2024-03-15_bf27ff1351418f2a8dca43b8493ac4a5_floxif_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-15_bf27ff1351418f2a8dca43b8493ac4a5_floxif_icedid
Size

2.1MB
MD5

bf27ff1351418f2a8dca43b8493ac4a5
SHA1

3a97442ee067b769488dbe2d77eb834a893e291e
SHA256

3484e7a0704d8b0caef75d6e2dcafe265c92ac5b531e90b34b13a6d34e4861ed
SHA512

40a2c5433f1888e1a542c0a2d34e0ee7a59edac53b03f35e0968de837f5234e433fc7354176febebffb1bb8086c76100bcc5f1bb301372d4d5c2d91c3338bbee
SSDEEP

49152:ZTL2NuiNAMdh44P+ORRpCsK3iRRr3VaFGC+Cf3CmFwXaLFxS0q+6xHN2Vgw0OM33:4NJd24P+O5G32Rr3Vajzf3bwXaLFxS0g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-03-15_bf27ff1351418f2a8dca43b8493ac4a5_floxif_icedid

Files

2024-03-15_bf27ff1351418f2a8dca43b8493ac4a5_floxif_icedid
.exe windows:5 windows x86 arch:x86

d16402272eaa4a876b4b8832f4343628

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\11_NewGame\07. 손오공\Son_57_Release_뱅크패스트수정\Game\손오공_57.pdb

Imports

d3d9

Direct3DCreate9

dsound

ord11

d3dx9_43

D3DXCreateTextureFromFileA
D3DXCompileShader
D3DXCreateTextureFromFileExA
D3DXGetImageInfoFromFileInMemory
D3DXCreateTextureFromFileInMemoryEx
D3DXCreateFontA
D3DXGetImageInfoFromFileA

dinput8

DirectInput8Create

winmm

PlaySoundA
timeGetTime
timeBeginPeriod
mmioClose
mmioOpenA
mmioAscend
mmioRead
mmioDescend
mmioWrite
mmioAdvance
mmioSetInfo
mmioSeek
mmioCreateChunk
mmioGetInfo

kernel32

GetModuleFileNameA
FormatMessageA
GetModuleHandleA
SetFilePointer
FindResourceA
WideCharToMultiByte
VirtualQuery
GetCurrentThread
IsBadStringPtrA
MultiByteToWideChar
LoadResource
LockResource
SizeofResource
lstrlenA
MulDiv
lstrlenW
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
CopyFileA
GlobalFree
SetLastError
GetProcAddress
CompareStringA
GetModuleHandleW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
DeactivateActCtx
ReleaseActCtx
ActivateActCtx
FreeLibrary
GetCurrentProcessId
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalGetAtomNameA
lstrcmpA
FileTimeToSystemTime
lstrcmpiA
LoadLibraryA
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
GlobalAddAtomA
GlobalFlags
SetThreadPriority
ResumeThread
GetCurrentThreadId
WaitForSingleObject
GetFileAttributesExA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileSizeEx
GetFileTime
InterlockedExchange
GetLocaleInfoA
GetUserDefaultUILanguage
GlobalDeleteAtom
lstrcmpW
LoadLibraryW
GetVersionExA
GlobalFindAtomA
FreeResource
lstrcpyA
GetCPInfo
GetOEMCP
GetWindowsDirectoryA
GetNumberFormatA
GetTempFileNameA
GetTempPathA
InitializeCriticalSectionAndSpinCount
GetProfileIntA
SearchPathA
VirtualProtect
GetUserDefaultLCID
FindResourceExW
RtlUnwind
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
RaiseException
EncodePointer
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
VirtualAlloc
GetSystemInfo
HeapReAlloc
HeapQueryInformation
HeapSize
ExitThread
CreateThread
ExitProcess
SetStdHandle
GetFileType
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapCreate
GetStdHandle
GetTimeZoneInformation
IsValidCodePage
LCMapStringW
GetLocaleInfoW
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
CompareStringW
GetConsoleCP
GetConsoleMode
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
FindResourceW
GetCurrentDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetTickCount
SetFileAttributesA
GetFileSize
QueryPerformanceFrequency
QueryPerformanceCounter
SleepEx
GetCurrentProcess
OutputDebugStringA
GetOverlappedResult
GetLocalTime
SetLocalTime
ReadFile
CreateDirectoryA
WriteFile
CloseHandle
GetPrivateProfileStringA
CreateFileA
SetCommState
SetCommTimeouts
GetCommState
PurgeComm
ClearCommError
CreateEventA
CreateMutexA
GetLastError
LocalFree
Sleep
GetACP

user32

LoadIconA
LoadIconW
RegisterWindowMessageA
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
SetRectEmpty
SystemParametersInfoA
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadCursorW
SetCursor
ShowOwnedPopups
DeleteMenu
InvalidateRect
SetTimer
KillTimer
InflateRect
GetMenuItemInfoA
DestroyMenu
IntersectRect
RedrawWindow
GetMenuDefaultItem
CreatePopupMenu
IsRectEmpty
MapVirtualKeyA
SetCapture
GetAsyncKeyState
ReleaseCapture
InvertRect
DrawFocusRect
HideCaret
EnableScrollBar
NotifyWinEvent
MessageBeep
OffsetRect
GetIconInfo
CopyImage
LoadImageA
GetNextDlgGroupItem
DrawIconEx
IsZoomed
SetWindowRgn
SetParent
DestroyAcceleratorTable
WindowFromPoint
SetClassLongA
LoadMenuW
GetSystemMenu
DrawStateA
DrawEdge
DrawFrameControl
CopyAcceleratorTableA
ToAsciiEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetCursorPos
BringWindowToTop
LockWindowUpdate
GetKeyNameTextA
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
WinHelpA
MapVirtualKeyExA
UnionRect
UpdateLayeredWindow
MonitorFromPoint
IsMenu
InsertMenuItemA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
PostThreadMessageA
SetMenu
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
GetDoubleClickTime
SubtractRect
MapDialogRect
DrawIcon
DestroyCursor
GetWindowRgn
GetFocus
GetDesktopWindow
RealChildWindowFromPoint
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
DestroyIcon
GetWindowTextLengthA
GetWindowTextA
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
IsChild
GetCapture
GetClassLongA
SetScrollRange
GetScrollRange
ShowScrollBar
GetClientRect
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
GetClassInfoExA
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
IsCharLowerA
TrackPopupMenu
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
SetWindowPlacement
GetWindowPlacement
CallWindowProcA
GetMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuA
EnableMenuItem
CheckMenuItem
IsIconic
PostMessageA
SetRect
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetWindowPos
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowCursor
SetWindowLongA
ShowWindow
SetForegroundWindow
UpdateWindow
GetSystemMetrics
MoveWindow
GetCursorPos
ScreenToClient
VkKeyScanA
wsprintfA
ExitWindowsEx
DefWindowProcA
PostQuitMessage
BeginPaint
EndPaint
CharUpperA
LoadAcceleratorsA
MessageBoxA
IsWindow
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
CheckDlgButton
GetScrollPos
SetScrollPos
SetFocus
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
ValidateRect
WaitMessage

gdi32

SetPolyFillMode
SetROP2
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetLayout
SetLayout
SelectClipRgn
GetTextFaceA
SetBkMode
RestoreDC
PtInRegion
FillRgn
FrameRgn
StretchBlt
SetDIBColorTable
Polygon
Ellipse
Polyline
CreateEllipticRgn
GetTextColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
GetBoundsRect
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
GetBkColor
DPtoLP
PatBlt
SaveDC
CombineRgn
SetRectRgn
GetTextExtentPoint32A
GetTextCharsetInfo
EnumFontFamiliesA
CreateSolidBrush
ExtFloodFill
GetObjectA
SetBkColor
SetPaletteEntries
GetTextMetricsA
CreateRectRgnIndirect
CreateCompatibleBitmap
CreateFontIndirectA
CreateDIBitmap
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
GetStockObject
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
SetTextColor
CreateBitmap
DeleteObject
CreateDCA
CopyMetaFileA
SetPixel
Rectangle
OffsetRgn
GetRgnBox
EnumFontFamiliesExA
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetPixelV
LPtoDP
GetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
GetViewportOrgEx
GetSystemPaletteEntries
GetDeviceCaps

advapi32

RegDeleteValueA
RegSetValueExA
RegEnumKeyExA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA
RegCloseKey

ole32

OleGetClipboard
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
DoDragDrop
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoInitializeEx
CoCreateInstance
OleDuplicateData
CoLockObjectExternal
CoTaskMemAlloc
CoTaskMemFree

binkw32

_BinkGetFrameBuffersInfo@8
_BinkClose@4
_BinkPause@8
_BinkWait@4
_BinkGoto@12
_BinkNextFrame@4
_BinkShouldSkip@4
_BinkDoFrame@4
_BinkRegisterFrameBuffers@8
_BinkSetSoundSystem@8
_BinkOpenWaveOut@4
_BinkSetSoundOnOff@8
_BinkOpen@8

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize

shlwapi

PathRemoveFileSpecW
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

iphlpapi

GetAdaptersAddresses

crypt32

CryptUnprotectData
CryptProtectData

dbghelp

SymSetOptions
SymSetContext
SymGetLineFromAddr
SymFromAddr
StackWalk
SymFunctionTableAccess
SymEnumSymbols
SymInitialize
SymCleanup
SymGetModuleBase
SymGetTypeInfo

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

shell32

DragFinish
SHGetFileInfoA
SHGetDesktopFolder
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHAppBarMessage
DragQueryFileA
SHBrowseForFolderA
ShellExecuteA

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
VariantChangeType
VariantClear
SysStringLen
SysFreeString
VarBstrFromDate
VariantInit
SysAllocString

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 398KB - Virtual size: 397KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 8.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d16402272eaa4a876b4b8832f4343628

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

d3d9

dsound

d3dx9_43

dinput8

winmm

kernel32

user32

gdi32

advapi32

ole32

binkw32

msimg32

comctl32

shlwapi

iphlpapi

crypt32

dbghelp

oleacc

gdiplus

imm32

winspool.drv

comdlg32

shell32

oleaut32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 398KB - Virtual size: 397KB

.data Size: 27KB - Virtual size: 8.4MB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 398KB - Virtual size: 397KB

.data
Size: 27KB - Virtual size: 8.4MB

.rsrc
Size: 48KB - Virtual size: 47KB