2024-05-28_09d76d24dc09e60000778b1d70122fd7_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-28_09d76d24dc09e60000778b1d70122fd7_icedid
Size

464KB
MD5

09d76d24dc09e60000778b1d70122fd7
SHA1

8f4d015e8b4d67e8f17693f74a23100b3b86a303
SHA256

52cb20d926ba88cc94dfde04d9a0d3fc166e994fcb8bab08ffa81a64466b0040
SHA512

cc4588952b864304a27b008a7ae95b8941fb767c00f6fa23c20113b8a49a8be4cc1e36ae123c495b1ce813da18f50b41eb397cc7f80a437e7cf85b6a4362a216
SSDEEP

6144:75zN6ItwwstRDSL/d2Hi3XCwycL3C7sbprknRJ8FYlsyabhZNHPnjMh2ecqKpw:75zN6H6L12TcL3OsIRCFQk7NvjQlKpw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-28_09d76d24dc09e60000778b1d70122fd7_icedid

Files

2024-05-28_09d76d24dc09e60000778b1d70122fd7_icedid
.exe windows:4 windows x86 arch:x86

893f099a537f18e05f5ed45d90548d07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiOutGetErrorTextA
midiOutGetDevCapsA
midiOutGetNumDevs

jpeg

GetJpegBits

kernel32

Sleep
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapReAlloc
GetACP
HeapSize
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapCreate
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
VirtualFree
VirtualAlloc
TerminateProcess
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalFree
lstrlenA
WideCharToMultiByte
CreateFileA
ReadFile
CloseHandle
GetModuleHandleA
GetDiskFreeSpaceA
GetDriveTypeA
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExA
GetFileType
SetStdHandle
ExitProcess
RaiseException
HeapAlloc
HeapFree
GetCommandLineA
GetStartupInfoA
GetTimeZoneInformation
GetLocalTime
GetSystemTime
FileTimeToSystemTime
RtlUnwind
FileTimeToLocalFileTime
FindResourceExA
SetErrorMode
GetFileAttributesA
GetFileTime
GetFileSize
GetOEMCP
GlobalFlags
GetCPInfo
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
EnterCriticalSection
TlsAlloc
LocalAlloc
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
lstrcpynA
GetFullPathNameA
IsBadReadPtr
MoveFileA
GlobalGetAtomNameA
GetVolumeInformationA
LockFile
SetEndOfFile
UnlockFile
IsBadCodePtr
SetFilePointer
WriteFile
GlobalAddAtomA
GetCurrentProcess
DuplicateHandle
GetLastError
MulDiv
SetLastError
lstrcmpA
GetCurrentThread
GetVersion
lstrcatA
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
SetHandleCount
GetStdHandle
CopyFileA
GlobalFree
InterlockedExchange
GetModuleFileNameA
LockResource
LoadResource
FindResourceA
GetTickCount
GlobalUnlock
GlobalLock
GlobalAlloc
FindClose
FindNextFileA
FindFirstFileA

user32

IsWindowEnabled
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
GetNextDlgTabItem
EnableMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuCheckMarkDimensions
PostQuitMessage
MoveWindow
DestroyMenu
GetActiveWindow
EndDialog
wvsprintfA
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
MapDialogRect
ValidateRect
TranslateMessage
GetMessageA
LoadStringA
CreateDialogIndirectParamA
GetClassNameA
GetMenu
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
SetWindowPos
GetWindowPlacement
wsprintfA
OemToCharA
GetDesktopWindow
RegisterWindowMessageA
DestroyIcon
GetDialogBaseUnits
GetSysColorBrush
GetKeyState
SetRect
RegisterClassA
LoadBitmapA
ShowWindow
SetForegroundWindow
MessageBoxA
UnpackDDElParam
ReuseDDElParam
GetForegroundWindow
GetWindowThreadProcessId
TranslateAcceleratorA
BringWindowToTop
LoadAcceleratorsA
EqualRect
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
CheckMenuItem
ShowCursor
GetWindowLongA
SetWindowLongA
DefWindowProcA
ScreenToClient
InvalidateRect
UpdateWindow
SetActiveWindow
GetCursorPos
WindowFromPoint
GetAsyncKeyState
GetCapture
ReleaseCapture
CopyRect
IntersectRect
IsRectEmpty
SystemParametersInfoA
LoadIconA
LoadCursorA
SetCursor
OffsetRect
GetMenuItemCount
GetMenuState
GetMenuItemID
GetFocus
PostMessageA
PtInRect
InflateRect
SetCapture
GetSysColor
GetClientRect
FillRect
GetSystemMetrics
GetDC
ReleaseDC
SendMessageA
EnableWindow
LoadMenuA
PeekMessageA
ClientToScreen
IsWindowVisible
ScrollWindow
SetScrollInfo
SetScrollPos
GetTopWindow
GetParent
WinHelpA
GetClassInfoA
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
IsWindow
AdjustWindowRectEx
DrawFocusRect
FindWindowA
SetFocus
GetWindowDC
IsChild
GetSubMenu
KillTimer
IsIconic
GetWindowRect
SetTimer
SetRectEmpty
UnregisterClassA

gdi32

RealizePalette
CreatePalette
GetSystemPaletteEntries
GetTextExtentPoint32A
CreateFontA
GetStockObject
GetDeviceCaps
CreatePen
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
TextOutA
SelectObject
CreateSolidBrush
EnumFontFamiliesA
SetPixelV
Rectangle
DeleteObject
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
CreateBitmap
RestoreDC
SetBkMode
SaveDC
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
LineTo
MoveToEx
RectVisible
ExtTextOutA
PtVisible
Escape
EnumFontFamiliesExA
CreateDIBitmap
SelectPalette

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegDeleteKeyA
RegCreateKeyA
RegOpenKeyExA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegSetValueA
RegOpenKeyA

shell32

DragQueryFileA
DragFinish
SHGetPathFromIDListA
SHGetFileInfoA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHChangeNotify
ShellExecuteA
DragAcceptFiles
SHFileOperationA

comctl32

ImageList_Create
PropertySheetA
ImageList_GetIcon
ImageList_Destroy
CreatePropertySheetPageA
DestroyPropertySheetPage
ImageList_Draw
ord17
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_AddMasked
ord6
ImageList_ReplaceIcon

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

893f099a537f18e05f5ed45d90548d07

Headers

File Characteristics

Imports

winmm

jpeg

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 52KB - Virtual size: 49KB

.data Size: 24KB - Virtual size: 36KB

.rsrc Size: 160KB - Virtual size: 160KB

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 52KB - Virtual size: 49KB

.data
Size: 24KB - Virtual size: 36KB

.rsrc
Size: 160KB - Virtual size: 160KB