2024-03-10_fd3bbca715281499a8ed6e4cf44ea80f_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-10_fd3bbca715281499a8ed6e4cf44ea80f_icedid
Size

608KB
MD5

fd3bbca715281499a8ed6e4cf44ea80f
SHA1

ba6e78be4a3ee50394844884c123c2b2be17a0dc
SHA256

fd19b77bd1e5a7b7839bc58a43b7d72469c3b5af73f4526f9c9c7b7899c755c6
SHA512

0030541a8a5f82a34f1c9eaf5a2871deff2a28c898f153cd077343f02644be8f2cd1a6cd7cfd6d94cca5ea72da4ceda52d0c725c0c5517a5be5706b12e995899
SSDEEP

12288:5oW3acsGDFjTRtxtTYBhmmj1luR4V4c6/wFtctC5s:nacsGDhTRtxumE1lua4c62c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-10_fd3bbca715281499a8ed6e4cf44ea80f_icedid

Files

2024-03-10_fd3bbca715281499a8ed6e4cf44ea80f_icedid
.exe windows:4 windows x86 arch:x86

fcfebdd7e7f83ef56d86ed8caafc1882

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
GetDateFormatA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapReAlloc
ExitThread
CreateThread
SetStdHandle
GetFileType
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStringTypeA
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
HeapAlloc
RtlUnwind
HeapFree
GetTickCount
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
GlobalFlags
SetErrorMode
GetShortPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
MoveFileA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
InterlockedIncrement
LocalLock
LocalUnlock
ReleaseSemaphore
CreateSemaphoreA
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
SetThreadPriority
GlobalAddAtomA
GlobalFindAtomA
lstrcatA
lstrcmpW
GetCurrentThread
GetCurrentThreadId
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
LoadLibraryA
FreeResource
GetModuleFileNameA
GetFileTime
GetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
lstrcpyA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
InterlockedDecrement
SetLastError
MulDiv
lstrcpynA
_hread
GlobalReAlloc
_llseek
_lread
_lwrite
_lclose
LocalAlloc
GlobalHandle
GetPrivateProfileIntA
GetStringTypeExA
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
WriteFile
CloseHandle
GetFileSize
SetFilePointer
ReadFile
GlobalAlloc
GlobalLock
GlobalFree
DeleteFileA
GetTempPathA
CreateFileA
GlobalUnlock
LeaveCriticalSection
EnterCriticalSection
Sleep
GetLocalTime
GetLastError
ResumeThread
OpenFile
GlobalGetAtomNameA
FormatMessageA
LocalFree
GetWindowsDirectoryA
WritePrivateProfileStringA
MultiByteToWideChar
GetDriveTypeA
CreateDirectoryA
GetPrivateProfileStringA
GetUserDefaultLCID
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
WideCharToMultiByte
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetStringTypeW
InterlockedExchange

user32

DestroyIcon
GetMenuItemInfoA
InflateRect
GetSysColorBrush
WindowFromPoint
KillTimer
SetParent
GetSystemMenu
DeleteMenu
IsRectEmpty
IsZoomed
GetTabbedTextExtentA
SetRect
MessageBeep
IsClipboardFormatAvailable
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
LoadMenuA
DestroyMenu
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsA
InvalidateRect
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
TranslateAcceleratorA
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
GetCursorPos
ShowOwnedPopups
SetCursor
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
CharNextA
IsChild
GetWindowTextLengthA
GetWindowTextA
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetKeyState
SetForegroundWindow
IsWindowVisible
GetClientRect
GetMenu
GetSysColor
AdjustWindowRectEx
ScreenToClient
UnregisterClassA
wsprintfA
MessageBoxA
SendMessageA
RegisterWindowMessageA
UpdateWindow
EnableWindow
RegisterClassA
LoadIconA
LoadCursorA
CharUpperA
OemToCharA
IsWindow
ValidateRect
PeekMessageA
PostMessageA
ReleaseDC
GetDC
GetForegroundWindow
PostThreadMessageA
PostQuitMessage
GetClassNameA
SetTimer
EqualRect
DeferWindowPos
GetClassInfoA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
CopyAcceleratorTableA
InvalidateRgn
SetCapture
GetNextDlgGroupItem
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
GetDesktopWindow
GetActiveWindow
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
SetFocus
GetSubMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
UnhookWindowsHookEx
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
EndDialog
GetNextDlgTabItem

gdi32

BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetWindowExtEx
CreatePatternBrush
CreatePen
CreateSolidBrush
CreateHatchBrush
DPtoLP
GetCharWidthA
CreateFontA
CreateRectRgnIndirect
GetRgnBox
PatBlt
SetRectRgn
CombineRgn
GetMapMode
AbortDoc
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
ExtSelectClipRgn
SetAbortProc
GetStockObject
GetNearestPaletteIndex
GetObjectA
GetPaletteEntries
CreatePalette
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
SelectObject
SelectPalette
DeleteObject
DeleteDC
SetDIBits
EndDoc
EndPage
StartPage
StartDocA
ResetDCA
GetTextMetricsA
GetTextAlign
GetTextExtentPoint32A
StretchBlt
RoundRect
Rectangle
Ellipse
GetTextColor
GetROP2
GetBkMode
GetBkColor
RealizePalette
GetDeviceCaps
CreateCompatibleDC
CreateDCA
CreateCompatibleBitmap
CreateFontIndirectA
EnumFontFamiliesExA
SetTextColor

comdlg32

GetOpenFileNameA
GetSaveFileNameA
FindTextA
ReplaceTextA
CommDlgExtendedError
PrintDlgA
GetFileTitleA

winspool.drv

GetPrinterA
WritePrinter
GetJobA
SetJobA
StartDocPrinterA
StartPagePrinter
EndPagePrinter
ClosePrinter
DocumentPropertiesA
OpenPrinterA
DeviceCapabilitiesA
EndDocPrinter

advapi32

GetFileSecurityA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegSetValueA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
RegCloseKey
SetFileSecurityA

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA
SHGetSpecialFolderPathA

comctl32

ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoInitializeEx
CoUninitialize
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID

oleaut32

SysStringLen
SysAllocStringLen
VariantInit
SysFreeString
VariantClear
SysAllocStringByteLen
VariantChangeType
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect

Sections

.text
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcfebdd7e7f83ef56d86ed8caafc1882

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 456KB - Virtual size: 455KB

.rdata Size: 92KB - Virtual size: 88KB

.data Size: 24KB - Virtual size: 106KB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 456KB - Virtual size: 455KB

.rdata
Size: 92KB - Virtual size: 88KB

.data
Size: 24KB - Virtual size: 106KB

.rsrc
Size: 32KB - Virtual size: 29KB