2024-04-16_47cc65088facbc0e0cb29afef11da0a9_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-04-16_47cc65088facbc0e0cb29afef11da0a9_icedid
Size

1.4MB
MD5

47cc65088facbc0e0cb29afef11da0a9
SHA1

a249601c176a496d291fcd3cc4a53abee8864c28
SHA256

bfacd404cafeb14f634f912d2146cb98e8ea12043e5fcabd54a983ddf63478e8
SHA512

632d0e912db6be541d3c59e414a902adb74c047e46fa54ade0aca50e91377441d90ccb99cecd382d3d352e68eeb7d39b4e8c0125d3fe3ac0d6887023a131d4ec
SSDEEP

24576:EfQEeZTUuGZQ6fQZnNEwMM1Hty8YOMVIKkZicz+p:DEOmwMotypO6kZbS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-16_47cc65088facbc0e0cb29afef11da0a9_icedid

Files

2024-04-16_47cc65088facbc0e0cb29afef11da0a9_icedid
.exe windows:4 windows x86 arch:x86

2294ec26e0f642df077620da57363e50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

bmaframe

CreateXmlConfigParse
CreateBMAFramework

kernel32

GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
GetStartupInfoA
HeapSize
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
GetCPInfo
CompareStringA
CompareStringW
SetEnvironmentVariableW
GetDriveTypeA
GetACP
GetOEMCP
SetEnvironmentVariableA
HeapReAlloc
SizeofResource
TerminateProcess
GetFileType
SetStdHandle
HeapFree
HeapAlloc
RaiseException
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
ExitProcess
GetStartupInfoW
GetCurrentDirectoryW
FindResourceExW
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GlobalFlags
IsBadCodePtr
FileTimeToLocalFileTime
IsBadWritePtr
GetModuleFileNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetFileTime
lstrlenA
FindNextFileW
CreateEventW
EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileStringW
ResetEvent
MultiByteToWideChar
Sleep
CreateThread
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
GetPrivateProfileSectionW
FindFirstFileW
FindClose
lstrlenW
SetEvent
GetFileAttributesW
SetFileAttributesW
WritePrivateProfileStringW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
DeleteFileW
RemoveDirectoryW
GetTickCount
GetTempPathW
CreateDirectoryW
GetLastError
WriteFile
GetFileSize
ReadFile
CreateFileW
CloseHandle
GetModuleFileNameW
GetPrivateProfileIntW
FileTimeToSystemTime
GlobalGetAtomNameW
GetTempFileNameW
GetProfileStringA
GlobalAddAtomA
FindResourceA
GetDiskFreeSpaceW
SetFileTime
lstrcmpA
lstrcmpW
GlobalAlloc
MulDiv
lstrcmpiA
GetCurrentThread
lstrcmpiW
GetShortPathNameW
GetFullPathNameW
GetThreadLocale
GetStringTypeExW
MoveFileW
GetVolumeInformationW
LoadLibraryW
LockFile
SetEndOfFile
UnlockFile
GetCurrentProcess
FlushFileBuffers
SetFilePointer
FormatMessageW
DuplicateHandle
SetLastError
LoadLibraryA
LocalFree
GetModuleHandleA
GetCurrentThreadId
FreeLibrary
GetVersion
GlobalDeleteAtom
GlobalAddAtomW
GlobalFindAtomW
GlobalLock
GetModuleHandleW
GetProcAddress
LockResource
GlobalUnlock
GlobalFree
lstrcpynW
FindResourceW
LoadResource
IsBadReadPtr
lstrcpyW
lstrcatW
SetUnhandledExceptionFilter
VirtualAlloc

user32

CopyAcceleratorTableW
DestroyIcon
GetMenuStringW
DeleteMenu
InsertMenuW
LockWindowUpdate
GetDCEx
GetSysColorBrush
LoadCursorW
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
GetDesktopWindow
TranslateAcceleratorW
LoadAcceleratorsW
LoadStringW
SetWindowContextHelpId
ValidateRect
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
WindowFromPoint
SetRectEmpty
GrayStringW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
MapDialogRect
GetAsyncKeyState
CharUpperW
ShowWindow
MoveWindow
IsDialogMessageW
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
GetNextDlgGroupItem
CharNextW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
MessageBoxW
GetClassInfoW
RegisterClassW
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
SetParent
RegisterClipboardFormatW
CheckMenuItem
EnableMenuItem
GetWindowTextLengthW
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
DrawIcon
PtInRect
GetMessagePos
ScreenToClient
GetCapture
ReleaseCapture
MapWindowPoints
OffsetRect
SetCapture
GetSystemMetrics
DrawFrameControl
DrawFocusRect
GetDC
ReleaseDC
GetWindow
GetClassNameW
LoadImageW
FrameRect
IsRectEmpty
EnumWindows
GetMessageW
PostThreadMessageW
PeekMessageW
SetMenu
GetWindowTextW
GetKeyState
MessageBeep
TranslateMessage
DispatchMessageW
GetFocus
SetRect
GetCaretPos
keybd_event
KillTimer
SetTimer
GetSysColor
CopyRect
InflateRect
wsprintfW
UpdateWindow
PostMessageW
FillRect
GetClientRect
GetParent
DrawTextW
LoadBitmapW
GetWindowRect
EnableWindow
InvalidateRect
LoadIconW
SendMessageW
WinHelpW
IsChild
SetWindowTextW
DefWindowProcA
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
GetPropA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA

gdi32

CreateCompatibleDC
GetObjectW
BitBlt
MoveToEx
SetTextColor
SelectObject
CreateDIBitmap
CreateRectRgn
GetDeviceCaps
GetWindowExtEx
GetViewportExtEx
CreatePatternBrush
RectVisible
TextOutW
PtVisible
PatBlt
CreateRectRgnIndirect
Escape
GetCharWidthW
GetMapMode
StretchDIBits
CombineRgn
IntersectClipRect
SetRectRgn
DPtoLP
EnumFontFamiliesExW
ExcludeClipRect
GetBkColor
LPtoDP
GetTextColor
CreateFontIndirectW
CreateSolidBrush
SelectClipRgn
ScaleWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
RestoreDC
SaveDC
CreateBitmap
SetBkColor
GetClipBox
CreateFontW
CreateDIBSection
Rectangle
ExtTextOutW
CreatePen
GetTextMetricsW
CreateCompatibleBitmap
DeleteDC
DeleteObject
GetTextExtentPoint32W
SetBkMode
GetTextExtentPointA
ExtTextOutA
SetWindowExtEx
LineTo

comdlg32

GetFileTitleW
GetSaveFileNameW
GetOpenFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegSetValueW
RegEnumValueW
RegCreateKeyW
RegQueryValueExW
RegOpenKeyExW
SetFileSecurityW
CryptReleaseContext
CryptAcquireContextW
CryptGenRandom
RegCloseKey
GetFileSecurityW
RegDeleteValueW
RegOpenKeyW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW

shell32

ExtractIconW
DragQueryFileW
SHGetFileInfoW
DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc

comctl32

ImageList_DragEnter
ord17
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Draw
ImageList_DrawEx
ImageList_BeginDrag
ImageList_DragMove
ImageList_EndDrag
ImageList_DragLeave
ImageList_DragShowNolock
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_Destroy
ImageList_Create
ImageList_LoadImageW

oledlg

OleUIBusyW

ole32

CLSIDFromProgID
CoUninitialize
OleInitialize
CoInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CLSIDFromString
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
OleRun

olepro32

ord253

oleaut32

VariantInit
SysStringLen
SysFreeString
VariantTimeToSystemTime
SysAllocStringLen
VariantCopy
VariantChangeType
SysAllocString
VariantClear
GetErrorInfo

Sections

.text
Size: 396KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 788KB - Virtual size: 788KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2294ec26e0f642df077620da57363e50

Headers

File Characteristics

Imports

version

bmaframe

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 396KB - Virtual size: 393KB

.rdata Size: 204KB - Virtual size: 203KB

.data Size: 32KB - Virtual size: 53KB

.rsrc Size: 788KB - Virtual size: 788KB

.text
Size: 396KB - Virtual size: 393KB

.rdata
Size: 204KB - Virtual size: 203KB

.data
Size: 32KB - Virtual size: 53KB

.rsrc
Size: 788KB - Virtual size: 788KB