2024-04-15_470ce2ab3cf7681949762e8cb798cd5d_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-04-15_470ce2ab3cf7681949762e8cb798cd5d_icedid
Size

1.4MB
MD5

470ce2ab3cf7681949762e8cb798cd5d
SHA1

9f353be557f0954665d1f080775fd593a3990fd7
SHA256

86d8c5581a582998b3352e4271337c60538308f27201cab80336d45867d3c2e6
SHA512

149cec898bdd8b644d0e59277fc3eb3312bbba78f707914f5ceb7fe7fde15933c374c4dbb51ba98196e26768a3924af8171adf0e1dc64d2453129e1ebc964609
SSDEEP

24576:AxSvVII+jVHC/gLf7xUf4d5YUC2jVrc3Il4ZgNsChOawWvL29QJja8g:b52jC3Il4ZMRAgTz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-15_470ce2ab3cf7681949762e8cb798cd5d_icedid

Files

2024-04-15_470ce2ab3cf7681949762e8cb798cd5d_icedid
.exe windows:4 windows x86 arch:x86

105664e323d648259dc76ecddac4e03c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVIStreamGetFrame
AVIStreamOpenFromFileA
AVIStreamGetFrameOpen
AVIStreamLength
AVIStreamStart
AVIStreamSampleToTime
AVIStreamInfoA
AVIFileExit
AVIFileInit
AVIStreamGetFrameClose
AVIStreamRelease

msvfw32

DrawDibDraw
DrawDibClose
DrawDibOpen

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

wininet

InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetOpenUrlA
FindCloseUrlCache
DeleteUrlCacheEntry
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
InternetCrackUrlA

kernel32

RtlUnwind
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
ExitProcess
ExitThread
TerminateProcess
SetStdHandle
GetFileType
HeapSize
LCMapStringA
LCMapStringW
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
SetErrorMode
GetOEMCP
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
InterlockedIncrement
GlobalFlags
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
LeaveCriticalSection
EnterCriticalSection
LocalAlloc
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
CreateEventA
SuspendThread
SetEvent
SetThreadPriority
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
FileTimeToSystemTime
InterlockedDecrement
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GetTickCount
GetModuleFileNameA
DeleteFileA
Sleep
GetTempPathA
GetVersion
MultiByteToWideChar
GetCurrentProcessId
lstrcmpiA
lstrlenA
GetCPInfo
lstrlenW
LoadLibraryA
FreeLibrary
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetModuleHandleA
SetLastError
MulDiv
lstrcpynA
FreeResource
WaitForSingleObject
CreateMutexA
ResumeThread
CompareStringW
CompareStringA
DeleteCriticalSection
InitializeCriticalSection
GetFullPathNameA
CreateProcessA
GetComputerNameA
CloseHandle
HeapFree
GetProcessHeap
WinExec
GetDiskFreeSpaceExA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
SearchPathA
ExpandEnvironmentStringsA
RaiseException
SetCurrentDirectoryA
CreateDirectoryA
GetTempFileNameA
MoveFileA
GetExitCodeThread
TerminateThread
CreateThread
FormatMessageA
LocalFree
GetProcAddress
lstrcpyA
GetCurrentDirectoryA
lstrcatA
GetLastError
RemoveDirectoryA
SetFileAttributesA
GetWindowsDirectoryA
GetVolumeInformationA
GetDriveTypeA
FindFirstFileA
FindNextFileA
FindClose
CreateFileA
WriteFile

user32

GetMessageA
ValidateRect
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
GetKeyState
GetMenu
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
IntersectRect
GetWindowPlacement
GetWindow
EndPaint
BeginPaint
ScreenToClient
GetMenuStringA
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
EndDialog
IsIconic
GetSystemMenu
DrawIcon
GetWindowDC
DrawAnimatedRects
EnumChildWindows
LockWindowUpdate
GetCursorPos
SetMenuDefaultItem
SetParent
SetActiveWindow
LoadIconA
UnregisterClassA
CharUpperA
AttachThreadInput
TrackPopupMenu
wsprintfA
DestroyMenu
UpdateWindow
RegisterWindowMessageA
SetWindowPos
SetFocus
IsRectEmpty
GetMessagePos
SetWindowLongA
MessageBeep
LoadCursorA
CopyIcon
ReleaseCapture
SetCapture
RedrawWindow
MessageBoxA
SetForegroundWindow
BringWindowToTop
LoadImageA
SetCursor
DestroyCursor
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
ClientToScreen
DrawFocusRect
FrameRect
InflateRect
GetIconInfo
CreateIconIndirect
DrawStateA
IsMenu
LoadMenuA
GetMenuItemInfoA
GetSysColorBrush
SystemParametersInfoA
DrawIconEx
DestroyIcon
GrayStringA
DrawTextExA
TabbedTextOutA
GetDesktopWindow
ReleaseDC
GetDC
ModifyMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
GetDCEx
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
PostThreadMessageA
CreatePopupMenu
CreateMenu
DrawEdge
FillRect
LoadBitmapA
CopyRect
SetRect
SetTimer
GetSystemMetrics
GetSysColor
IsWindow
KillTimer
GetParent
InvalidateRect
OffsetRect
SendMessageA
PeekMessageA
SetWindowContextHelpId
MapDialogRect
RegisterClipboardFormatA
PostQuitMessage
GetClassNameA
SetRectEmpty
TranslateMessage
DispatchMessageA
EnableWindow
IsWindowVisible
GetClientRect
GetWindowRect
PostMessageA
ScrollDC
DrawTextA
PtInRect
FindWindowA

gdi32

RealizePalette
GetViewportOrgEx
GetWindowOrgEx
SaveDC
RestoreDC
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
CreatePalette
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
SelectPalette
SetRectRgn
StretchDIBits
GetCharWidthA
GetBkColor
GetTextColor
GetRgnBox
CombineRgn
CreateRectRgn
GetMapMode
Polygon
CreatePatternBrush
SetBkMode
CreateRectRgnIndirect
GetTextMetricsA
SetBkColor
SetTextColor
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
GetTextExtentPoint32W
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
SetPixel
GetPixel
Ellipse
GetBkMode
GetDeviceCaps
GetObjectA
CreateFontIndirectA
CreateSolidBrush
CreatePen
CreateBitmap
CreateFontA
BitBlt
PatBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectClipRgn
GetStockObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegQueryValueExA
RegSaveKeyA
RegSetKeySecurity
RegOpenKeyExA
RegUnLoadKeyA
RegConnectRegistryA
RegQueryValueA
RegOpenKeyA
RegReplaceKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegEnumKeyA
RegFlushKey
RegGetKeySecurity
RegLoadKeyA
RegNotifyChangeKeyValue
RegRestoreKeyA

shell32

SHAppBarMessage
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
SHEmptyRecycleBinA
ShellExecuteExA
Shell_NotifyIconA
SHGetFileInfoA
SHGetSpecialFolderPathA
ExtractIconExA

comctl32

ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
_TrackMouseEvent
ord14
ord17
ord13
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
UrlUnescapeA
PathFileExistsA
PathFindFileNameA

oledlg

ord8

ole32

CoRevokeClassObject
CoUninitialize
CoInitialize
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoGetClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc

oleaut32

VariantCopy
SysAllocString
SysAllocStringByteLen
SysStringLen
VariantInit
VariantChangeType
SystemTimeToVariantTime
SysFreeString
SafeArrayDestroy
OleCreateFontIndirect
VariantClear
SysAllocStringLen

winmm

PlaySoundA

gdiplus

GdipGetImageWidth
GdipGetImageHeight
GdipCreateHBITMAPFromBitmap
GdipCreateFromHDC
GdipDrawImageRectRectI
GdiplusStartup
GdiplusShutdown
GdipFree
GdipAlloc
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipCreatePen1
GdipDeletePen
GdipCreateCachedBitmap
GdipDisposeImage
GdipCreateBitmapFromStreamICM
GdipDeleteGraphics
GdipBitmapGetPixel
GdipBitmapSetPixel
GdipSetImageAttributesColorKeys
GdipGetImageGraphicsContext
GdipDrawLineI
GdipDrawCachedBitmap
GdipDrawImageI
GdipDrawImageRectI
GdipDeleteCachedBitmap
GdipCloneImage
GdipCreateBitmapFromFileICM
GdipDeleteBrush
GdipSetLineGammaCorrection
GdipCreateStringFormat
GdipDeleteStringFormat
GdipDeleteFont
GdipCreateSolidFill
GdipCreateLineBrushI
GdipSetStringFormatAlign
GdipFillRectangleI
GdipDrawString
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCloneBrush
GdipCreateBitmapFromScan0

Sections

.text
Size: 472KB - Virtual size: 471KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 880KB - Virtual size: 877KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

105664e323d648259dc76ecddac4e03c

Headers

File Characteristics

Imports

avifil32

msvfw32

version

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

gdiplus

Sections

.text Size: 472KB - Virtual size: 471KB

.rdata Size: 112KB - Virtual size: 108KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 880KB - Virtual size: 877KB

.text
Size: 472KB - Virtual size: 471KB

.rdata
Size: 112KB - Virtual size: 108KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 880KB - Virtual size: 877KB