2024-04-29_ee86fbfd9450ba1a31a9b38cbf37e445_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-29_ee86fbfd9450ba1a31a9b38cbf37e445_icedid
Size

4.0MB
MD5

ee86fbfd9450ba1a31a9b38cbf37e445
SHA1

11b397ab116e89a4c438020d2bce4d44b5c246ca
SHA256

c7f1a7494132884d30b2f7b84836e3267061c183bf1b5572aeeca3c85aa4a6f8
SHA512

2b1eb6b91f184374224f8ab8253aad2dcd05677d8c2ab267b60546cbb95e2bf874bf40d5f20cc6b62d505534fde3963a5e2c25e5d400ba57df10cc0b7902c6de
SSDEEP

98304:XOeVYE08WuTn+p4dOLmQygLQmDikghJwzt9uHWHPQmWT:XOeVYE08WuTwLVfG9vwaWHPQb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-04-29_ee86fbfd9450ba1a31a9b38cbf37e445_icedid

Files

2024-04-29_ee86fbfd9450ba1a31a9b38cbf37e445_icedid
.exe windows:5 windows x86 arch:x86

6d75a494d9cd94c720e550d3b5e3c87a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetSystemInfo
GetFileType
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetCommandLineA
RtlUnwind
GetStringTypeW
LCMapStringW
CompareStringW
OutputDebugStringW
GetStdHandle
GetDateFormatW
GetTimeFormatW
ReadConsoleW
SetFilePointerEx
WriteConsoleW
GetDriveTypeW
FindFirstFileExA
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
GetTempFileNameA
Sleep
GetProfileIntA
GetTickCount
SearchPathA
GetWindowsDirectoryA
FindResourceExW
GetTempPathA
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetCurrentDirectoryA
GetACP
GetCPInfo
GetOEMCP
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
VerifyVersionInfoA
VerSetConditionMask
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileA
FileTimeToLocalFileTime
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
DeleteFileA
CreateFileA
GetCurrentProcessId
lstrcmpA
GetCurrentThread
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
ResumeThread
SetThreadPriority
WaitForSingleObject
SetEvent
CloseHandle
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
CopyFileA
FormatMessageA
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
GetVersionExA
FindFirstFileA
GetFileAttributesA
FindClose
lstrlenA
lstrcpyA
FindResourceA
FreeResource
MultiByteToWideChar
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
GetProcessHeap
HeapSize
LockResource
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
MulDiv
GetModuleFileNameA
WideCharToMultiByte
FindResourceW
SizeofResource
LoadResource
CreateFileW
GetCurrentDirectoryW

user32

GetSysColorBrush
SetLayeredWindowAttributes
GetIconInfo
DrawIconEx
CopyImage
LoadImageA
DestroyIcon
IsRectEmpty
DrawFocusRect
WindowFromPoint
GetNextDlgGroupItem
SetRectEmpty
CharUpperA
MapVirtualKeyA
GetKeyNameTextA
SystemParametersInfoA
OffsetRect
IsZoomed
GetWindowThreadProcessId
ShowOwnedPopups
TranslateMessage
GetMessageA
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
IsWindowEnabled
SendDlgItemMessageA
IsDlgButtonChecked
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
MessageBoxA
AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
EndPaint
DestroyMenu
LoadCursorW
IntersectRect
EnableScrollBar
SendMessageA
EnableWindow
LoadAcceleratorsA
TranslateAcceleratorA
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
UnhookWindowsHookEx
RemoveMenu
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
IsWindow
LoadCursorA
DrawStateA
RealChildWindowFromPoint
GetAsyncKeyState
MapDialogRect
IsClipboardFormatAvailable
SetRect
DeleteMenu
WaitMessage
BringWindowToTop
LoadMenuA
CreatePopupMenu
InsertMenuItemA
DrawFrameControl
SetCursor
UnpackDDElParam
ReuseDDElParam
SetParent
MonitorFromPoint
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
LoadImageW
GetSysColor
GetClientRect
EqualRect
GetKeyState
GetWindowLongA
SetWindowLongA
GetParent
IsWindowVisible
GetDC
ReleaseDC
InvalidateRect
GetWindowRect
PostMessageA
UnregisterClassA
CopyRect
GetDlgItem
CheckDlgButton
IsIconic
GetSystemMetrics
GetSystemMenu
AppendMenuA
DrawIcon
LoadBitmapW
LoadIconW
GetFocus
CheckRadioButton
FillRect
ScreenToClient
PostQuitMessage
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
ShowScrollBar
SetCapture
ReleaseCapture
RedrawWindow
UpdateLayeredWindow
GetCursorPos
ClientToScreen
MapWindowPoints
InflateRect
PtInRect
GetDesktopWindow
MessageBeep
SetTimer
KillTimer
UpdateWindow
SetCursorPos
GetMenuDefaultItem
SetMenuDefaultItem
CharUpperBuffA
GetMenuItemInfoA
EnumDisplayMonitors
CopyIcon
FrameRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsCharLowerA
MapVirtualKeyExA
SubtractRect
GetUpdateRect
HideCaret
InvertRect
GetDoubleClickTime
CreateMenu
DestroyCursor
GetComboBoxInfo
GetWindowRgn
UnionRect
DrawEdge
SetClassLongA
LockWindowUpdate
RegisterClipboardFormatA
EnumChildWindows
CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
GetKeyboardLayout
PostThreadMessageA
ModifyMenuA
TrackMouseEvent
LoadMenuW
SetWindowRgn
NotifyWinEvent

gdi32

CreateBitmap
RoundRect
CopyMetaFileA
CreateDCA
CreateHatchBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
Polygon
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetTextMetricsA
CombineRgn
SetRectRgn
DPtoLP
GetDIBits
RealizePalette
SetPixel
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
GetRgnBox
OffsetRgn
GetTextColor
CreateEllipticRgn
Ellipse
GetBkColor
CreatePolygonRgn
Polyline
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
LPtoDP
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetTextFaceA
SetPixelV
SelectObject
Rectangle
GetTextExtentPoint32A
BitBlt
StretchBlt
CreateCompatibleDC
CreatePatternBrush
DeleteDC
GetDeviceCaps
CreatePen
GetObjectA
CreateFontIndirectA
SetBkMode
SetBkColor
DeleteObject
CreateBrushIndirect
CreateSolidBrush
ScaleViewportExtEx
GetStockObject
CreateFontA

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetFileInfoA
DragQueryFileA
ShellExecuteA
SHGetSpecialFolderLocation
SHGetMalloc
SHAppBarMessage
DragFinish

comctl32

ImageList_GetImageCount

shlwapi

PathFindFileNameA
PathFindExtensionA
PathIsUNCA
PathStripToRootA
PathRemoveFileSpecW
StrFormatKBSizeA

uxtheme

GetWindowTheme
GetThemeColor
DrawThemeParentBackground
IsAppThemed
DrawThemeText
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
GetCurrentThemeName
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor

ole32

CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitializeEx
CoCreateGuid
CoUninitialize
CoInitialize
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree

oleaut32

LoadTypeLi
VariantCopy
SysAllocString
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
VarBstrFromDate
SysFreeString
VarUdateFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime

gdiplus

GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCreateFromHDC

secur32

GetUserNameExA

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 688KB - Virtual size: 688KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 157KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 249KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d75a494d9cd94c720e550d3b5e3c87a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

secur32

oleacc

imm32

winmm

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.rdata Size: 688KB - Virtual size: 688KB

.data Size: 157KB - Virtual size: 410KB

.rsrc Size: 249KB - Virtual size: 248KB

.text
Size: 2.9MB - Virtual size: 2.9MB

.rdata
Size: 688KB - Virtual size: 688KB

.data
Size: 157KB - Virtual size: 410KB

.rsrc
Size: 249KB - Virtual size: 248KB