2024-05-10_6efd15d4dabe860d3bc1c009213a291f_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-10_6efd15d4dabe860d3bc1c009213a291f_icedid
Size

3.1MB
MD5

6efd15d4dabe860d3bc1c009213a291f
SHA1

2334c640c8a771825f5dd1cd5ac498712aa9532a
SHA256

f8caafeb7ca3109f94b19d72cb40cfc8b8eebce8adcc84ad6e32b7683bbebef5
SHA512

cd3c2738344f64d02f11b36b8ecdcc10d4a9895ab59ff9988e0f04a3b6ad04ed38a072ee02f6d773183a27ffbfa424d485c7d8f440284e007b2f00411fa1aff1
SSDEEP

49152:igucjk0FVtSJdBe93h7Xnwsr4oTR8TgoamxAQz1+f01atHyDMC:2cjkyS+3YoTR8TcewpQMC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-10_6efd15d4dabe860d3bc1c009213a291f_icedid

Files

2024-05-10_6efd15d4dabe860d3bc1c009213a291f_icedid
.exe windows:5 windows x86 arch:x86

697c572410c1ea258ff1f4d9d6dc3e18

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\end\Chance\had\believeMay.pdb

Imports

kernel32

UnmapViewOfFile
FileTimeToLocalFileTime
OpenEventA
SetEnvironmentVariableA
GetTimeZoneInformation
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
LCMapStringW
GetStringTypeW
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
HeapCreate
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
HeapAlloc
IsProcessorFeaturePresent
SetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
GetSystemTimeAsFileTime
ExitProcess
ExitThread
CreateThread
GetModuleFileNameA
RaiseException
RtlUnwind
GetStartupInfoW
HeapSetInformation
GetCommandLineW
IsBadReadPtr
HeapValidate
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
DecodePointer
SearchPathW
GetTickCount
GetUserDefaultLCID
GetFileAttributesExW
GetFileTime
GetFileSizeEx
GetFileAttributesW
GetTempPathW
GetTempFileNameW
GetCurrentDirectoryW
GetNumberFormatW
GetWindowsDirectoryW
lstrcmpiW
GetFullPathNameW
GetVolumeInformationW
MapViewOfFile
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
GetHandleInformation
FindResourceExW
lstrcpyW
InterlockedExchange
GetCurrentThread
GetLocaleInfoW
GetUserDefaultUILanguage
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
InterlockedIncrement
GlobalFlags
GetProfileIntW
VirtualProtect
ResumeThread
SetThreadPriority
CompareStringW
GetVersionExW
lstrcmpW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
FreeResource
lstrlenA
lstrcmpA
CopyFileW
GlobalSize
FormatMessageW
MulDiv
LoadLibraryW
GetProcAddress
GetCurrentThreadId
SetEvent
WaitForSingleObject
CloseHandle
WideCharToMultiByte
GetCurrentProcessId
TlsGetValue
LocalReAlloc
GlobalAlloc
GlobalReAlloc
GlobalLock
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
LocalAlloc
LocalFree
LoadResource
LockResource
SizeofResource
FindResourceW
FreeLibrary
InterlockedDecrement
ReleaseActCtx
DeactivateActCtx
ActivateActCtx
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
lstrlenW
GetAtomNameW
GlobalGetAtomNameW
GetLastError
SetLastError
CreateFileMappingA
FindFirstFileW
TlsAlloc
RemoveDirectoryW
FindClose
VirtualProtectEx
EnterCriticalSection
GetModuleFileNameW
Sleep
GetSystemDirectoryW
TlsSetValue
InitializeCriticalSection
GetModuleHandleW

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
CreateStreamOnHGlobal
CoUninitialize
CoInitializeEx
CoCreateInstance
ReleaseStgMedium
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
OleDuplicateData
OleInitialize
CoInitialize
OleCreate

oleaut32

SysStringLen
VarBstrFromDate
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

gdi32

SetDIBColorTable
CreateDIBSection
GetSystemPaletteEntries
EnumFontFamiliesExW
CreateDIBitmap
GetTextCharsetInfo
EnumFontFamiliesW
CopyMetaFileW
ExtSelectClipRgn
DeleteObject
SetLayout
GetLayout
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
SelectPalette
RestoreDC
SaveDC
DeleteDC
SetPixelV
GetBoundsRect
Escape
GetTextMetricsW
GetTextFaceW
GetTextExtentPoint32W
TextOutW
ExtFloodFill
SetPixel
GetPixel
StretchBlt
BitBlt
PatBlt
Rectangle
Polygon
Ellipse
Polyline
RectVisible
PtVisible
FrameRgn
FillRgn
LPtoDP
DPtoLP
GetWindowExtEx
GetWindowOrgEx
GetViewportExtEx
GetViewportOrgEx
GetTextColor
GetBkColor
RealizePalette
SelectObject
GetDeviceCaps
CreateCompatibleDC
CreateDCW
PtInRegion
GetRgnBox
OffsetRgn
CombineRgn
SetRectRgn
ExtTextOutW
GetObjectW
GetStockObject
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateFontIndirectW
CreateBitmap
CreateCompatibleBitmap
CreatePalette
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn

user32

WinHelpW
GetCapture
GetWindow
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
SetScrollInfo
GetScrollInfo
GetWindowRect
ScrollWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetFocus
GetFocus
MapWindowPoints
GetClientRect
GetMonitorInfoW
MonitorFromWindow
SendDlgItemMessageA
SendDlgItemMessageW
LoadIconW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
GetMenuCheckMarkDimensions
DrawMenuBar
GetSystemMenu
IsIconic
IsZoomed
SetWindowRgn
GetWindowRgn
BringWindowToTop
UpdateWindow
GetUpdateRect
InvalidateRect
IsWindowVisible
ShowOwnedPopups
LockWindowUpdate
RedrawWindow
EnableScrollBar
SetTimer
KillTimer
SetCapture
GetNextDlgGroupItem
GetNextDlgTabItem
ShowScrollBar
SetParent
WindowFromPoint
OpenClipboard
HideCaret
SetForegroundWindow
GetForegroundWindow
NotifyWinEvent
PostThreadMessageW
LoadCursorW
CheckDlgButton
GetDesktopWindow
IsDialogMessageW
SetWindowTextW
ShowWindow
GetAsyncKeyState
GetSystemMetrics
SetRectEmpty
SetCursor
ReleaseCapture
LoadAcceleratorsW
TranslateAcceleratorW
DestroyMenu
ReuseDDElParam
UnpackDDElParam
DestroyIcon
LoadImageW
GetClipboardFormatNameA
GetClipboardFormatNameW
GetKeyNameTextW
MapVirtualKeyW
SystemParametersInfoW
RealChildWindowFromPoint
CopyImage
EnumDisplayMonitors
SetLayeredWindowAttributes
CharUpperW
MessageBeep
GetIconInfo
DrawIconEx
DestroyAcceleratorTable
CreateAcceleratorTableW
CopyAcceleratorTableW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
SetCursorPos
SetClassLongW
IsCharLowerW
MapVirtualKeyExW
MonitorFromPoint
UpdateLayeredWindow
OffsetRect
WaitMessage
SetClipboardData
CloseClipboard
EmptyClipboard
RegisterClipboardFormatW
PtInRect
CopyIcon
IsRectEmpty
CharUpperBuffW
DefFrameProcW
TranslateMDISysAccel
DefMDIChildProcW
IsClipboardFormatAvailable
GetDoubleClickTime
DestroyCursor
SetRect
InflateRect
IntersectRect
UnionRect
SubtractRect
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
LoadBitmapW
GetSysColorBrush
GetKeyState
CallNextHookEx
GetCursorPos
SetWindowsHookExW
ValidateRect
GetMessageW
TranslateMessage
DispatchMessageW
TrackPopupMenu
SetWindowPlacement
GetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
GetClassLongW
GetClassNameW
SetPropW
GetPropW
CallWindowProcW
RemovePropW
DefWindowProcW
SetMenu
GetMenu
GetSysColor
EndPaint
BeginPaint
GetWindowDC
PostQuitMessage
PeekMessageW
UnhookWindowsHookEx
MapDialogRect
IsWindow
SendMessageW
PostMessageW
TabbedTextOutW
GetWindowThreadProcessId
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowLongW
MessageBoxW
GetMessageTime
GetMessagePos
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
MoveWindow
EndDialog
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
LoadMenuW
SetMenuItemBitmaps
RemoveMenu
ModifyMenuW
InsertMenuItemW
InsertMenuW
GetSubMenu
GetMenuItemInfoW
GetMenuStringW
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
FillRect
AppendMenuW
DeleteMenu
IsMenu
CreatePopupMenu
CreateMenu
GrayStringW
DrawTextExW
DrawTextW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateW
DrawIcon
InvertRect
FrameRect
CheckMenuItem

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

comctl32

ImageList_GetIconSize

comdlg32

GetFileTitleW

shell32

DragFinish
DragQueryFileW
SHGetFileInfoW
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation

gdiplus

GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipCloneImage
GdipFree
GdipDisposeImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdiplusShutdown

shlwapi

PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathFindFileNameW

advapi32

RegEnumKeyExW
RegDeleteValueW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
SetThreadToken
OpenThreadToken
RevertToSelf

winmm

PlaySoundW

msimg32

TransparentBlt
AlphaBlend

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

697c572410c1ea258ff1f4d9d6dc3e18

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

ole32

oleaut32

gdi32

user32

winspool.drv

comctl32

comdlg32

shell32

gdiplus

shlwapi

advapi32

winmm

msimg32

oleacc

imm32

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 460KB - Virtual size: 459KB

.data Size: 62KB - Virtual size: 143KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 460KB - Virtual size: 459KB

.data
Size: 62KB - Virtual size: 143KB

.rsrc
Size: 1KB - Virtual size: 1KB