2024-04-21_23ac56e0f31c541e2b32aabfb0ead81f_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-21_23ac56e0f31c541e2b32aabfb0ead81f_icedid
Size

2.4MB
MD5

23ac56e0f31c541e2b32aabfb0ead81f
SHA1

1156e8da7540936225a89ac816a940557895e9ec
SHA256

985d86ee1e61333f3e5776cd53d882523ebc0535c41d8ea75cf320fba7a81e77
SHA512

29d2b8b9618c000aaf40b0136ff0bc9cf9ae629c37cef8ff8242a0f595129db9017cb0a631c073b6d1c331cda712f7550192be89be2eedef5b10c70201fe107e
SSDEEP

49152:LrZ/8yhVjjZ9bOIX/HLD3GA9MugQSIxgf8POhbQUvAxbN97KDZ9v:XZUyhVjjn6SHLD3GA5SFf8POhPAxbN9A

Score

1^/10

Malware Config

Signatures

Files

2024-04-21_23ac56e0f31c541e2b32aabfb0ead81f_icedid
.exe windows:6 windows x86 arch:x86

663baceee14d040141b2ad67727f13da

Code Sign

04:5f:7b:84:0f:b7:4d:1c:d3:fd:99:20:33:5a:93:a0
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

20/04/2015, 00:00

Not After

24/04/2018, 12:00

Subject

SERIALNUMBER=C1067879,CN=Logitech Inc,O=Logitech Inc,POSTALCODE=94560,STREET=7600 Gateway Blvd,L=Newark,ST=California,C=US,1.3.6.1.4.1.311.60.2.1.2=#130a43616c69666f726e6961,1.3.6.1.4.1.311.60.2.1.3=#13025553,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

21:06:1e:82:6a:4b:71:bc:ed:b4:f6:7d:84:bb:d5:e2:ed:56:25:8d
Signer

Actual PE Digest

21:06:1e:82:6a:4b:71:bc:ed:b4:f6:7d:84:bb:d5:e2:ed:56:25:8d

Digest Algorithm

sha1

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\BuildAgent\work\c9b3332891850bac\Src\Applets\Release\x86\LCDMovieViewer.pdb

Imports

kernel32

GetStringTypeW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
IsValidCodePage
GetTimeZoneInformation
LCMapStringW
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
TerminateProcess
GetCPInfo
GetOEMCP
GetACP
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
HeapQueryInformation
GetModuleHandleExW
ExitProcess
RtlUnwind
IsProcessorFeaturePresent
IsDebuggerPresent
GetSystemTimeAsFileTime
ExitThread
GetCommandLineW
VirtualProtect
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
lstrcpyW
GetWindowsDirectoryW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalGetAtomNameW
GlobalFindAtomW
GetSystemDirectoryW
InitializeCriticalSectionAndSpinCount
EncodePointer
GlobalAddAtomW
ResumeThread
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GlobalDeleteAtom
GetThreadLocale
LoadLibraryA
LoadLibraryExW
GetModuleHandleA
GetModuleFileNameW
OutputDebugStringA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
FileTimeToSystemTime
FindNextFileW
FileTimeToLocalFileTime
SetLastError
CopyFileW
CreateThread
GetThreadPriority
GetProcAddress
GetVersionExW
GetCurrentThread
DuplicateHandle
GetSystemInfo
VirtualAlloc
GetCurrentProcess
LoadLibraryW
FreeLibrary
GetCurrentThreadId
DecodePointer
HeapSize
RaiseException
InitializeCriticalSectionEx
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
FormatMessageW
GetModuleHandleW
WaitForMultipleObjects
ReleaseMutex
lstrcmpW
GetCurrentProcessId
lstrcmpiW
OutputDebugStringW
ResetEvent
OpenEventW
GetTickCount
GetLastError
CreateMutexW
LocalFree
WideCharToMultiByte
LocalAlloc
FreeResource
FindResourceExW
SetThreadLocale
GetUserDefaultLangID
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrlenW
Sleep
MultiByteToWideChar
WaitForSingleObject
SetThreadPriority
CreateEventW
WaitForSingleObjectEx
ReadDirectoryChangesW
SetEvent
FindClose
FindFirstFileW
CreateFileW
CloseHandle
GlobalUnlock
GlobalSize
GlobalFree
GlobalLock
GlobalAlloc
FindResourceW
LoadResource
LockResource
SizeofResource
MulDiv

user32

SetCapture
CharNextW
RealChildWindowFromPoint
DeleteMenu
SystemParametersInfoW
CopyImage
LoadCursorW
GetSysColorBrush
InflateRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
OffsetRect
IntersectRect
SetRectEmpty
InvalidateRect
InsertMenuItemW
DestroyMenu
CreatePopupMenu
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
BringWindowToTop
IsIconic
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassNameW
GetClassLongW
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
GetWindowThreadProcessId
MessageBoxW
SetCursor
ShowOwnedPopups
SetMenuDefaultItem
SetWindowsHookExW
CopyAcceleratorTableW
ValidateRect
GetKeyState
IsWindowVisible
TranslateMessage
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsDialogMessageW
SetWindowLongW
GetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
IsWindowEnabled
GetFocus
SetFocus
GetDlgCtrlID
CheckDlgButton
GetDlgItem
MoveWindow
IsWindow
MapDialogRect
GetWindow
GetParent
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
UnhookWindowsHookEx
GetSystemMetrics
CharUpperW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
CopyIcon
GetDoubleClickTime
SetClassLongW
DrawTextExW
FindWindowW
ShowWindow
SetForegroundWindow
ReleaseDC
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
RegisterWindowMessageW
MsgWaitForMultipleObjects
DispatchMessageW
GetQueueStatus
PeekMessageW
PostThreadMessageW
UnregisterClassW
DrawTextW
FillRect
SetTimer
KillTimer
LoadIconW
LoadStringW
PostMessageW
GetLastActivePopup
GetWindowRect
SendMessageW
EnableWindow
InvalidateRgn
SetRect
IsRectEmpty
DrawIcon
GetWindowRgn
DestroyCursor
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
UpdateWindow
GetDC
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
FrameRect
CharUpperBuffW
GetCursorPos
GetNextDlgGroupItem
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
DrawFocusRect
LockWindowUpdate
WindowFromPoint
GetMenuDefaultItem
RegisterClipboardFormatW
SetParent
GetSystemMenu
UnionRect
MapVirtualKeyW
GetKeyNameTextW
GetMenuItemInfoW
SendDlgItemMessageA
CallNextHookEx
MessageBeep
ModifyMenuW

gdi32

CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateRectRgnIndirect
GetMapMode
CreateHatchBrush
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
GetTextExtentPoint32W
GetTextMetricsW
CreatePatternBrush
GetNearestPaletteIndex
GetPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
CreateCompatibleBitmap
GetDeviceCaps
CreateDCW
CopyMetaFileW
BitBlt
SetBkColor
CreateRectRgn
GetSystemPaletteEntries
GdiFlush
GetBitmapBits
CreateBitmap
DeleteObject
SetMapMode
SetTextColor
SetBkMode
CreateFontIndirectW
GetObjectW
GetStockObject
DeleteDC
SelectObject
CreateCompatibleDC
CreatePalette
CreatePen
PatBlt
CreateDIBSection

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegOpenKeyExA
RegQueryValueW
RegEnumKeyW
RegEnumValueW
RegEnumKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
SetSecurityDescriptorDacl
InitializeAcl
InitializeSecurityDescriptor
AddAccessAllowedAce
ConvertStringSidToSidW
GetSecurityDescriptorDacl
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegQueryValueExA

shell32

SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHGetFileInfoW
DragQueryFileW
DragFinish
SHAppBarMessage
SHBrowseForFolderW
SHGetDesktopFolder
SHGetSpecialFolderLocation
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
StrFormatKBSizeW
PathRemoveFileSpecW

uxtheme

GetWindowTheme
GetThemeSysColor
DrawThemeText
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
IsAppThemed
GetThemePartSize
CloseThemeData
OpenThemeData

ole32

CoUninitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoInitialize
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
CoFreeUnusedLibraries
OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CLSIDFromString
CLSIDFromProgID
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
OleUninitialize
OleInitialize

oleaut32

VariantChangeType
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocStringLen
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
SysFreeString
VariantClear
VariantInit

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipClosePathFigure
GdipAddPathLineI
GdipAddPathArcI
GdipCreatePath
GdipCreateSolidFill
GdipTransformPath
GdipTranslateMatrix
GdipDeleteMatrix
GdipCreateMatrix
GdipFillPath
GdipDeleteBrush
GdipCreateLineBrushFromRectI
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeletePath
GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromStream
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdipDrawImageRectI

winmm

timeSetEvent
timeEndPeriod
timeGetTime
timeBeginPeriod
timeKillEvent
PlaySoundW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 643KB - Virtual size: 643KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

663baceee14d040141b2ad67727f13da

Code Sign

04:5f:7b:84:0f:b7:4d:1c:d3:fd:99:20:33:5a:93:a0Certificate

Extended Key Usages

Key Usages

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66Certificate

Extended Key Usages

Key Usages

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5cCertificate

Extended Key Usages

Key Usages

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1bCertificate

Extended Key Usages

Key Usages

21:06:1e:82:6a:4b:71:bc:ed:b4:f6:7d:84:bb:d5:e2:ed:56:25:8dSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

winmm

oleacc

imm32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 340KB - Virtual size: 339KB

.data Size: 27KB - Virtual size: 58KB

.rsrc Size: 643KB - Virtual size: 643KB

04:5f:7b:84:0f:b7:4d:1c:d3:fd:99:20:33:5a:93:a0
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

21:06:1e:82:6a:4b:71:bc:ed:b4:f6:7d:84:bb:d5:e2:ed:56:25:8d
Signer

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 340KB - Virtual size: 339KB

.data
Size: 27KB - Virtual size: 58KB

.rsrc
Size: 643KB - Virtual size: 643KB