2024-04-10_7130681cd378eed509befdc551d30f14_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-04-10_7130681cd378eed509befdc551d30f14_icedid
Size

2.0MB
MD5

7130681cd378eed509befdc551d30f14
SHA1

eeee55f6d58a494c79142f20fbb0e05649ba9e20
SHA256

083a90dc34d52a6f77c1cb4087453279d0060490350edcc641ba2e3a2cd6fffa
SHA512

717455e158d220e6f131a33729dd91b42bd27f47422c47e164791896f4a78897a640e3f0921d94c4870040be1cb185c216d601fedc24ec789b920f9d46b8e0bc
SSDEEP

24576:lnscoyyhMbBxOrhiJSTfwUD38VvhYPj5Xl7oDNT5jZ3:lnyge/Y43Fj5Ngb9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-10_7130681cd378eed509befdc551d30f14_icedid

Files

2024-04-10_7130681cd378eed509befdc551d30f14_icedid
.exe windows:5 windows x86 arch:x86

5d8e5d5558a73bc0ea2a2787e9fa1386

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
CreateFileMappingA
UnmapViewOfFile
FileTimeToLocalFileTime
OpenEventA
SetEnvironmentVariableA
CompareStringW
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
HeapAlloc
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
LoadLibraryW
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
ExitProcess
GetFileType
SetStdHandle
VirtualAlloc
RaiseException
IsBadReadPtr
HeapValidate
GetCommandLineA
RtlUnwind
GetCurrentThread
GetLocaleInfoA
GetOEMCP
GetCPInfo
SetEvent
GlobalFlags
GetFileTime
GetFileSizeEx
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetFileSize
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
FileTimeToSystemTime
GetModuleHandleW
InterlockedIncrement
GetCurrentProcessId
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
InterlockedDecrement
GetModuleFileNameW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CompareStringA
LoadLibraryA
lstrcmpW
FreeLibrary
GetCurrentThreadId
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
lstrcmpA
MultiByteToWideChar
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
lstrlenA
SetLastError
GetAtomNameA
GlobalGetAtomNameA
GetModuleHandleA
GetProcAddress
GetSystemInfo
GetLastError
Sleep
GetModuleFileNameA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
MapViewOfFile

user32

CharUpperA
GetWindowThreadProcessId
ReleaseCapture
SetCursor
SetRectEmpty
LoadMenuA
ModifyMenuA
InsertMenuItemA
GetMenuItemInfoA
EnableMenuItem
CheckMenuItem
CreatePopupMenu
GrayStringA
DrawTextExA
DrawTextA
FillRect
GetSysColorBrush
ShowWindow
SetWindowTextA
LoadCursorA
GetForegroundWindow
SetForegroundWindow
GetLastActivePopup
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
ClientToScreen
BringWindowToTop
GetMenuCheckMarkDimensions
LoadBitmapA
SetMenuItemBitmaps
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
LoadIconA
GetClientRect
MapWindowPoints
GetSysColor
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
GetTopWindow
GetParent
GetWindow
GetCapture
WinHelpA
TrackPopupMenu
GetWindowTextA
GetKeyState
GetDlgCtrlID
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
UnhookWindowsHookEx
MessageBoxA
GetClipboardFormatNameA
UnpackDDElParam
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
SetMenu
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
RegisterWindowMessageA
GetDesktopWindow
DestroyMenu
LoadAcceleratorsA
TranslateAcceleratorA
ReuseDDElParam
PtInRect
InflateRect
IsWindow
SendMessageA
PostMessageA
TabbedTextOutA
PostQuitMessage
PeekMessageA
GetMenuItemID
GetMenuState
GetSubMenu
GetMenuItemCount
GetActiveWindow
SetActiveWindow
EnableWindow
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
IsMenu

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA

setupapi

SetupDiCallClassInstaller
SetupCopyOEMInfA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupUninstallOEMInfA

newdev

UpdateDriverForPlugAndPlayDevicesA

difxapi

DriverPackageInstallA
DriverPackageUninstallA

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

CreateBitmap
DeleteDC
SaveDC
SelectObject
GetStockObject
SetBkMode
RestoreDC
CreateSolidBrush
CreatePatternBrush
CreateFontIndirectA
CreateCompatibleBitmap
CreateCompatibleDC
ExtTextOutA
PtVisible
RectVisible
BitBlt
GetPixel
TextOutA
GetTextExtentPoint32A
Escape
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
GetObjectType
DeleteObject
GetObjectA
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

comdlg32

GetFileTitleA

advapi32

RevertToSelf
SetThreadToken
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenThreadToken

shell32

DragFinish
DragQueryFileA

ole32

StringFromCLSID
CoTaskMemFree

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5d8e5d5558a73bc0ea2a2787e9fa1386

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shlwapi

setupapi

newdev

difxapi

oleacc

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 396KB - Virtual size: 395KB

.rdata Size: 99KB - Virtual size: 99KB

.data Size: 9KB - Virtual size: 24KB

.rsrc Size: 1.5MB - Virtual size: 2.5MB

.text
Size: 396KB - Virtual size: 395KB

.rdata
Size: 99KB - Virtual size: 99KB

.data
Size: 9KB - Virtual size: 24KB

.rsrc
Size: 1.5MB - Virtual size: 2.5MB