2024-06-03_a0c4a6a48521d92a8948d71470277f47_icedid_nymaim

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-03_a0c4a6a48521d92a8948d71470277f47_icedid_nymaim
Size

1.2MB
MD5

a0c4a6a48521d92a8948d71470277f47
SHA1

41b9ce59234ad9982bfaba9c8ccdb2bbfc445444
SHA256

24c5981184e9f23c5e8401e8df230abb252e791bd47c8ca854da5b51be084c8e
SHA512

e66e77f79d99bb4904f696838018a2a5602811bbe98109cfb2813563373aa9551fa2adf6c308de6a6aa780f44807686ddcc1a255df5147d4e9ad838bca001d7d
SSDEEP

12288:oxDCOyJwo50rlH4PJRjLoAz0s+4UV0/qRK3MX2rY+qG2K9ny6Q3rQMEjiCUuGMcs:oxjo50rlH4TLoAt/qRK3MDrKty2OMVI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-03_a0c4a6a48521d92a8948d71470277f47_icedid_nymaim

Files

2024-06-03_a0c4a6a48521d92a8948d71470277f47_icedid_nymaim
.exe windows:4 windows x86 arch:x86

2e492b604de549dd307727c7ff49a4d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

bmaframe

CreateBMAFramework
CreateXmlConfigParse

kernel32

GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadCodePtr
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableW
GetDriveTypeA
GetACP
GetOEMCP
SetEnvironmentVariableA
GetEnvironmentStrings
GetPrivateProfileIntW
GetModuleFileNameW
GetVersionExW
GetVersion
lstrlenA
GetCPInfo
LockResource
LoadResource
FindResourceW
lstrcmpiW
lstrlenW
CloseHandle
CreateFileW
ReadFile
GetFileSize
WriteFile
GetLastError
CreateDirectoryW
GetTempPathW
GetTickCount
RemoveDirectoryW
DeleteFileW
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
GetPrivateProfileStringW
WritePrivateProfileStringW
SetFileAttributesW
GetFileAttributesW
SetEvent
FindClose
FindFirstFileW
GetPrivateProfileSectionW
InitializeCriticalSection
DeleteCriticalSection
GetProfileStringA
GlobalAddAtomA
FindResourceA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
HeapReAlloc
TerminateProcess
GetFileType
SetStdHandle
RaiseException
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapAlloc
HeapFree
RtlUnwind
ExitProcess
GetStartupInfoW
GetCurrentDirectoryW
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GlobalFlags
SizeofResource
GlobalGetAtomNameW
GetDiskFreeSpaceW
SetFileTime
GetTempFileNameW
lstrcmpW
GlobalAlloc
lstrcmpiA
GetCurrentThread
GetShortPathNameW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
GetVolumeInformationW
LoadLibraryW
MoveFileW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
lstrcmpA
MulDiv
SetLastError
FileTimeToLocalFileTime
FileTimeToSystemTime
FormatMessageW
LocalFree
GetModuleHandleA
LoadLibraryA
WaitForSingleObject
FreeLibrary
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
GetProcAddress
GlobalLock
GlobalUnlock
GlobalFree
lstrcpynW
lstrcpyW
lstrcatW
IsBadReadPtr
IsBadWritePtr
GetModuleFileNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetFileTime
FindNextFileW
CreateEventW
EnterCriticalSection
LeaveCriticalSection
Sleep
ResetEvent
MultiByteToWideChar
CreateThread

user32

IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
MapDialogRect
GetAsyncKeyState
LoadStringW
CharUpperW
SetRectEmpty
ValidateRect
GetCursorPos
EndPaint
BeginPaint
GetWindowDC
DestroyMenu
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
IsChild
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
TrackPopupMenu
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
DefWindowProcW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
IntersectRect
IsIconic
GetWindowPlacement
EndDialog
SetActiveWindow
IsWindow
CopyAcceleratorTableW
DestroyWindow
GetDlgItem
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
IsWindowEnabled
DrawIcon
LoadIconW
PtInRect
GetMessagePos
ScreenToClient
GetCapture
ReleaseCapture
MapWindowPoints
SetCapture
DrawFrameControl
GetWindow
GetClassNameW
IsRectEmpty
GetMessageW
PostThreadMessageW
LoadCursorW
GetDCEx
LockWindowUpdate
RegisterClipboardFormatW
SetParent
MessageBoxW
GetNextDlgGroupItem
PeekMessageW
SetMenu
GetKeyState
MessageBeep
TranslateMessage
DispatchMessageW
GetFocus
GetCaretPos
keybd_event
KillTimer
SetTimer
wsprintfW
UpdateWindow
LoadImageW
GetIconInfo
CreateIconIndirect
DrawStateW
GetClientRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
GetWindowRect
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
DrawTextA
GetClassInfoA
DefDlgProcA
DefWindowProcA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
GetPropA
SetCursor
GetParent
GetNextDlgTabItem
IsMenu
GetWindowLongW
DestroyCursor
GrayStringW
GetSubMenu
DrawTextW
TabbedTextOutW
DeleteMenu
LoadBitmapW
GetSysColorBrush
GetMenuStringW
CreateMenu
CreatePopupMenu
GetMenuItemID
GetMenuState
ModifyMenuW
GetMenuItemCount
InsertMenuW
CreateDialogIndirectParamW
CharNextW
AppendMenuW
GetSystemMetrics
GetDesktopWindow
GetDC
ReleaseDC
DrawIconEx
DestroyIcon
SystemParametersInfoW
GetSysColor
CopyRect
FillRect
DrawEdge
SetRect
GetMenuItemInfoW
EnableWindow
InvalidateRect
SendMessageW

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetMapMode
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
StretchDIBits
GetCharWidthW
GetTextColor
GetBkColor
LPtoDP
GetTextExtentPointA
ExtTextOutA
RestoreDC
SaveDC
CreateRectRgnIndirect
GetClipBox
CreateFontW
GetTextMetricsW
SetBkMode
CreateBitmap
SetBkColor
SetTextColor
GetStockObject
Rectangle
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
PatBlt
GetObjectW
GetPixel
SetPixel
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Ellipse
GetTextExtentPoint32W
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateFontIndirectW
CreateDIBitmap
CreateSolidBrush
CreatePen
GetDeviceCaps
GetBkMode

comdlg32

GetOpenFileNameW
GetFileTitleW
GetSaveFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumValueW
RegOpenKeyW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
SetFileSecurityW
GetFileSecurityW
RegCreateKeyW
RegSetValueW
RegQueryValueExW

shell32

DragQueryFileW
DragFinish
SHGetFileInfoW
SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteExW
ExtractIconW

comctl32

ImageList_DragMove
ImageList_BeginDrag
ImageList_DrawEx
ImageList_DragEnter
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetIcon
ImageList_EndDrag
ImageList_Draw
ord17
ImageList_Destroy
ImageList_Create
ImageList_LoadImageW
ImageList_DragLeave
ImageList_GetImageCount
ImageList_DragShowNolock
PropertySheetW
DestroyPropertySheetPage
_TrackMouseEvent
CreatePropertySheetPageW

oledlg

OleUIBusyW

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
OleFlushClipboard
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoUninitialize
CoInitialize
CoCreateInstance
OleRun
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoTaskMemFree

olepro32

ord253

oleaut32

SysStringLen
VariantInit
VariantClear
SysAllocString
SysFreeString
VariantChangeType
VariantCopy
SysAllocStringLen
VariantTimeToSystemTime
GetErrorInfo

Sections

.text
Size: 420KB - Virtual size: 417KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 544KB - Virtual size: 541KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e492b604de549dd307727c7ff49a4d1

Headers

File Characteristics

Imports

version

bmaframe

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 420KB - Virtual size: 417KB

.rdata Size: 208KB - Virtual size: 205KB

.data Size: 24KB - Virtual size: 42KB

.rsrc Size: 544KB - Virtual size: 541KB

.text
Size: 420KB - Virtual size: 417KB

.rdata
Size: 208KB - Virtual size: 205KB

.data
Size: 24KB - Virtual size: 42KB

.rsrc
Size: 544KB - Virtual size: 541KB