Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-10_0031c479fa64d429effceb2f3ceccb62_icedid.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-10_0031c479fa64d429effceb2f3ceccb62_icedid.exe
Resource
win10v2004-20240226-en
Target
2024-04-10_0031c479fa64d429effceb2f3ceccb62_icedid
Size
474KB
MD5
0031c479fa64d429effceb2f3ceccb62
SHA1
90592527ba7e8d4ce9158de2e8b3c357787c58e0
SHA256
96a92e26a232c488ecea8eb92a098a712430c09d79e19c6441f5cd9a56f07735
SHA512
03cf0b9a47c52edec269d6e144d2d81029f6ed0c6162e33263a3ef0ede28afde26575596fc28c1e9675db49a11d07484f116fab4c242a6a41e8ad2c05351d980
SSDEEP
12288:hGR0eyf6tf4XCxAOM1UWJatBWUhDC9SwN6FYOvDTLqqMtm:hyyf6tf4CAPJat4WGS3FYMTeqMtm
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
f:\QQPCDownloader_proj\General\bin\release\TxdlCom.pdb
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
LoadResource
SizeofResource
FindResourceW
GetModuleFileNameW
GetProcAddress
GetModuleHandleW
InitializeCriticalSection
SetErrorMode
GetCurrentThreadId
GetCurrentProcessId
HeapAlloc
GetProcessHeap
HeapFree
TerminateProcess
GetCurrentProcess
WaitForMultipleObjects
CreateProcessW
OutputDebugStringW
OpenProcess
CreateEventW
LeaveCriticalSection
EnterCriticalSection
WriteProcessMemory
ReadProcessMemory
SetUnhandledExceptionFilter
VirtualAlloc
VirtualAllocEx
DeleteCriticalSection
LockResource
GetCommandLineW
FreeLibrary
lstrlenW
LoadLibraryW
WideCharToMultiByte
lstrlenA
MultiByteToWideChar
GetLastError
LoadLibraryExW
lstrcmpiW
InterlockedIncrement
InterlockedDecrement
FindResourceExW
RaiseException
Sleep
CreateThread
WaitForSingleObject
SetEvent
HeapDestroy
HeapSize
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
InterlockedCompareExchange
GetStartupInfoW
CreateFileW
FreeResource
WriteFile
CloseHandle
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
lstrcpynW
HeapReAlloc
UnhandledExceptionFilter
IsDebuggerPresent
CharUpperW
UnregisterClassA
GetMessageW
TranslateMessage
DispatchMessageW
CharNextW
SetTimer
KillTimer
PostThreadMessageW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
SHGetSpecialFolderPathW
CoRegisterClassObject
CoCreateInstance
CoRevokeClassObject
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize
StringFromGUID2
UnRegisterTypeLi
SysAllocString
RegisterTypeLi
SysStringLen
LoadTypeLi
LoadRegTypeLi
SysFreeString
VarUI4FromStr
PathFindFileNameW
PathFileExistsW
PathAppendW
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?length@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?empty@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE_NXZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
_decode_pointer
_onexit
_except_handler4_common
_initterm_e
_initterm
_wcmdln
?terminate@@YAXXZ
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
_controlfp_s
_invoke_watson
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_configthreadlocale
__setusermatherr
??3@YAXPAX@Z
__CxxFrameHandler3
memset
_CxxThrowException
wcslen
memcpy_s
memmove_s
wcsrchr
memcpy
_snwprintf
wcscat
wcscpy
??_V@YAXPAX@Z
_wtol
wcschr
fclose
strlen
fread
ftell
fseek
_wfopen_s
strstr
wcsncpy
??2@YAPAXI@Z
wcsncpy_s
_purecall
memcmp
_wcsicmp
free
_recalloc
malloc
wcscpy_s
wcscat_s
_unlock
__dllonexit
_encode_pointer
_lock
exit
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ