2024-03-10_77af5da2a1a1752edfe37947f871ccfb_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-10_77af5da2a1a1752edfe37947f871ccfb_icedid
Size

272KB
MD5

77af5da2a1a1752edfe37947f871ccfb
SHA1

caba8bd3ae855429e04c61b7499ecb7da8b45b15
SHA256

3cb546af660588dd6cb30f1d04e9515387aaf8dfcff4aae7a8b22ae463687e8c
SHA512

fffcd33fda8ffc92ef71be6e6fd7eab9956a0c13d14dca8b4c2ac81f9bc1fe4c353b97b01bd1f3404ffadfc916b0aba1711fee03254bfadf04f50c57e8bddc23
SSDEEP

6144:fqeb/9JJTGV1AIBA9DYOaOvtqnjG4DKE:fRbVJJT2BCzaqtwp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-10_77af5da2a1a1752edfe37947f871ccfb_icedid

Files

2024-03-10_77af5da2a1a1752edfe37947f871ccfb_icedid
.exe windows:4 windows x86 arch:x86

1c26013e1459002535ff1fbb032acb2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Prjs2003\LookALF\Release\LookALF.pdb

Imports

kernel32

GetSystemInfo
SetThreadPriority
GlobalUnlock
Sleep
MultiByteToWideChar
MoveFileW
CreateThread
GetUserDefaultUILanguage
GetCurrentDirectoryW
GetModuleFileNameW
CopyFileW
LoadLibraryExW
FreeLibrary
LocalFileTimeToFileTime
GetSystemTime
DeleteFileW
CloseHandle
GetFileTime
CreateFileMappingW
GetLocalTime
GlobalFree
GetLastError
CreateFileW
GetTimeZoneInformation
ReadFile
FileTimeToSystemTime
WideCharToMultiByte
GlobalAlloc
WriteFile
SetFileTime
GlobalLock
SystemTimeToFileTime
UnmapViewOfFile
MapViewOfFile
SetFilePointer
GetFileSize
InterlockedExchange
GetACP
GetLocaleInfoA
LCMapStringW
LCMapStringA
IsBadCodePtr
IsBadReadPtr
SetStdHandle
CreateFileA
GetOEMCP
lstrcpynW
SetLastError
RaiseException
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceW
lstrlenW
LocalAlloc
LocalFree
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedDecrement
FormatMessageW
lstrcpyW
GetCurrentThreadId
InterlockedIncrement
GetVersion
GetVersionExA
GetProcAddress
GetModuleHandleW
lstrcmpW
lstrcatW
LoadLibraryA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GlobalFlags
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess
RtlUnwind
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
VirtualQuery
TerminateProcess
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetCPInfo
GetStringTypeA
GetStringTypeW

user32

MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetForegroundWindow
RemovePropW
GetPropW
SetPropW
GetClassNameW
GetClassLongW
GetClassInfoExW
GetCapture
WinHelpW
RegisterWindowMessageW
ClientToScreen
TabbedTextOutW
DrawTextExW
GrayStringW
GetClassInfoW
PostMessageW
AdjustWindowRectEx
FillRect
SetForegroundWindow
GetSubMenu
DeleteMenu
GetParent
SetScrollRange
GetWindowPlacement
SetWindowPos
SetScrollPos
CreatePopupMenu
DefMDIChildProcW
InsertMenuW
SetTimer
SetActiveWindow
GetMessageW
PostQuitMessage
KillTimer
DialogBoxParamW
LoadCursorW
EnumWindows
TranslateMessage
GetMenu
LoadIconW
LoadMenuW
BringWindowToTop
EnableMenuItem
MessageBoxW
RegisterClassW
DestroyMenu
DefWindowProcW
DefFrameProcW
DispatchMessageW
GetWindowTextW
GetDC
SetWindowLongW
CreateWindowExW
DestroyWindow
OffsetRect
GetDlgItemInt
SetDlgItemInt
GetWindowLongW
GetDlgItem
SendDlgItemMessageW
GetDlgItemTextW
SetDlgItemTextW
EnableWindow
InvalidateRect
wsprintfW
PeekMessageW
CreateDialogParamW
GetDlgCtrlID
UnregisterClassW
IsWindowEnabled
GetLastActivePopup
SendMessageW
SetWindowTextW
EndPaint
GetWindowRect
LoadImageW
DrawTextW
GetClientRect
BeginPaint
EndDialog
ShowWindow
GetSystemMetrics
UpdateWindow
MoveWindow
LoadStringW
CallWindowProcW
UnhookWindowsHookEx
GetMenuItemCount
GetMenuItemID
GetMenuState
ValidateRect
GetKeyState
CallNextHookEx
SetWindowsHookExW
GetSysColorBrush
GetSysColor
ReleaseDC
LoadBitmapW
GetMenuCheckMarkDimensions
SystemParametersInfoA
IsIconic
CopyRect
PtInRect
GetWindow
SetMenuItemBitmaps
GetFocus
ModifyMenuW
CheckMenuItem
AppendMenuW

gdi32

EndDoc
SetTextColor
SetBkMode
SelectClipRgn
CreateRectRgn
Polyline
TextOutW
GetTextExtentPoint32W
CreateFontW
CreateSolidBrush
StartDocW
LineTo
Polygon
Ellipse
CreatePen
GetStockObject
BitBlt
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
SetMapMode
GetMapMode
GetObjectW
ExtTextOutW
Rectangle
GetDeviceCaps
StartPage
EndPage
SetBkColor
GetClipBox
CreateBitmap
MoveToEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
RectVisible
PtVisible
RestoreDC
SaveDC

comdlg32

GetSaveFileNameW
ChooseColorW
PrintDlgW
GetOpenFileNameW

comctl32

ord17
CreateStatusWindowW
InitCommonControlsEx

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

oleaut32

VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c26013e1459002535ff1fbb032acb2c

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

comctl32

oleacc

winspool.drv

oleaut32

Sections

.text Size: 188KB - Virtual size: 185KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 8KB - Virtual size: 67KB

.rsrc Size: 44KB - Virtual size: 41KB

.text
Size: 188KB - Virtual size: 185KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 8KB - Virtual size: 67KB

.rsrc
Size: 44KB - Virtual size: 41KB