2024-04-26_f04515549b8abfdf6e1ed6294babed40_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-04-26_f04515549b8abfdf6e1ed6294babed40_icedid
Size

372KB
MD5

f04515549b8abfdf6e1ed6294babed40
SHA1

df14f6ff28e7a8caba39263a302764624b712532
SHA256

3b5ed4774e49307f563d7fd047a5898d9f338730cd42716a18b27fd927de7312
SHA512

ac1d95198fcf215ea60db7a719ed9e102678d3fc7bc37aacfbb1d6753a1e7ddbd6b763580357a1efb57effd368cb60108eb9e8ebe63be464d865de57b7da1d29
SSDEEP

6144:7433xu20S/3Q7Cdv5ot1lbTEmDWveHS04yHy7XereTX/4tyi75l:ehu2MCO11TEmSURS72sX/W5l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-26_f04515549b8abfdf6e1ed6294babed40_icedid

Files

2024-04-26_f04515549b8abfdf6e1ed6294babed40_icedid
.exe windows:4 windows x86 arch:x86

03a154684562bc6c3d1307bbbfdb1800

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
GetSystemTime
GetFileSize
GetFileInformationByHandle
WaitForSingleObject
LoadLibraryA
WinExec
GlobalAlloc
WriteFile
GlobalFree
LocalAlloc
FreeLibrary
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLastError
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
Sleep
LoadResource
LockResource
SizeofResource
SetEnvironmentVariableA
CreateFileA
SetStdHandle
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetOEMCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetTimeZoneInformation
SetUnhandledExceptionFilter
IsBadWritePtr
LCMapStringA
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
CreateThread
ExitThread
TerminateProcess
HeapReAlloc
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
GetFileTime
InterlockedDecrement
MulDiv
GlobalUnlock
GlobalLock
FreeResource
GetVersionExA
lstrlenA
GlobalDeleteAtom
GetCurrentThreadId
LocalFree
FindClose
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GetCurrentThread
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
InterlockedIncrement
SetErrorMode

advapi32

RegCloseKey

user32

FrameRect
DrawFocusRect
ClientToScreen
ScreenToClient
InvalidateRect
RedrawWindow
GetActiveWindow
GetCapture
UnhookWindowsHookEx
GetWindowDC
BeginPaint
EndPaint
GetNextDlgTabItem
IsWindowEnabled
DestroyWindow
SetActiveWindow
GetWindow
PtInRect
GetWindowPlacement
SystemParametersInfoA
IntersectRect
SetWindowPos
GetDlgCtrlID
DeferWindowPos
ReleaseDC
AdjustWindowRectEx
GetMenuItemID
GetSubMenu
GetMenu
IsWindowVisible
GetKeyState
MapWindowPoints
GetMessagePos
GetMessageTime
FillRect
GetLastActivePopup
GetForegroundWindow
IsChild
GetFocus
SendDlgItemMessageA
CallNextHookEx
CheckRadioButton
MoveWindow
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
GetMenuState
SetMenuItemBitmaps
SetRectEmpty
DestroyMenu
SetRect
PostQuitMessage
ValidateRect
TranslateMessage
GetSysColorBrush
GetDCEx
LockWindowUpdate
SetParent
SetCapture
GetParent
WindowFromPoint
DestroyCursor
OffsetRect
InflateRect
CopyRect
GetSysColor
GetTopWindow
GetDC
GetIconInfo
GetCursorPos
GetClientRect
GetWindowRect
SetWindowRgn
EqualRect
MessageBeep
UpdateWindow
KillTimer
SetTimer
IsIconic
GetSystemMenu
RemoveMenu
DrawIcon
EndDialog
SetFocus
GetDlgItem
ShowWindow
GetSystemMetrics
IsWindow
SetForegroundWindow
GetDesktopWindow
GetMenuItemCount
DrawEdge
SetCursor
ReleaseCapture

gdi32

RestoreDC
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
LineTo
MoveToEx
Escape
SaveDC
SetBkMode
GetBkColor
StretchDIBits
PatBlt
SetRectRgn
CreateRectRgnIndirect
CreatePen
GetDeviceCaps
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
CreateRectRgn
CombineRgn
GetPixel
GetStockObject
SetDIBits
CreateDIBSection
GetDIBits
DeleteObject
DeleteDC
SetTextColor
SetBkColor
SelectObject
CreateBitmap
SetPixel
CreatePatternBrush
StretchBlt
FloodFill
ExtFloodFill
CreateSolidBrush
PtVisible
RectVisible

shell32

DragAcceptFiles
SHGetMalloc
DragFinish

comdlg32

CommDlgExtendedError

comctl32

_TrackMouseEvent
ord17
ImageList_Destroy

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

ole32

CoUninitialize
CoInitialize
CoInitializeEx
CoTaskMemFree
CoCreateInstance

oleaut32

VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

winspool.drv

ClosePrinter

Sections

.text
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03a154684562bc6c3d1307bbbfdb1800

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

shell32

comdlg32

comctl32

shlwapi

ole32

oleaut32

winspool.drv

Sections

.text Size: 260KB - Virtual size: 257KB

.rdata Size: 60KB - Virtual size: 58KB

.data Size: 12KB - Virtual size: 81KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 260KB - Virtual size: 257KB

.rdata
Size: 60KB - Virtual size: 58KB

.data
Size: 12KB - Virtual size: 81KB

.rsrc
Size: 36KB - Virtual size: 35KB