2024-05-27_55583b5d1cf5bf17a8a444d703105a51_icedid_nymaim

Sharing

Copy URL

Twitter E-mail

General

Target

2024-05-27_55583b5d1cf5bf17a8a444d703105a51_icedid_nymaim
Size

4.4MB
MD5

55583b5d1cf5bf17a8a444d703105a51
SHA1

4505a809d5a47b3d13fc687c202734922f227f4b
SHA256

7b58053dd98be526f54646ff764e3a08e83ae5fae1975ddd5ad2f9f4197bdd49
SHA512

f87c625903653c14a26d2c4959bcad0a08974ff46c562a99749031ab585238bc759072ce5b2bd1e0d60ce2e524cc84a4e64c41fd09870c5062037b8cbb5f2daa
SSDEEP

49152:LFic9QERhCbKh4w8OZLniJdfdPxTROPE41oS5HiAGuj7Ql:Lv9QUHhmarwdPBRi1T5HiAGse

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
2024-05-27_55583b5d1cf5bf17a8a444d703105a51_icedid_nymaim

Files

2024-05-27_55583b5d1cf5bf17a8a444d703105a51_icedid_nymaim
.exe windows:4 windows x86 arch:x86

3877e7bd8fd15a6b61472e8e397414b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerGetNumDevs
mixerClose
mixerGetLineControlsW
mixerOpen
mixerGetControlDetailsW
mixerSetControlDetails
mixerGetDevCapsW
waveOutGetDevCapsW
waveOutOpen
waveOutReset
waveOutClose
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
mixerGetLineInfoW
mciSendCommandW
mciGetErrorStringW

kernel32

GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
GetModuleFileNameA
VirtualAlloc
IsBadWritePtr
LCMapStringA
SetUnhandledExceptionFilter
SetStdHandle
GetDriveTypeA
GetStringTypeA
IsBadReadPtr
IsBadCodePtr
CompareStringA
GetACP
FreeEnvironmentStringsA
SetEnvironmentVariableA
GetWindowsDirectoryA
GetSystemDirectoryA
InterlockedExchange
QueryPerformanceCounter
FindResourceA
GlobalAddAtomA
GetProfileStringA
FindClose
GetLocalTime
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
Sleep
WaitForSingleObject
ReadFile
SetLastError
ExitProcess
ResumeThread
SuspendThread
CreateThread
GetTickCount
LocalFree
LocalAlloc
GlobalUnlock
GlobalLock
UnhandledExceptionFilter
HeapSize
GetFileType
RaiseException
RtlUnwind
TerminateProcess
GetSystemTimeAsFileTime
HeapFree
GetCurrentDirectoryA
GetSystemTime
GetTimeZoneInformation
HeapAlloc
HeapReAlloc
SetErrorMode
GetProcessVersion
LocalReAlloc
GlobalReAlloc
TlsFree
GlobalFlags
lstrcmpiA
UnlockFile
LockFile
FlushFileBuffers
lstrcmpA
GetModuleHandleA
GlobalDeleteAtom
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
GetFileInformationByHandle
GlobalFree
DeviceIoControl
MoveFileExW
TlsAlloc
DosDateTimeToFileTime
TlsSetValue
TlsGetValue
GetSystemDefaultLangID
SetThreadExecutionState
CreateEventA
GetOverlappedResult
GetCurrentThread
WriteFile
MapViewOfFile
CloseHandle
UnmapViewOfFile
GetThreadPriority
WinExec
GetExitCodeProcess
CreatePipe
DuplicateHandle
DeleteCriticalSection
SetFilePointer
SetEndOfFile
GlobalSize
GetCurrentProcessId
MulDiv
SetEvent
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
SetThreadPriority
GetFileTime
GlobalHandle
GlobalAlloc
GetCurrentThreadId
GetCurrentProcess
GetVersion
DefineDosDeviceW
GetLogicalDrives
SetFileTime
ResetEvent
GetFileSize
FreeLibrary
LoadResource
SizeofResource
LockResource
GetLastError
GetOEMCP

user32

SetRect
SetParent
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetRectEmpty
TranslateMessage
DestroyCursor
SetCursorPos
DestroyMenu
MapDialogRect
GetAsyncKeyState
EndPaint
BeginPaint
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
IsDlgButtonChecked
CheckRadioButton
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetMenu
TrackPopupMenu
GetMessageTime
GetLastActivePopup
GetForegroundWindow
GetWindow
GetNextDlgTabItem
PostQuitMessage
GetActiveWindow
SetActiveWindow
DestroyWindow
IsWindowEnabled
MessageBoxA
DrawEdge
CreateIconIndirect
GetIconInfo
ShowWindow
IsWindow
EnumChildWindows
GetWindowPlacement
MoveWindow
GetDlgCtrlID
SetWindowPos
DrawFocusRect
MessageBeep
IsIconic
DrawIcon
FrameRect
DrawIconEx
SetMenuDefaultItem
IsWindowVisible
GetKeyboardLayout
IntersectRect
SetCaretPos
GetSystemMetrics
SetCapture
HideCaret
CreateCaret
ShowCaret
ReleaseCapture
DestroyCaret
IsRectEmpty
FillRect
InvalidateRgn
DestroyIcon
SetMenu
CheckMenuRadioItem
GetSysColorBrush
GetMessagePos
IsZoomed
SetClipboardData
EmptyClipboard
PtInRect
GetWindowDC
GetMenuItemCount
WindowFromPoint
GetDesktopWindow
ShowOwnedPopups
ValidateRect
GetDCEx
EndDialog
TrackPopupMenuEx
UnhookWindowsHookEx
CallNextHookEx
GetCapture
GetDlgItem
SetFocus
GetKeyState
GetFocus
UpdateWindow
EqualRect
BeginDeferWindowPos
EndDeferWindowPos
GetDC
ReleaseDC
RedrawWindow
InflateRect
GetSysColor
CopyRect
OffsetRect
OpenClipboard
CloseClipboard
GetSystemMenu
BroadcastSystemMessage
GetMenuItemID
RemoveMenu
CreatePopupMenu
EnableMenuItem
CheckMenuItem
GetSubMenu
GetClientRect
ClientToScreen
GetWindowRect
SetForegroundWindow
GetParent
LockWindowUpdate
ShowScrollBar
SetTimer
KillTimer
GetCursorPos
ScreenToClient
SetCursor
InvalidateRect
GetClassNameA
SendMessageA
SetWindowsHookExA
CharNextA
DefWindowProcA
DefDlgProcA
GetClassInfoA
DrawTextA
GetWindowTextA
ExcludeUpdateRgn
GetWindowTextLengthA
DrawFrameControl

gdi32

GetClipBox
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
CombineRgn
StretchDIBits
LPtoDP
GetDIBits
SetDIBits
Escape
RectVisible
PtVisible
CreateRectRgn
Ellipse
GetBkColor
GetTextColor
SetBkColor
SetTextColor
GetDeviceCaps
DeleteDC
CreateRectRgnIndirect
SetRectRgn
TranslateCharsetInfo
SetBoundsRect
RoundRect
CreateCompatibleBitmap
CreatePen
DeleteObject
CreateSolidBrush
Rectangle
GetStockObject
PatBlt
CreateDIBSection
CreateCompatibleDC
GetPixel
SetPixel
SetStretchBltMode
SelectObject
CreateBitmap
StretchBlt
ExtTextOutA
GetTextExtentPointA
CreateDIBitmap
BitBlt

winspool.drv

ClosePrinter

advapi32

RegOpenKeyExA
GetTokenInformation
OpenProcessToken
LookupAccountNameW
AdjustTokenPrivileges
LookupPrivilegeValueW
SetNamedSecurityInfoW
SetEntriesInAclW
BuildExplicitAccessWithNameW
GetNamedSecurityInfoW
DeleteAce
EqualSid
GetAce
GetAclInformation
RegQueryValueExA
RegCloseKey

shell32

SHGetSpecialFolderPathW
SHGetMalloc
SHGetDesktopFolder
DragFinish
DragAcceptFiles

comctl32

ImageList_AddMasked
ImageList_Add
_TrackMouseEvent
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create
ord17
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW

ole32

OleGetClipboard
CoTaskMemFree
CreateStreamOnHGlobal
DoDragDrop
CoCreateInstance
CoUninitialize
ReleaseStgMedium
CoInitialize
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleDuplicateData
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject
PropVariantClear

olepro32

ord251

oleaut32

SysFreeString
VariantClear
SysAllocString
SysStringByteLen

wininet

InternetAttemptConnect
InternetOpenW
InternetCloseHandle
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetReadFile
HttpQueryInfoW
InternetConnectW

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 940KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 572KB - Virtual size: 572KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3877e7bd8fd15a6b61472e8e397414b9

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

oleaut32

wininet

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 940KB - Virtual size: 2.3MB

.rsrc Size: 572KB - Virtual size: 572KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 940KB - Virtual size: 2.3MB

.rsrc
Size: 572KB - Virtual size: 572KB