2024-05-08_bf255f3490cfdd4b01a1efad4de174d9_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-05-08_bf255f3490cfdd4b01a1efad4de174d9_icedid
Size

692KB
MD5

bf255f3490cfdd4b01a1efad4de174d9
SHA1

d275c95f83e24a942f1120afb425193551a223ec
SHA256

81ad6086a4bedf6be4287d4345f3b5cc054b234486619d58e74dd945b2676eef
SHA512

6397d20fc7b2846c68c462af59b520d4a4a1ad848ce00b898698035b303e5590da35fef14c4e1f8c5c2d96d32a498906891fda8ef6d33bdb30e27d38505a9d91
SSDEEP

12288:s+9IpsuQLSFzLqGrDjdX4KOAoRBuprHi0wjFGBNwY+HlPJm:s+9huZF/hPlxO5RBupf6GfwYkpg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-08_bf255f3490cfdd4b01a1efad4de174d9_icedid

Files

2024-05-08_bf255f3490cfdd4b01a1efad4de174d9_icedid
.exe windows:5 windows x86 arch:x86

573d700b496b39509f3a30e4d45bdc66

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
ExitProcess
HeapSize
GetACP
IsValidCodePage
HeapCreate
VirtualFree
GetTimeZoneInformation
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
VirtualQuery
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetTickCount
SetErrorMode
GetFileSizeEx
LocalFileTimeToFileTime
FileTimeToLocalFileTime
CreateFileA
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiA
GetStringTypeExA
DeleteFileA
MoveFileA
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GlobalFlags
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
InterlockedIncrement
GetModuleHandleW
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetVersionExA
FreeResource
LoadLibraryA
GlobalGetAtomNameA
GlobalAddAtomA
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetCurrentProcessId
GetModuleFileNameA
GetCurrentThreadId
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
GetLastError
SetLastError
Sleep
CloseHandle
OpenFileMappingA
MapViewOfFile
CreateFileMappingA
CreateDirectoryA
UnmapViewOfFile
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
FindResourceA
LoadResource
LockResource
QueryPerformanceCounter
SizeofResource
GetProcessHeap

user32

CheckMenuItem
RegisterWindowMessageA
IsChild
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetClientRect
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
IsZoomed
PtInRect
GetDC
GetSystemMetrics
ReleaseDC
GetClassNameA
GetSysColor
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
WinHelpA
EqualRect
LoadIconA
SetCursor
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
InvalidateRect
IsIconic
InsertMenuItemA
CreatePopupMenu
GetClassInfoA
DestroyIcon
OffsetRect
RegisterClipboardFormatA
CopyRect
GetMenu
BringWindowToTop
PostMessageA
SetMenu
GetDesktopWindow
TranslateAcceleratorA
GetWindowTextLengthA
GetWindowTextA
GetFocus
SetWindowPos
SetFocus
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
IsWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
GetDlgItem
GetWindow
UnhookWindowsHookEx
GetWindowThreadProcessId
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetMenuState
ClientToScreen
LockWindowUpdate
GetDCEx
WindowFromPoint
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
SetCursorPos
SetTimer
GetWindowRect
LoadBitmapA
UpdateWindow
EnableWindow
FindWindowA
SendMessageA
GetTabbedTextExtentA
PostThreadMessageA
CreateMenu
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
SetRectEmpty
CharUpperA
UnregisterClassA
GetSysColorBrush
DestroyCursor
LoadCursorA
SetCapture
SetWindowRgn
DrawIcon
EndPaint
BeginPaint
GetWindowDC
EnableMenuItem
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
SetRect
KillTimer
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
PostQuitMessage
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetParent
GetSystemMenu
DeleteMenu
IsRectEmpty
GetMenuItemInfoA
InflateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
IntersectRect
ModifyMenuA

gdi32

CreateBitmap
CreateFontIndirectA
BitBlt
ExtTextOutA
DPtoLP
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetBkColor
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
GetStockObject
CreatePen
CreateSolidBrush
CreateEllipticRgn
LPtoDP
Ellipse
GetViewportOrgEx
Rectangle
PatBlt
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetTextExtentPointA
GetWindowOrgEx
GetClipBox
SetTextColor
GetTextExtentPoint32A
GetTextMetricsA
StretchDIBits
DeleteDC
GetObjectA
CreateFontA
SelectObject
GetCharWidthA
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
CreateDCA
SetWindowOrgEx
GetDeviceCaps

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
GetJobA
OpenPrinterA
ClosePrinter

advapi32

GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueA
RegCloseKey
RegCreateKeyA

shell32

DragFinish
ExtractIconA
SHGetFileInfoA
DragQueryFileA

shlwapi

PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord8

ole32

OleFlushClipboard
CoRegisterMessageFilter
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoInitializeEx
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
CoUninitialize

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString
SysFreeString

ws2_32

WSASetLastError
WSACleanup
WSAStartup

Sections

.text
Size: 497KB - Virtual size: 496KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 763.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

573d700b496b39509f3a30e4d45bdc66

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

ws2_32

Sections

.text Size: 497KB - Virtual size: 496KB

.rdata Size: 99KB - Virtual size: 98KB

.data Size: 12KB - Virtual size: 763.0MB

.rsrc Size: 82KB - Virtual size: 82KB

.text
Size: 497KB - Virtual size: 496KB

.rdata
Size: 99KB - Virtual size: 98KB

.data
Size: 12KB - Virtual size: 763.0MB

.rsrc
Size: 82KB - Virtual size: 82KB