exportedHeapusageDiagnostic
Static task
static1
1 signatures
General
-
Target
2024-04-15_245e8b860f791d2ca20a977530dda5ec_icedid
-
Size
1.5MB
-
MD5
245e8b860f791d2ca20a977530dda5ec
-
SHA1
e8d4d5ed3f503bf3d41bee58ccc5e5b8764da0b0
-
SHA256
eaa2c099a13f6cf94cfd6a5ed06e6843ed5cac80e9233647169aabcdb831b1a1
-
SHA512
09a394c678ca0b6b2ac6de7fa2ea562569079e80d722a4e97b2eed2c574b459124481cbe7b454473a601d615f1ebb95753c9dbe2630df724f6cd43b4076bd9f7
-
SSDEEP
49152:KmAslJi0mVK+Fu4kaUWBvzEPJUfp9+jzr5XG9FhGo8xF1q5:KmJi0mVKykaUWpMJUf6jXJy
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-15_245e8b860f791d2ca20a977530dda5ec_icedid
Files
-
2024-04-15_245e8b860f791d2ca20a977530dda5ec_icedid.exe windows:6 windows x86 arch:x86
716878dd074df6cc7452349a9c08f32b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
ws2_32
WSACleanup
socket
inet_addr
htons
WSAGetLastError
WSAStartup
shutdown
setsockopt
send
recv
connect
closesocket
kernel32
OutputDebugStringA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
CreateEventW
SuspendThread
ResumeThread
GlobalDeleteAtom
lstrcmpA
lstrcmpW
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GlobalAddAtomW
MulDiv
EncodePointer
GetSystemDirectoryW
GlobalFindAtomW
CompareStringW
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalFlags
GetCurrentDirectoryW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
DeleteFileW
GetFullPathNameW
FileTimeToSystemTime
DefineDosDeviceA
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExW
SetFileAttributesW
SystemTimeToTzSpecificLocalTime
GetUserDefaultLCID
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
InitializeSListHead
IsDebuggerPresent
GetProfileStringA
WriteConsoleW
CopyFileA
DeviceIoControl
GetStartupInfoW
CreateProcessW
Beep
SetFilePointerEx
SetEnvironmentVariableA
GetEnvironmentVariableA
OpenMutexW
GetVolumeInformationW
GetFileAttributesW
GetDiskFreeSpaceW
CreateFileMappingA
CreateSemaphoreA
GetModuleHandleA
UnmapViewOfFile
MapViewOfFileEx
GetSystemTimeAsFileTime
SwitchToThread
GetProcessTimes
CreateMutexA
WaitForSingleObject
ReleaseMutex
ReleaseSemaphore
QueryPerformanceFrequency
QueryPerformanceCounter
SetLastError
DuplicateHandle
SetEndOfFile
RemoveDirectoryA
GetFileSizeEx
FindNextFileA
CreateFileA
CreateDirectoryA
GlobalFree
GetPriorityClass
SetThreadPriority
GetCurrentThread
GetCurrentProcess
GetCurrentThreadId
FindFirstFileA
CreateEventA
OutputDebugStringW
RaiseException
LCMapStringEx
GetStringTypeW
GetCPInfo
WaitForSingleObjectEx
OpenEventA
RtlUnwind
InterlockedPushEntrySList
SetStdHandle
GetFileType
GetModuleHandleExW
GetDriveTypeW
GetFileInformationByHandle
PeekNamedPipe
GetTimeZoneInformation
FreeLibraryAndExitThread
SetEvent
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
ExitThread
CreateThread
FlushFileBuffers
MoveFileExW
GetCommandLineW
GetACP
WideCharToMultiByte
MultiByteToWideChar
VirtualFree
VirtualAlloc
WriteFile
SetFilePointer
GetCommandLineA
HeapQueryInformation
GetConsoleMode
ReadConsoleW
ReadFile
CreateFileW
ResetEvent
GetLocalTime
FormatMessageW
FormatMessageA
LocalFree
GlobalLock
GlobalUnlock
GlobalAlloc
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetProcAddress
FreeLibrary
GetVersionExW
FindNextFileW
FindFirstFileW
FindClose
GetSystemInfo
Sleep
CloseHandle
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
DecodePointer
FindResourceW
SizeofResource
LockResource
LoadResource
SetConsoleTitleW
SetConsoleScreenBufferSize
GetConsoleScreenBufferInfo
AllocConsole
GetStdHandle
GetModuleHandleW
GetTickCount
ExitProcess
GetCurrentProcessId
GetConsoleOutputCP
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
CreateDirectoryW
user32
CharUpperW
KillTimer
SetTimer
GetSysColorBrush
RealChildWindowFromPoint
IsDialogMessageW
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollPos
SetForegroundWindow
UpdateWindow
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
CopyRect
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
TabbedTextOutW
GrayStringW
DrawTextExW
GetMenuItemID
GetSubMenu
GetLastActivePopup
PostQuitMessage
CallNextHookEx
SetWindowsHookExW
ValidateRect
IsWindowVisible
DispatchMessageW
TranslateMessage
GetMessageW
GetDesktopWindow
SetActiveWindow
RedrawWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
GetFocus
UnhookWindowsHookEx
GetParent
OffsetRect
SetRectEmpty
SendDlgItemMessageA
wsprintfA
GetCursorPos
GetForegroundWindow
TrackPopupMenu
SetMenuItemBitmaps
GetMenuItemCount
EnableMenuItem
CheckMenuItem
DestroyMenu
CreatePopupMenu
GetMenuStringA
LoadCursorW
SetCursor
InvalidateRect
GetSysColor
DrawTextW
GetWindowThreadProcessId
GetKeyState
EnumWindows
FindWindowA
GetWindowLongW
AppendMenuA
MessageBoxW
MessageBoxA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
PeekMessageW
UnregisterClassW
ReleaseDC
GetDC
SetWindowPos
LoadIconW
GetWindowRect
GetClientRect
DrawIcon
AppendMenuW
GetSystemMenu
GetSystemMetrics
EnableWindow
IsIconic
SetWindowTextA
SetWindowTextW
GetDlgItem
PostMessageW
SendMessageW
GetClassInfoW
gdi32
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetMapMode
RectVisible
PtVisible
DeleteObject
GetStockObject
GetClipBox
CreateBitmap
EndDoc
StartDocA
Escape
CreateDCA
SetDIBits
SelectPalette
RealizePalette
GetDIBits
GetDeviceCaps
DeleteDC
CreatePalette
CreateDIBitmap
CreateCompatibleDC
BitBlt
ExtTextOutW
GetTextMetricsW
SetTextColor
SetBkColor
GetTextColor
GetBkColor
GetObjectW
GetTextExtentPoint32W
RestoreDC
SaveDC
SelectObject
CreateFontIndirectW
winspool.drv
ClosePrinter
DocumentPropertiesW
OpenPrinterW
advapi32
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegEnumValueW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
shell32
ShellExecuteW
shlwapi
PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
ole32
CoInitialize
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoCreateGuid
oleaut32
SysFreeString
SysAllocString
VariantInit
VariantClear
VariantChangeType
oleacc
CreateStdAccessibleObject
LresultFromObject
Exports
Exports
Sections
.text Size: 1006KB - Virtual size: 1006KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 177KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 4.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 374KB - Virtual size: 373KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ