2024-04-05_c7a99f7989fb2d70d74b912c76924da0_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-05_c7a99f7989fb2d70d74b912c76924da0_icedid
Size

1.7MB
MD5

c7a99f7989fb2d70d74b912c76924da0
SHA1

195a19f8b3db396d287f539a129a4fc875d1da34
SHA256

57593a098680dfc7737abf09bd4533aadc331265183428f2ac38f551129c1fe6
SHA512

cd70148d198d35ff9e66672049d3cfee4ea0b72e132cd8b86769879488782579460bf2ea475a203ae01b1bffc057353a4aee0633fe9794617d15d1e2558ebc66
SSDEEP

49152:OgWFrNqzq5xI6gwq7kTb0/CEn9BpSXp/ZZKLec:OLpqzq5q6w7kv0/CiFSXpBZKLec

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-05_c7a99f7989fb2d70d74b912c76924da0_icedid

Files

2024-04-05_c7a99f7989fb2d70d74b912c76924da0_icedid
.exe windows:5 windows x86 arch:x86

3fede177b1654f4a99ee93ae54ae5300

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

c4dll

f4memoSetLen
u4allocFreeDefault
d4tagNext
d4tagSelected
d4lockTest
f4memoLen
f4memoPtr
u4freeDefault
c4atol
c4dtoa45
c4ltoa45
f4dateTime
f4memoStr
code4initLow
f4assignNotNull
f4type
f4ptr
f4memoAssignN
f4long
f4len
f4decimals
error4default
d4changed
d4deleted
d4seekNext
d4unlock
d4tagSelect
d4tag
d4seek
d4top
d4skip
d4recWidthLow
d4recNoLow
d4open
d4lockInternal
d4lockAllInternal
_d4goLow2@16
d4flush
d4field
d4create
d4blank
d4appendStart
f4currency
d4append
code4close
code4initUndo
code4indexFormat

kernel32

GetProfileIntA
SearchPathA
VirtualProtect
FindResourceExW
RtlUnwind
GetSystemTimeAsFileTime
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
GetTickCount
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
ExitProcess
GetModuleHandleExW
AreFileApisANSI
HeapQueryInformation
SetStdHandle
GetFileType
IsValidCodePage
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetStdHandle
GetStartupInfoW
GetConsoleCP
GetTimeZoneInformation
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDriveTypeW
GetDateFormatW
GetTimeFormatW
LCMapStringW
WriteConsoleW
OutputDebugStringW
GetCurrentDirectoryW
CreateFileW
SetEnvironmentVariableA
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
lstrcpyA
GetWindowsDirectoryA
GetCPInfo
GetOEMCP
SetErrorMode
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
GetACP
GlobalFlags
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
LeaveCriticalSection
EnterCriticalSection
EncodePointer
FindNextFileA
FileTimeToSystemTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetVolumeInformationA
MoveFileA
LoadLibraryA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
CreateFileA
GetCurrentProcessId
GlobalAddAtomA
GetPrivateProfileIntA
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleFileNameA
FreeLibrary
GetVersionExA
GetCurrentThread
ResumeThread
SetThreadPriority
GetCurrentThreadId
WaitForSingleObject
CloseHandle
FindResourceA
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
OutputDebugStringA
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
RaiseException
GetProcessHeap
HeapSize
LockResource
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
GetPrivateProfileStringA
WritePrivateProfileStringA
Sleep
WideCharToMultiByte
FindResourceW
CreateMutexA
SizeofResource
LoadResource
ReleaseMutex
GetLastError
GetSystemInfo

user32

GetComboBoxInfo
IsZoomed
PostThreadMessageA
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
SetRect
LockWindowUpdate
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetClassLongA
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
FrameRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
GetAsyncKeyState
GetUpdateRect
SubtractRect
CreateMenu
MapDialogRect
DestroyCursor
GetWindowRgn
GetClassLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
SystemParametersInfoA
InflateRect
CopyRect
GetMenuItemInfoA
DestroyMenu
FillRect
GetSysColor
MessageBeep
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
CharUpperA
GetLastActivePopup
GetWindowThreadProcessId
SetCursor
ShowOwnedPopups
PostQuitMessage
CallNextHookEx
LoadMenuW
GetCursorPos
ValidateRect
GetKeyState
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
IsDialogMessageA
GetWindow
SetWindowLongA
GetWindowLongA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsWindowEnabled
SetFocus
GetDlgCtrlID
SendDlgItemMessageA
CheckDlgButton
GetDlgItem
SetWindowPos
MoveWindow
ShowWindow
IsWindow
LoadBitmapW
GetParent
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
UnhookWindowsHookEx
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
UnregisterClassA
LoadIconW
GetClientRect
SetForegroundWindow
DrawIcon
AppendMenuA
GetSystemMenu
GetSystemMetrics
EnableWindow
KillTimer
SetTimer
IsIconic
IsWindowVisible
PostMessageA
SendMessageA
MessageBoxA
GetIconInfo
DrawIconEx
IsRectEmpty
DrawFocusRect
GetNextDlgGroupItem
ReuseDDElParam
UnpackDDElParam
LoadImageA
OffsetRect
SetRectEmpty
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
IntersectRect
LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
DestroyIcon
InvalidateRect
DeleteMenu
CopyImage
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
GetMonitorInfoA
MonitorFromWindow
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
SetParent
UnionRect
GetKeyNameTextA
MapVirtualKeyA
NotifyWinEvent
InvertRect
HideCaret
SetWindowsHookExA
EnableScrollBar
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
GetTopWindow
ScreenToClient
GetClassNameA
EndDeferWindowPos
IsClipboardFormatAvailable

gdi32

CreateBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
BitBlt
CreateCompatibleDC
GetTextFaceA
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetObjectA
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
CombineRgn
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegSetValueExA

shell32

SHBrowseForFolderA
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileA
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
DragFinish

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA
PathFindExtensionA
PathRemoveFileSpecW

uxtheme

IsAppThemed
GetThemeSysColor
GetWindowTheme
DrawThemeText
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
GetThemePartSize
OpenThemeData
CloseThemeData
GetThemeColor
GetCurrentThemeName

ole32

RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocStringByteLen
SysAllocStringLen
VarBstrFromDate
VariantCopy
VariantInit
VariantClear
VariantChangeType
LoadTypeLi
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocString

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

wininet

InternetOpenA
InternetCloseHandle
InternetConnectA
InternetReadFile
InternetSetFilePointer
InternetWriteFile
InternetQueryDataAvailable
InternetSetOptionExA
InternetGetLastResponseInfoA
InternetSetStatusCallback
HttpSendRequestA
HttpOpenRequestA

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 308KB - Virtual size: 308KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fede177b1654f4a99ee93ae54ae5300

Headers

DLL Characteristics

File Characteristics

Imports

c4dll

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oleacc

wininet

gdiplus

imm32

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 308KB - Virtual size: 308KB

.data Size: 29KB - Virtual size: 61KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 308KB - Virtual size: 308KB

.data
Size: 29KB - Virtual size: 61KB

.rsrc
Size: 22KB - Virtual size: 22KB