2024-04-19_bcf4f878e1eaf6329ccb4a92bd90b2d3_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-19_bcf4f878e1eaf6329ccb4a92bd90b2d3_icedid
Size

372KB
MD5

bcf4f878e1eaf6329ccb4a92bd90b2d3
SHA1

065d0a4a137295671bbb63686e90b15c47b9ec50
SHA256

4b05306dd9ec08fdb7430268cac1e3029d8634cddaf147fd6f3fcc9c84af7931
SHA512

5a49ee959b8f516ed71d7c9cc7679e2e7aca2365eb6edc0a7997726b9bac1a93dd395003d2e551fdbb693b9792207e04b1291c800eba3adcae9b5dccc97f1203
SSDEEP

6144:nXRGU+vcqf38f5jDzjzlOem5VGBiQkFEahqOn09qpz0tM3Rl:Mjcq6vJaQBiQKJh4Ipphl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-19_bcf4f878e1eaf6329ccb4a92bd90b2d3_icedid

Files

2024-04-19_bcf4f878e1eaf6329ccb4a92bd90b2d3_icedid
.exe windows:4 windows x86 arch:x86

03a154684562bc6c3d1307bbbfdb1800

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
GetSystemTime
GetFileSize
GetFileInformationByHandle
WaitForSingleObject
LoadLibraryA
WinExec
GlobalAlloc
WriteFile
GlobalFree
LocalAlloc
FreeLibrary
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLastError
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
Sleep
LoadResource
LockResource
SizeofResource
SetEnvironmentVariableA
CreateFileA
SetStdHandle
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetOEMCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetTimeZoneInformation
SetUnhandledExceptionFilter
IsBadWritePtr
LCMapStringA
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
CreateThread
ExitThread
TerminateProcess
HeapReAlloc
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
GetFileTime
InterlockedDecrement
MulDiv
GlobalUnlock
GlobalLock
FreeResource
GetVersionExA
lstrlenA
GlobalDeleteAtom
GetCurrentThreadId
LocalFree
FindClose
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GetCurrentThread
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
InterlockedIncrement
SetErrorMode

advapi32

RegCloseKey

user32

FrameRect
DrawFocusRect
ClientToScreen
ScreenToClient
InvalidateRect
RedrawWindow
GetActiveWindow
GetCapture
UnhookWindowsHookEx
GetWindowDC
BeginPaint
EndPaint
GetNextDlgTabItem
IsWindowEnabled
DestroyWindow
SetActiveWindow
GetWindow
PtInRect
GetWindowPlacement
SystemParametersInfoA
IntersectRect
SetWindowPos
GetDlgCtrlID
DeferWindowPos
ReleaseDC
AdjustWindowRectEx
GetMenuItemID
GetSubMenu
GetMenu
IsWindowVisible
GetKeyState
MapWindowPoints
GetMessagePos
GetMessageTime
FillRect
GetLastActivePopup
GetForegroundWindow
IsChild
GetFocus
SendDlgItemMessageA
CallNextHookEx
CheckRadioButton
MoveWindow
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
GetMenuState
SetMenuItemBitmaps
SetRectEmpty
DestroyMenu
SetRect
PostQuitMessage
ValidateRect
TranslateMessage
GetSysColorBrush
GetDCEx
LockWindowUpdate
SetParent
SetCapture
GetParent
WindowFromPoint
DestroyCursor
OffsetRect
InflateRect
CopyRect
GetSysColor
GetTopWindow
GetDC
GetIconInfo
GetCursorPos
GetClientRect
GetWindowRect
SetWindowRgn
EqualRect
MessageBeep
UpdateWindow
KillTimer
SetTimer
IsIconic
GetSystemMenu
RemoveMenu
DrawIcon
EndDialog
SetFocus
GetDlgItem
ShowWindow
GetSystemMetrics
IsWindow
SetForegroundWindow
GetDesktopWindow
GetMenuItemCount
DrawEdge
SetCursor
ReleaseCapture

gdi32

RestoreDC
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
LineTo
MoveToEx
Escape
SaveDC
SetBkMode
GetBkColor
StretchDIBits
PatBlt
SetRectRgn
CreateRectRgnIndirect
CreatePen
GetDeviceCaps
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
CreateRectRgn
CombineRgn
GetPixel
GetStockObject
SetDIBits
CreateDIBSection
GetDIBits
DeleteObject
DeleteDC
SetTextColor
SetBkColor
SelectObject
CreateBitmap
SetPixel
CreatePatternBrush
StretchBlt
FloodFill
ExtFloodFill
CreateSolidBrush
PtVisible
RectVisible

shell32

DragAcceptFiles
SHGetMalloc
DragFinish

comdlg32

CommDlgExtendedError

comctl32

_TrackMouseEvent
ord17
ImageList_Destroy

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

ole32

CoUninitialize
CoInitialize
CoInitializeEx
CoTaskMemFree
CoCreateInstance

oleaut32

VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

winspool.drv

ClosePrinter

Sections

.text
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03a154684562bc6c3d1307bbbfdb1800

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

shell32

comdlg32

comctl32

shlwapi

ole32

oleaut32

winspool.drv

Sections

.text Size: 260KB - Virtual size: 258KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 12KB - Virtual size: 81KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 260KB - Virtual size: 258KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 12KB - Virtual size: 81KB

.rsrc
Size: 36KB - Virtual size: 35KB