA
DestroyCursor
SetParent
IsWindow
PostMessageA
GetTopWindow
GetParent
GetFocus
GetClientRect
InvalidateRect
ValidateRect
UpdateWindow
EqualRect
GetWindowRect
SetForegroundWindow
DestroyMenu
IsChild
ReleaseDC
MapWindowPoints
IsRectEmpty
FillRect
GetDC
SetCursor
LoadCursorA
SetCursorPos
SetActiveWindow
GetSysColor
SetWindowLongA
GetWindowLongA
UnregisterClassA
EnableWindow
IsWindowVisible
OffsetRect
PtInRect
DestroyIcon
IntersectRect
InflateRect
SetRect
SetScrollPos
SetScrollRange
GetScrollRange
SetCapture
GetCapture
ReleaseCapture
SetTimer
KillTimer
WinHelpA
LoadBitmapA
CopyRect
ChildWindowFromPointEx
ScreenToClient
GetMessagePos
SetWindowRgn
DestroyAcceleratorTable
GetWindow
GetActiveWindow
SetFocus
IsIconic
PeekMessageA
SetMenu
GetMenu
DeleteMenu
GetSystemMenu
DefWindowProcA
GetClassInfoA
IsZoomed
PostQuitMessage
CopyAcceleratorTableA
GetKeyState
TranslateAcceleratorA
IsWindowEnabled
ShowWindow
SystemParametersInfoA
LoadImageA
EnumDisplaySettingsA
ClientToScreen
EnableMenuItem
GetSubMenu
GetDlgCtrlID
CreateAcceleratorTableA
CreateMenu
ModifyMenuA
AppendMenuA
CreatePopupMenu
DrawIconEx
CreateIconFromResource
CreateIconFromResourceEx
RegisterClipboardFormatA
SetRectEmpty
DispatchMessageA
GetMessageA
WindowFromPoint
DrawFocusRect
DrawEdge
DrawFrameControl
TranslateMessage
LoadIconA
DrawTextA
SetWindowsHookExA
UnhookWindowsHookEx
EnumThreadWindows
GetWindowTextLengthA
GetClassNameA
EnumChildWindows
CallNextHookEx
CallWindowProcA
GetWindowDC
GetSysColorBrush
FrameRect
GetWindowTextA
GetDesktopWindow
GetDlgItem
GetForegroundWindow
LoadStringA
SendDlgItemMessageA
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
GetMenuCheckMarkDimensions
RedrawWindow

gdi32

ScaleViewportExtEx
SetWindowExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkColor
GetStockObject
RestoreDC
SaveDC
CreateBitmap
RectVisible
ScaleWindowExtEx
GetClipBox
GetObjectA
DeleteDC
Escape
GetDeviceCaps
Rectangle
CreateFontIndirectA
SelectObject
SetBkMode
SetTextColor
TextOutA
DeleteObject
ExtTextOutA
SetViewportExtEx
PtVisible
ExcludeClipRect
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
Arc
GetTextExtentPoint32A
GetDeviceCaps
CombineRgn
PatBlt
CreatePen
SelectObject
CreateBitmap
CreateDCA
CreateCompatibleBitmap
GetPolyFillMode
GetStretchBltMode
GetROP2
GetBkColor
GetTextColor
CreateRoundRectRgn
CreateEllipticRgn
PathToRegion
EndPath
BeginPath
GetWindowOrgEx
GetViewportOrgEx
GetWindowExtEx
GetDIBits
RealizePalette
SelectPalette
StretchBlt
CreatePalette
GetSystemPaletteEntries
CreateDIBitmap
DeleteObject
SelectClipRgn
CreatePolygonRgn
GetClipRgn
SetStretchBltMode
SetPixel
CreateRectRgn
CreateRectRgnIndirect
SetBkColor
SetBkMode
LineTo
MoveToEx
SetTextColor
CreateEllipticRgnIndirect
GetTextMetricsA
ExtSelectClipRgn
GetViewportExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
RoundRect
GetCurrentObject
DPtoLP
LPtoDP
Rectangle
Ellipse
CreateCompatibleDC
GetPixel
BitBlt
StartPage
StartDocA
DeleteDC
EndDoc
EndPage
GetObjectA
GetStockObject
CreateFontIndirectA
CreateSolidBrush
FillRgn
GetBkMode

ws2_32

inet_addr
recv
ntohs
send
select
setsockopt
inet_ntoa
accept
getpeername
WSACleanup
closesocket
WSAAsyncSelect
recv
ioctlsocket
recvfrom

atl

ord42

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegCreateKeyExA
RegCloseKey

ole32

OleInitialize
OleUninitialize
CLSIDFromString
CoCreateInstance
OleRun
OleInitialize
CLSIDFromProgID
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
OleRun
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard

oleaut32

VariantChangeType
VariantInit
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElemsize
VarR8FromCy
VarR8FromBool
LoadTypeLi
LHashValOfNameSys
RegisterTypeLi
SafeArrayCreate
VariantClear
SafeArrayDestroy
SafeArrayGetUBound
SysAllocString
UnRegisterTypeLi
LHashValOfNameSys
RegisterTypeLi
SysAllocString
VariantInit
VariantCopyInd
VariantChangeType
VariantClear
LoadTypeLi

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
DocumentPropertiesA
OpenPrinterA
ClosePrinter

comctl32

ord17
_TrackMouseEvent
ImageList_GetImageCount
ImageList_SetBkColor
ord17
ImageList_Destroy
ImageList_Read
ImageList_Duplicate

oledlg

ord8

winmm

waveOutGetNumDevs
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamOpen
midiOutUnprepareHeader
waveOutOpen
waveOutClose
waveOutReset
waveOutPause
waveOutWrite
waveOutPrepareHeader
midiStreamRestart
midiStreamClose
midiOutReset
midiStreamStop
waveOutUnprepareHeader

msimg32

GradientFill

shell32

Shell_NotifyIconA
ShellExecuteA

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 196KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 556KB - Virtual size: 753KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

054731288403a8e985741464432e7115

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ws2_32

atl

advapi32

ole32

oleaut32

winspool.drv

comctl32

oledlg

winmm

msimg32

shell32

comdlg32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 196KB - Virtual size: 193KB

.data Size: 556KB - Virtual size: 753KB

.rsrc Size: 88KB - Virtual size: 86KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 196KB - Virtual size: 193KB

.data
Size: 556KB - Virtual size: 753KB

.rsrc
Size: 88KB - Virtual size: 86KB