2024-04-11_b74752144e07ca9542f5b78cbfa72545_floxif_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-11_b74752144e07ca9542f5b78cbfa72545_floxif_icedid
Size

800KB
MD5

b74752144e07ca9542f5b78cbfa72545
SHA1

3845c2526f9130cd2bce25858148da0a5fbe7e95
SHA256

e080f0e2c8e8eeb8375f706e94f1fdf67b1c71eac569a7161545d4ccff449a0c
SHA512

23a2b8e6c6ef9af2a1dc71235dca6fe21fcce688d3a12acb5b8af8a7a36fe45d6e534b493f2e969fa1548593f3ce001eaa6e72581761f63940533c7cf105254c
SSDEEP

12288:t9wPFDIJ7mSE3fpaWqmT7E7Ol78wN0iUFE70+4zjdw/4Nmkz6RBjvrEH7bKH:tlmSE3fpaip0FEYNjDtcrEH7bKH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-11_b74752144e07ca9542f5b78cbfa72545_floxif_icedid

Files

2024-04-11_b74752144e07ca9542f5b78cbfa72545_floxif_icedid
.exe windows:5 windows x86 arch:x86

e840436f56c72acaa424239f7cad608a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mv_api

MV_LD_GetInfo
MV_Adapter_GetCount
MV_EVT_GetEvent
MV_API_Finalize
MV_Adapter_GetInfo
MV_API_Initialize

kernel32

SetEnvironmentVariableA
CompareStringW
GetProcessHeap
GetTimeZoneInformation
OpenEventA
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetConsoleOutputCP
WriteConsoleA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
HeapAlloc
VirtualFree
HeapFree
HeapCreate
HeapDestroy
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
QueryPerformanceCounter
LCMapStringW
LCMapStringA
IsValidCodePage
GetACP
GetStringTypeW
GetStringTypeA
LoadLibraryW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetFileType
SetStdHandle
GetSystemInfo
VirtualAlloc
ExitProcess
IsBadReadPtr
HeapValidate
GetStartupInfoA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RaiseException
ExitThread
CreateThread
RtlUnwind
GetOEMCP
GetCPInfo
GetFileTime
GetFileSizeEx
GetFileAttributesA
FileTimeToSystemTime
GetModuleHandleW
GetAtomNameA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
SetErrorMode
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
GetTickCount
WritePrivateProfileStringA
SetEvent
ResumeThread
FreeResource
lstrcmpW
GlobalFindAtomA
GetVersionExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GlobalGetAtomNameA
GlobalAddAtomA
GetCurrentProcessId
MultiByteToWideChar
MulDiv
GlobalFree
GlobalUnlock
FormatMessageA
LocalFree
lstrlenA
GetLastError
SetLastError
CompareStringA
InterlockedExchange
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetLocaleInfoA
LoadLibraryA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
GetModuleFileNameA
GetSystemDirectoryA
CreateProcessA
VerSetConditionMask
VerifyVersionInfoA
CreateToolhelp32Snapshot
Process32Next
OpenProcess
TerminateProcess
CloseHandle
GetWindowsDirectoryA
Sleep
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetCommandLineA
lstrcmpiA

user32

RegisterClipboardFormatA
GetMessageA
TranslateMessage
EndDialog
CreateDialogIndirectParamA
MoveWindow
SetWindowTextA
IsDialogMessageA
PostThreadMessageA
GetForegroundWindow
GetNextDlgTabItem
KillTimer
SetTimer
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ClientToScreen
GetMenuCheckMarkDimensions
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
RegisterClassA
SendDlgItemMessageA
GetClientRect
MapWindowPoints
DispatchMessageA
GetFocus
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
GetTopWindow
GetParent
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
CharUpperA
GetClassInfoA
GetLastActivePopup
BringWindowToTop
GetSysColor
EqualRect
GetDlgItem
SetWindowLongA
GetDlgCtrlID
GetKeyState
UnpackDDElParam
ReuseDDElParam
WinHelpA
SetMenu
GetMenu
LoadIconA
DestroyMenu
SetFocus
GetActiveWindow
GetWindowLongA
ShowWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
EnableWindow
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
LoadMenuA
SetMenuItemBitmaps
ModifyMenuA
InsertMenuItemA
GetSubMenu
GetMenuItemInfoA
GetMenuState
GetMenuItemID
SetRectEmpty
GetClipboardFormatNameA
UnregisterClassA
SetActiveWindow
InflateRect
PtInRect
GetMenuItemCount
EnableMenuItem
CheckMenuItem
IsMenu
CreatePopupMenu
GrayStringA
DrawTextExA
DrawTextA
FillRect
LoadBitmapA
GetSysColorBrush
TabbedTextOutA
PostMessageA
PostQuitMessage
SetMenuDefaultItem
GetCursorPos
SetForegroundWindow
TrackPopupMenu
IsWindow
MessageBoxA
EnumChildWindows
EnumWindows
GetWindowTextA
SystemParametersInfoA
LoadCursorA
SetWindowPos
GetWindowThreadProcessId
SendMessageA
GetClassNameA

gdi32

DPtoLP
PtVisible
RectVisible
BitBlt
StretchBlt
GetPixel
TextOutA
GetTextExtentPoint32A
Escape
SelectObject
GetClipBox
SetTextColor
SetBkColor
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteObject
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CreateFontIndirectA
CreatePatternBrush
CreateSolidBrush
GetObjectType
GetStockObject
GetObjectA
ExtTextOutA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCreateKeyExA
RegDeleteKeyA
OpenThreadToken
RevertToSelf
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
SetThreadToken

shell32

DragFinish
DragQueryFileA
Shell_NotifyIconA

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

ole32

OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
StringFromCLSID
CoTaskMemFree

oleaut32

VariantInit
VariantChangeType
VariantClear

winmm

PlaySoundA

Sections

.text
Size: 487KB - Virtual size: 487KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e840436f56c72acaa424239f7cad608a

Headers

DLL Characteristics

File Characteristics

Imports

mv_api

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

winmm

Sections

.text Size: 487KB - Virtual size: 487KB

.rdata Size: 144KB - Virtual size: 144KB

.data Size: 9KB - Virtual size: 25KB

.rsrc Size: 81KB - Virtual size: 81KB

.text
Size: 487KB - Virtual size: 487KB

.rdata
Size: 144KB - Virtual size: 144KB

.data
Size: 9KB - Virtual size: 25KB

.rsrc
Size: 81KB - Virtual size: 81KB