2024-05-09_7ff90d980d81dcc28e2c12edbfac5173_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-09_7ff90d980d81dcc28e2c12edbfac5173_icedid
Size

1.4MB
MD5

7ff90d980d81dcc28e2c12edbfac5173
SHA1

d4665c60943fbbb8634935f63f48c2216891503c
SHA256

7c789ed93e949718f19cc2e16cc7cdc94f4ed9f97b8462353f44dfc1ebb9dad5
SHA512

e107c3dc101e92edcac09937d87acf574393f5233ad2dff333134a6a2a1fe35f84aa84a7c93f5eb56048bee02bb484b988e430b6a937993fd61b6d1555f28904
SSDEEP

24576:PKsJkBhnIEGlt5eDEnWBdOz1um7JLeohlu0yHzqy:A1/EnWXQomtLe6u0yHz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-09_7ff90d980d81dcc28e2c12edbfac5173_icedid

Files

2024-05-09_7ff90d980d81dcc28e2c12edbfac5173_icedid
.exe windows:5 windows x86 arch:x86

6fbb8906732f06dadccdf491778dc876

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

audiocdgrabber

GetAspiLibAspiError
GetAspiLibError
GetCDList
GetCDHandle
ModifyCDParms
ReadTOC
CloseCDHandle
ReadCDAudioLBA

kernel32

GetFileAttributesW
GetFileSizeEx
GetFileTime
GlobalFlags
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedIncrement
SetErrorMode
FindResourceExW
GetStartupInfoW
RtlUnwind
GetSystemTimeAsFileTime
RaiseException
HeapAlloc
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitProcess
HeapReAlloc
WriteConsoleW
GetFileType
GetStdHandle
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
GetProcessHeap
ExitThread
VirtualAlloc
VirtualQuery
SetStdHandle
HeapSize
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapCreate
VirtualFree
GetCPInfo
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
GetDateFormatA
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetFileAttributesA
WriteConsoleA
GetConsoleOutputCP
SetEnvironmentVariableA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
GetLastError
CreateSemaphoreW
SizeofResource
LockResource
LoadResource
FindResourceW
CreateDirectoryW
MultiByteToWideChar
FreeLibrary
GetProcAddress
LoadLibraryW
CreateFileW
WaitForMultipleObjects
GlobalAlloc
ResumeThread
InitializeCriticalSection
GetModuleHandleW
SetLastError
Sleep
WaitForSingleObject
WritePrivateProfileStringW
GetPrivateProfileIntW
TerminateProcess
GetCurrentProcess
GlobalFree
GetPrivateProfileStringW
GetDriveTypeW
GetTickCount
GetModuleFileNameW
GetSystemDefaultLCID
GetVersion
lstrcpyW
lstrlenW
WideCharToMultiByte
FileTimeToLocalFileTime
FileTimeToSystemTime
VirtualProtect
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
WinExec
lstrcatW
GetWindowsDirectoryW
LocalFree
SetEndOfFile
UnlockFile
FormatMessageW
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetThreadLocale
GetModuleHandleA
InterlockedDecrement
lstrlenA
GlobalFindAtomW
GetVersionExW
CompareStringW
LoadLibraryA
MulDiv
GlobalUnlock
FreeResource
GetCurrentProcessId
ReadFile
GlobalAddAtomW
CreateEventW
SuspendThread
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpW
SetEvent
CreateThread
SetThreadPriority
GetVersionExA
GetEnvironmentVariableA
ResetEvent
CreateEventA
FormatMessageA
QueryPerformanceCounter
QueryPerformanceFrequency
GetACP
GetLocaleInfoW
GetSystemInfo
SetPriorityClass
TerminateThread
GetFileSize
GetTimeFormatA

user32

CharNextW
CopyAcceleratorTableW
IsRectEmpty
InvalidateRgn
GetNextDlgGroupItem
UnregisterClassW
RegisterClipboardFormatW
PostThreadMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
TrackPopupMenu
SetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
DefWindowProcW
IntersectRect
SystemParametersInfoA
SetWindowContextHelpId
MapDialogRect
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetNextDlgTabItem
EndDialog
SetRectEmpty
GetWindowThreadProcessId
IsWindowEnabled
MessageBoxW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
CheckMenuItem
PostQuitMessage
GetWindowPlacement
SetWindowPlacement
ReleaseCapture
SetClassLongW
GetFocus
SetCapture
GetCapture
RedrawWindow
MoveWindow
SetRect
UnionRect
GetKeyState
DestroyIcon
IsZoomed
EqualRect
CopyRect
IsMenu
AdjustWindowRectEx
GetDlgItem
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetClassNameW
GetClassLongW
GetWindowRgn
GetWindowLongW
GetScrollInfo
MapWindowPoints
IsWindowVisible
SetWindowRgn
OffsetRect
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetIconInfo
FillRect
LoadCursorW
CopyIcon
GetSysColor
GetParent
ReleaseDC
GetDC
GetWindowRect
InflateRect
PtInRect
SetCursor
SetWindowLongW
CallWindowProcW
MessageBeep
GetSysColorBrush
RegisterWindowMessageW
WindowFromPoint
GetAsyncKeyState
CharUpperW
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
DestroyMenu
SetWindowTextW
IsDialogMessageW
GetDlgCtrlID
SetWindowPos
TranslateAcceleratorW
GetMessagePos
RemovePropW
SetPropW
GetMenu
GetSystemMetrics
LoadAcceleratorsW
LoadIconW
EnableWindow
KillTimer
SetTimer
InvalidateRect
UpdateWindow
ScreenToClient
GetClientRect
GetSystemMenu
PostMessageW
SendMessageW
CheckMenuRadioItem
LoadMenuW
GetSubMenu
GetMenuItemID
GetMenuItemCount
SetMenuDefaultItem
EnableMenuItem
AppendMenuW
DeleteMenu
DrawIcon
GetDesktopWindow
GetWindow
IsWindow
GetPropW
IsIconic
ShowWindow
SetForegroundWindow
GetLastActivePopup
LoadImageW

gdi32

TextOutW
ExtTextOutW
Escape
CreateBitmap
CreatePolygonRgn
CreateRectRgn
CreateRectRgnIndirect
SetRectRgn
CombineRgn
OffsetRgn
FillRgn
CreateSolidBrush
CreateFontW
PatBlt
SelectObject
GetCharWidthW
DeleteDC
StretchDIBits
GetTextMetricsW
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
SaveDC
RestoreDC
SetBkMode
BitBlt
SetMapMode
ExcludeClipRect
IntersectClipRect
RectVisible
SelectClipRgn
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
GetTextColor
GetRgnBox
EnumFontFamiliesExW
PtVisible
LPtoDP
DPtoLP
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
GetPixel
GetTextExtentPoint32W
GetObjectW
CreateFontIndirectW
GetStockObject

msimg32

GradientFill

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegQueryValueW
RegOpenKeyExW
GetUserNameW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegCloseKey

shell32

SHGetFolderPathW
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetDesktopFolder
ShellExecuteW

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFileExistsW

oledlg

OleUIBusyW

ole32

CoUninitialize
CoCreateInstance
CoInitialize
CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantCopy
SysAllocString
SafeArrayDestroy
SystemTimeToVariantTime
VariantTimeToSystemTime
OleCreateFontIndirect
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString
SysAllocStringLen

ws2_32

htons
inet_addr
WSASetLastError
WSACleanup
WSAStartup
gethostbyname
gethostname
closesocket
WSAGetLastError
connect
recv
send
socket
select

winmm

waveInMessage
waveOutMessage
waveInGetNumDevs
waveOutGetNumDevs
waveInPrepareHeader
waveOutPrepareHeader
waveOutReset
waveInReset
waveOutPause
waveInStart
waveOutRestart
waveOutGetPosition
waveOutWrite
waveInAddBuffer
waveInUnprepareHeader
waveOutUnprepareHeader
waveInClose
waveOutClose
waveOutGetDevCapsA
waveInGetDevCapsA
waveOutOpen
waveOutGetErrorTextA
waveInOpen
waveInGetErrorTextA
timeGetTime
mciGetErrorStringW
mciSendCommandW

Sections

.text
Size: 931KB - Virtual size: 931KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 279KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 234KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fbb8906732f06dadccdf491778dc876

Headers

DLL Characteristics

File Characteristics

Imports

audiocdgrabber

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

ws2_32

winmm

Sections

.text Size: 931KB - Virtual size: 931KB

.rdata Size: 279KB - Virtual size: 279KB

.data Size: 25KB - Virtual size: 119KB

.rsrc Size: 234KB - Virtual size: 234KB

.text
Size: 931KB - Virtual size: 931KB

.rdata
Size: 279KB - Virtual size: 279KB

.data
Size: 25KB - Virtual size: 119KB

.rsrc
Size: 234KB - Virtual size: 234KB