2024-04-26_ac91e005ea6a2929f7a5fa9076bf4019_bkransomware_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-26_ac91e005ea6a2929f7a5fa9076bf4019_bkransomware_icedid
Size

4.4MB
MD5

ac91e005ea6a2929f7a5fa9076bf4019
SHA1

1d5b455da286f6c4374ac2b4c058536d96eda00c
SHA256

f38e912e34f07385bf1120750876793de9ae17ea5f82c7737527d78326c8e224
SHA512

8470fbde93cc90e78012252cfbc1a6b828b35ca1beb2f0446eb8bb10c2533362f11166df5de8258e17a496cf643e5cd3f864bff7b11dc255fa0741e10a943a10
SSDEEP

98304:fglIjRvAN2MTLX6K+W6EDJ/zJh3188Wb3PjIj+qN1e72aD1eVybid7ikT:+NJJJJh310bkj+qSxDgrdWkT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-26_ac91e005ea6a2929f7a5fa9076bf4019_bkransomware_icedid

Files

2024-04-26_ac91e005ea6a2929f7a5fa9076bf4019_bkransomware_icedid
.exe windows:5 windows x86 arch:x86

27aa2c9a1836ed46b603eb6f6501bfda

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetFileType
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
SetStdHandle
VirtualQuery
GetSystemTimeAsFileTime
GetSystemInfo
HeapQueryInformation
IsProcessorFeaturePresent
IsDebuggerPresent
ExitThread
CreateThread
GetModuleHandleExW
ExitProcess
RtlUnwind
GetCommandLineW
FindResourceExW
GetProfileIntW
SearchPathW
GetWindowsDirectoryW
GetTempPathW
GetTempFileNameW
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
SetErrorMode
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
FileTimeToSystemTime
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
DeleteFileW
GetCurrentDirectoryW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
ResumeThread
SetThreadPriority
WaitForSingleObject
CloseHandle
CopyFileW
FormatMessageW
LocalFree
GlobalSize
GlobalFree
GetTickCount
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
MultiByteToWideChar
lstrcmpA
GlobalAlloc
GetVersionExW
GetCurrentThread
WideCharToMultiByte
GlobalGetAtomNameW
SizeofResource
GetCurrentProcessId
MulDiv
GlobalUnlock
GlobalLock
GlobalFindAtomW
GlobalAddAtomW
FindResourceW
LoadLibraryW
lstrcmpW
GlobalDeleteAtom
LockResource
LoadResource
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
GetLastError
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
HeapReAlloc
VirtualProtect
LoadLibraryA
VirtualAlloc
GetProcAddress
GetThreadLocale
SetLastError
IsBadReadPtr
GetProcessHeap
VirtualFree
HeapFree
HeapAlloc
FreeLibrary
GetNativeSystemInfo
Sleep
LoadLibraryExA

user32

ModifyMenuW
CopyIcon
FrameRect
WaitMessage
GetIconInfo
HideCaret
InvertRect
GetDoubleClickTime
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
DestroyCursor
GetComboBoxInfo
GetWindowRgn
DrawIcon
SetWindowContextHelpId
RegisterClipboardFormatW
PostQuitMessage
SystemParametersInfoW
SetParent
IsRectEmpty
DeleteMenu
AppendMenuW
GetSystemMenu
IsZoomed
GetSystemMetrics
ReuseDDElParam
UnpackDDElParam
LoadImageW
DestroyIcon
GetWindowThreadProcessId
GetDesktopWindow
OffsetRect
IntersectRect
SetRectEmpty
SetCursor
InvalidateRect
InsertMenuItemW
DestroyMenu
CreatePopupMenu
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
GetActiveWindow
BringWindowToTop
IsIconic
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
MoveWindow
ShowWindow
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
FillRect
ClientToScreen
EndPaint
BeginPaint
CharUpperBuffW
GetWindowDC
DrawFrameControl
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetParent
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
SendMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DrawEdge
MonitorFromPoint
EnableScrollBar
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetClassLongW
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawIconEx
ReleaseDC
MapDialogRect
DispatchMessageW
RegisterWindowMessageW
LoadCursorW
EnableWindow
UnregisterClassW
UpdateWindow
UpdateLayeredWindow
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
SetWindowRgn
GetAsyncKeyState
CharUpperW
TrackMouseEvent
EnumDisplayMonitors
SetLayeredWindowAttributes
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
PostThreadMessageW
LockWindowUpdate
GetDCEx
SetCapture
SetRect
WindowFromPoint
KillTimer
SetTimer
UnionRect
MapVirtualKeyW
GetKeyNameTextW
RealChildWindowFromPoint
GetSysColorBrush
SendDlgItemMessageA
CopyImage
InflateRect
GetMenuItemInfoW
ShowOwnedPopups
TranslateMessage
GetMessageW
GetCursorPos
RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
GetDC
DrawStateW
DrawFocusRect

gdi32

GetObjectW
BitBlt
CreateBitmap
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetDeviceCaps
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
SetTextColor
ScaleWindowExtEx
CreateCompatibleBitmap
CreateFontW
GetCharWidthW
StretchDIBits
GetTextExtentPoint32W
GetTextMetricsW
CopyMetaFileW
CreateDCW
CreateFontIndirectW
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
OffsetRgn
Rectangle
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RoundRect
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
SetPixelV
GetTextFaceW
ScaleViewportExtEx
DeleteDC
SetBkColor

msimg32

AlphaBlend
TransparentBlt

shell32

SHBrowseForFolderW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
SHGetFileInfoW
DragFinish
DragQueryFileW

comctl32

InitCommonControlsEx

uxtheme

IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
IsAppThemed
DrawThemeText
OpenThemeData
CloseThemeData
GetThemePartSize
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
DrawThemeBackground

ole32

CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoGetClassObject
CoDisconnectObject
ReleaseStgMedium
RevokeDragDrop
DoDragDrop
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
CoInitializeEx
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
OleDuplicateData

oleaut32

SysStringLen
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
LoadTypeLi
VariantCopy
VarBstrFromDate
SysFreeString
VariantChangeType
SysAllocString
VariantClear
SysAllocStringLen
VariantInit

oledlg

OleUIBusyW

gdiplus

GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipBitmapUnlockBits
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 458KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27aa2c9a1836ed46b603eb6f6501bfda

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

shell32

comctl32

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 326KB - Virtual size: 326KB

.data Size: 2.3MB - Virtual size: 2.3MB

.rsrc Size: 458KB - Virtual size: 457KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 326KB - Virtual size: 326KB

.data
Size: 2.3MB - Virtual size: 2.3MB

.rsrc
Size: 458KB - Virtual size: 457KB