2024-05-16_bc55b876afe2dbccdfb7681dfcd85634_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-16_bc55b876afe2dbccdfb7681dfcd85634_icedid
Size

6.8MB
MD5

bc55b876afe2dbccdfb7681dfcd85634
SHA1

b54b4919261144dd1b0de10084837e2ceadde91e
SHA256

23e5a320e3a622ec939fa055fc06f0c9fbd59ff49a2b998628e11003b2abfc54
SHA512

a4964534cf3f6dfa3479a771bc13d1522418866d79f469ab141a19aea12ee7d1b15334353d1989f2bf22dddf4d6bbbda8762c722d00aaef2d23dc6399bcbc700
SSDEEP

49152:eshHKKIkcTGrRokp6VkwazQq2YhkEGOivO:9BRrRok4V/E2YFGOb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-16_bc55b876afe2dbccdfb7681dfcd85634_icedid

Files

2024-05-16_bc55b876afe2dbccdfb7681dfcd85634_icedid
.exe windows:4 windows x86 arch:x86

5be514fe4dc84686086844a115d24797

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

g:\Acro_root_ns\BuildResults\bin\release\AcroTextExtractor.pdb

Imports

query

LoadIFilter

kernel32

QueryPerformanceCounter
IsDebuggerPresent
GetTickCount
SetErrorMode
GetCommandLineW
GetVersionExW
WaitForMultipleObjects
OpenFileMappingW
MapViewOfFile
OpenEventW
UnmapViewOfFile
CloseHandle
SetEvent
ResetEvent
OpenProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
Sleep
InterlockedCompareExchange
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InterlockedExchange

ole32

CoUninitialize
CoInitialize

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1strstreambuf@std@@UAE@XZ
??0strstreambuf@std@@QAE@PBDH@Z
??0strstreambuf@std@@QAE@PADH0@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?allocate@?$allocator@D@std@@QAEPADI@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

msvcr80

swscanf_s
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_crt_debugger_hook
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
??2@YAPAXI@Z
??3@YAXPAX@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
_CxxThrowException
_invalid_parameter_noinfo
__CxxFrameHandler3

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5be514fe4dc84686086844a115d24797

Headers

File Characteristics

PDB Paths

Imports

query

kernel32

ole32

msvcp80

msvcr80

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB