2024-05-22_fcc5eff6774a52ff97cc69281945ced0_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-22_fcc5eff6774a52ff97cc69281945ced0_icedid
Size

26.3MB
MD5

fcc5eff6774a52ff97cc69281945ced0
SHA1

593fdb1b4ebe2bfda9207e5ea13eaebbb085b09e
SHA256

260792a427d589119e56cb571834c4f17b7a38bc31cdd6fe83cff0b89fe6f6ba
SHA512

55886e3c4e93b0dc2c6a0003c6d244b3c64338c021d0b3eb0233ea8d63a25bca9220e91451702070518de24cd9865ede74d86c2519cce9de4c7b7dd4cead0b96
SSDEEP

196608:HtEZNrnPk3SdTTxZ4GJhy+o0cwfNA7gKvtZZ2x:eZ1fdXxZ4qy+o0chvtZZ+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-22_fcc5eff6774a52ff97cc69281945ced0_icedid

Files

2024-05-22_fcc5eff6774a52ff97cc69281945ced0_icedid
.exe windows:4 windows x86 arch:x86

b75b73008efb3525e930e9c88cf7f808

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\TRUNK\software\AiM_DEBUG\Release\RaceStudioConf\RaceStudio2.pdb

Imports

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
CM_Enumerate_Classes
SetupDiEnumDeviceInfo
SetupDiClassNameFromGuidA
SetupDiClassGuidsFromNameA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInstanceIdA
SetupDiGetClassDevsA
SetupDiOpenClassRegKeyExA

dll_aim_base

?Hide@_AP_Thread@@QAEXH@Z
??1MyVector_@@UAE@XZ
?ProgressAuto@_AP_Thread@@QAEXH@Z
??0MyVector_@@QAE@I@Z
?ProgressFreeze@_AP_Thread@@QAEXXZ
?ProgressUnFreeze@_AP_Thread@@QAEXXZ
?ProgressShow@_AP_Thread@@QAEXXZ
?ProgressHide@_AP_Thread@@QAEHK@Z
?ProgressSetText@_AP_Thread@@QAEXPBDH@Z
?size@MyVector_@@QBEHXZ
__AP_Thread_END@4
??AMyVector_@@QBEPBXH@Z
__AP_Thread_INI@4

dll_aim_lang

_DLL_Dlg_SelLanguageNoRestart@4
__DLL_HLP_Get@4
__LANG_Quit_ALL@0
__LANG_Alloc_Free@4
_DLL_Dlg_SelLanguage@4
__LANG_FillMenuI@16
__LANG_FillDlg@36
__LANG_FillCbo@16
__LANGUAGE_ID_Set@8
__LANG_FillMenuU@20
__LANG_Init_ALL@4
__LANGUAGE_ID_Get@0
?_LANG_String_Get@@YGPADHPADPBD1JH_N@Z
?_LANG_String_Get@@YGPADHPADPBD11H_N@Z
__LANG_Fill_Val_Str@16
__LANG_Fill_Str@16

kernel32

GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
LocalFree
ReleaseMutex
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
GetModuleFileNameW
GlobalGetAtomNameA
GetThreadLocale
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFullPathNameA
GetShortPathNameA
SetFileAttributesA
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
CreateEventA
UnmapViewOfFile
MapViewOfFile
FindFirstFileW
GetFileSize
lstrcpyW
GetFileInformationByHandle
FindNextFileW
CreateFileMappingA
SetFilePointer
CreateFileW
LocalFileTimeToFileTime
lstrcpyA
DuplicateHandle
IsBadReadPtr
CreateDirectoryW
CreateMutexA
GetCurrentThreadId
WritePrivateProfileStructA
GetPrivateProfileStructA
SetFileTime
SystemTimeToFileTime
GetFileTime
GetCommState
SetCommTimeouts
SetCommState
PurgeComm
WriteFile
ReadFile
GetCurrentDirectoryA
SetCurrentDirectoryA
GlobalHandle
GlobalMemoryStatus
lstrcmpA
GlobalUnlock
MulDiv
GlobalSize
GlobalLock
GlobalReAlloc
MoveFileA
GetTickCount
GetSystemInfo
GetSystemTimeAdjustment
DeviceIoControl
CreateFileA
FileTimeToSystemTime
InterlockedDecrement
GetCurrentProcessId
GetProfileIntA
LoadLibraryExA
GetDiskFreeSpaceA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
InterlockedCompareExchange
SetEnvironmentVariableA
GetLocaleInfoW
WriteConsoleW
FileTimeToLocalFileTime
FreeResource
GetModuleFileNameA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetLocalTime
GetTimeFormatA
GetDateFormatA
lstrcpynA
SetLastError
GetModuleHandleA
HeapAlloc
GetProcessHeap
FormatMessageA
GetDriveTypeA
GetVolumeInformationA
HeapFree
GetProcAddress
FreeLibrary
LoadLibraryA
SearchPathA
GetSystemTime
RemoveDirectoryA
GetVersionExA
GetWindowsDirectoryA
GetFileAttributesA
GetCurrentProcess
WaitForSingleObject
GlobalFree
GetStdHandle
GlobalAlloc
ExpandEnvironmentStringsA
CloseHandle
CreateProcessA
Sleep
DeleteFileA
CopyFileA
CreateDirectoryA
FindClose
FindNextFileA
FindFirstFileA
MultiByteToWideChar
WideCharToMultiByte
GetLastError
LoadResource
CompareStringW
SizeofResource
GetEnvironmentVariableA
LockResource
FindResourceA
GetStringTypeExW
lstrlenA
GetEnvironmentVariableW
GetVersion
CompareStringA
lstrcmpiA
lstrlenW
GetStringTypeExA
lstrcmpiW
InterlockedExchange
GetConsoleOutputCP
WriteConsoleA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
DeleteCriticalSection
TlsFree
GetAtomNameA
InterlockedIncrement
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
LocalUnlock
LocalLock
VirtualProtect
VirtualAlloc
VirtualQuery
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
RaiseException
RtlUnwind
SetStdHandle
GetFileType
ExitThread
CreateThread
ExitProcess
HeapSize
FatalAppExitA
HeapDestroy
HeapCreate
VirtualFree
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetHandleCount
GetCurrentThread
GetTempFileNameA
GlobalAddAtomA

advapi32

RegEnumKeyA
FreeSid
AllocateAndInitializeSid
RegSetValueA
RegOpenKeyA
RegDeleteKeyA
SetFileSecurityA
GetFileSecurityA
RegDeleteValueA
RegCreateKeyA
EqualSid
GetUserNameA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueA
RegCloseKey
LookupAccountSidA
OpenProcessToken
GetTokenInformation

user32

GetSystemMetrics
CharLowerW
CharUpperA
SetScrollPos
ScreenToClient
GetCursorPos
GetWindowRect
GrayStringA
GetDC
GetFocus
ReleaseDC
PtInRect
FillRect
DrawEdge
UpdateWindow
TabbedTextOutA
DrawTextA
InvalidateRect
GetSysColor
DrawTextExA
GetClientRect
GetParent
SetTimer
InflateRect
DrawFrameControl
DrawIcon
SetCursor
IsWindow
RegisterWindowMessageA
BringWindowToTop
EnableWindow
UnregisterDeviceNotification
RegisterDeviceNotificationA
SendMessageA
SetFocus
CharUpperW
KillTimer
ScrollWindowEx
LoadStringW
LoadStringA
wsprintfA
EnumWindows
GetWindowTextA
GetWindowTextLengthA
SendMessageTimeoutA
ShowWindow
DrawFocusRect
GetAsyncKeyState
GetUserObjectInformationA
RemoveMenu
GetSubMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
GetWindow
GetWindowPlacement
SetWindowPos
SetWindowLongA
GetWindowLongA
CallWindowProcA
GetDlgCtrlID
SetWindowPlacement
SetScrollInfo
AdjustWindowRectEx
RegisterClassA
GetClassInfoExA
CreateWindowExA
GetMenu
ShowScrollBar
GetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
TrackPopupMenuEx
ScrollWindow
MapWindowPoints
PeekMessageA
GetMessageTime
UnhookWindowsHookEx
DestroyWindow
GetTopWindow
GetDlgItem
DispatchMessageA
GetLastActivePopup
GetForegroundWindow
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
IsChild
WinHelpA
SendDlgItemMessageA
ValidateRect
TranslateMessage
GetMessageA
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
IsDialogMessageA
SetWindowTextA
MoveWindow
IsWindowEnabled
SetCapture
GetWindowDC
BeginPaint
EndPaint
GetKeyNameTextA
MapVirtualKeyA
GetWindowThreadProcessId
DestroyMenu
LoadAcceleratorsA
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
TranslateAcceleratorA
CreatePopupMenu
InsertMenuItemA
ReuseDDElParam
UnpackDDElParam
GetMenuItemInfoA
PostQuitMessage
ShowOwnedPopups
FindWindowA
SetWindowRgn
MapDialogRect
SetWindowContextHelpId
GetSysColorBrush
UnregisterClassA
DestroyIcon
GetDialogBaseUnits
PostThreadMessageA
DeleteMenu
GetSystemMenu
UnionRect
MessageBeep
GetTabbedTextExtentA
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
GetDCEx
GetThreadDesktop
InvalidateRgn
DrawStateA
SetRectEmpty
SetParent
EqualRect
LoadImageA
LoadMenuA
DrawMenuBar
SetMenu
GetActiveWindow
WindowFromDC
LoadBitmapA
CopyIcon
OffsetRect
CopyRect
WindowFromPoint
GetDoubleClickTime
IsRectEmpty
InvertRect
GetClassInfoA
GetCapture
GetKeyState
IntersectRect
GetMessagePos
IsClipboardFormatAvailable
ClipCursor
DefWindowProcA
LoadCursorA
SetRect
FrameRect
MessageBoxA
ClientToScreen
PostMessageA
IsIconic
RedrawWindow
SetForegroundWindow
SetActiveWindow
RegisterClipboardFormatA
SystemParametersInfoA
GetScrollInfo
BeginDeferWindowPos
IsWindowVisible
DeferWindowPos
GetDesktopWindow
EndDeferWindowPos
LockWindowUpdate
LoadIconA
ReleaseCapture
CharLowerA

gdi32

GetStockObject
RealizePalette
SelectPalette
SetDIBitsToDevice
CreatePalette
StretchDIBits
SetStretchBltMode
SelectObject
GetDIBColorTable
GetDIBits
DeleteDC
CreateDIBSection
DeleteObject
SetDIBits
GetBitmapBits
ChoosePixelFormat
DescribePixelFormat
SetPixelFormat
SwapBuffers
DPtoLP
Ellipse
CreateSolidBrush
Rectangle
PatBlt
StartPage
EndDoc
AbortDoc
EndPage
StartDocA
GetTextMetricsA
GetDeviceCaps
CreatePen
CreateFontIndirectA
CreateRectRgn
GetMapMode
GetCurrentObject
CreateCompatibleDC
CreateFontA
CreateBitmap
GetTextExtentPoint32A
RectVisible
TextOutA
GetObjectA
GetBkColor
Escape
PtVisible
CreateCompatibleBitmap
ExtTextOutA
CopyMetaFileA
CreateDCA
GetDCOrgEx
GetClipBox
SetTextColor
SetBkColor
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
SetArcDirection
SetColorAdjustment
SelectClipRgn
GetClipRgn
SelectClipPath
GetViewportExtEx
GetWindowExtEx
GetPixel
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ArcTo
PolyDraw
PolylineTo
PolyBezierTo
ExtSelectClipRgn
StretchBlt
GdiFlush
GetGlyphOutlineA
CombineRgn
CreateICA
CreateRoundRectRgn
FrameRgn
CreateEllipticRgn
FillRgn
SetPixel
Polyline
BitBlt
CreateDIBPatternBrushPt
CreatePatternBrush
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
ExtCreatePen
CreateHatchBrush
CreateRectRgnIndirect
SetRectRgn
SetAbortProc
GetCharWidthA
LPtoDP
GetTextColor
GetRgnBox

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
ord4
ord2
SHGetSpecialFolderLocation
FindExecutableA
DragAcceptFiles
SHGetFolderPathA
SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA
ShellExecuteA

comdlg32

CommDlgExtendedError
GetFileTitleA
ChooseColorA

odbc32

ord4
ord72
ord17
ord41
ord10
ord2
ord1
ord23
ord15
ord9
ord14
ord61
ord20
ord8
ord48
ord49
ord11
ord19
ord12
ord46
ord59
ord68
ord44
ord45
ord50
ord51
ord18
ord5
ord16
ord54
ord13
ord3
ord43
ord40

opengl32

glDeleteTextures
glMatrixMode
glEnable
glOrtho
glViewport
glClear
glTexParameteri
glClearColor
glTexImage2D
glLoadIdentity
glFinish
glBindTexture
glPopMatrix
glGenTextures
glPixelStorei
wglMakeCurrent
glPushMatrix
glBlendFunc
glDrawBuffer
wglGetCurrentContext
wglCreateContext
wglDeleteContext
glBegin
glPopAttrib
glDisable
glEnd
glVertex2i
glLineStipple
glColor3f
glPushAttrib
glLineWidth
glTexCoord2i
glReadPixels
glRasterPos2i
glGenLists
glDeleteLists
wglUseFontBitmapsA

msimg32

GradientFill

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathIsRootA
PathIsDirectoryA
PathStripToRootA
PathIsUNCA
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
PathFileExistsA

ole32

ReadClassStg
SetConvertStg
CoTreatAsClass
ReadFmtUserTypeStg
ReleaseStgMedium
CoTaskMemAlloc
OleRegGetUserType
CoTaskMemFree
WriteClassStg
CreateBindCtx
WriteFmtUserTypeStg
StringFromCLSID
OleDuplicateData
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
DoDragDrop
OleGetClipboard
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
StringFromGUID2
CoDisconnectObject
CreateStreamOnHGlobal
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleRun
CoInitializeEx

oleaut32

SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayCopy
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SysReAllocStringLen
VarBstrFromCy
VarBstrFromDec
VarCyFromStr
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
LoadTypeLi
VarDecFromStr
OleLoadPicture
SystemTimeToVariantTime
VarUdateFromDate
VariantTimeToSystemTime
SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
VarDateFromStr
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
SafeArrayRedim
VariantCopy
SafeArrayAllocData
SafeArrayAllocDescriptor

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA
GetJobA

oledlg

ord8

Sections

.text
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 928KB - Virtual size: 926KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20.0MB - Virtual size: 20.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b75b73008efb3525e930e9c88cf7f808

Headers

File Characteristics

PDB Paths

Imports

setupapi

dll_aim_base

dll_aim_lang

kernel32

advapi32

user32

gdi32

shell32

comdlg32

odbc32

opengl32

msimg32

comctl32

shlwapi

ole32

oleaut32

winspool.drv

oledlg

Sections

.text Size: 5.3MB - Virtual size: 5.3MB

.rdata Size: 928KB - Virtual size: 926KB

.data Size: 56KB - Virtual size: 354KB

.rsrc Size: 20.0MB - Virtual size: 20.0MB

.text
Size: 5.3MB - Virtual size: 5.3MB

.rdata
Size: 928KB - Virtual size: 926KB

.data
Size: 56KB - Virtual size: 354KB

.rsrc
Size: 20.0MB - Virtual size: 20.0MB