2024-06-06_c46e0dc2408962070575b72d6ca3ea1d_icedid_silence

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-06_c46e0dc2408962070575b72d6ca3ea1d_icedid_silence
Size

1.7MB
MD5

c46e0dc2408962070575b72d6ca3ea1d
SHA1

f720699c06d4ecadd82b3432b0d155bdc7aaa333
SHA256

5bd59e95c8ca6b490cd137cd9c715a7bd86e2b439212a7fadb3c92c4fe72a10c
SHA512

84ca981f2030361c8d6b883d454295d07f67389dcbe559f9d3cdc7db669efaa0922526ba6a295e5b0db30938e31b228554c67694b784ae0b7f6387ff0ba2892b
SSDEEP

49152:UlXZzAEkPpZTz8QowkMH5vtbjNLReQUV0GQXuQ5P7JB5LFAbm:0zAE2pZkQowkGvtbjDPUV0GQXu1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-06_c46e0dc2408962070575b72d6ca3ea1d_icedid_silence

Files

2024-06-06_c46e0dc2408962070575b72d6ca3ea1d_icedid_silence
.exe windows:5 windows x86 arch:x86

114b815692242cdc1e0bf91ed83c40e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\ld-dev\landesk\ManagementSuite\Release\LDLogon\ldevtvwr.pdb

Imports

elogapi

LoadEventSource

loc32vc0

_II_GetHelpLanguageFileName@12
_II_LOADLANGUAGELIBRARY@8
_LDlocaleconv@4

kernel32

QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
LCMapStringW
IsValidLocale
EnumSystemLocalesW
OutputDebugStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
LockResource
FreeLibrary
LoadResource
SizeofResource
CompareFileTime
FormatMessageA
lstrcatA
FindResourceW
WideCharToMultiByte
GetProcessHeap
InterlockedIncrement
InterlockedDecrement
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileSize
WriteFile
CloseHandle
GetSystemDirectoryA
CreateFileA
lstrcpyA
lstrlenA
OutputDebugStringA
GetCurrentProcess
GetLastError
FindClose
LoadLibraryA
GetModuleFileNameA
GetDriveTypeA
CreateDirectoryA
GetStartupInfoW
DeleteFileA
FindFirstFileA
FindNextFileA
GetVersionExA
InitializeCriticalSectionAndSpinCount
SetLastError
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
CopyFileA
GetStringTypeW
IsValidCodePage
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
HeapQueryInformation
HeapSize
GetModuleHandleExW
ExitProcess
ExitThread
CreateThread
HeapReAlloc
IsProcessorFeaturePresent
IsDebuggerPresent
VirtualQuery
VirtualAlloc
GetSystemInfo
RaiseException
GetCommandLineA
RtlUnwind
HeapAlloc
HeapFree
FindResourceExW
VirtualProtect
SearchPathA
Sleep
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetProfileIntA
GetTickCount
GetWindowsDirectoryA
GetCurrentDirectoryA
GetACP
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetStdHandle
GetLocaleInfoW
CompareStringW
MultiByteToWideChar
lstrcmpA
FlushFileBuffers
GlobalFlags
SetErrorMode
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
InterlockedExchange
ResumeThread
SetThreadPriority
WaitForSingleObject
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
GetSystemDirectoryW
GetCurrentThreadId
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
DecodePointer
EncodePointer
GetCurrentProcessId
GetUserDefaultLCID
SystemTimeToFileTime
ReplaceFileA
GetTempFileNameA
SetFileTime
GetFileTime
GetFileAttributesA
GetDiskFreeSpaceA
GetStringTypeExA
GetThreadLocale
GetVolumeInformationA
MoveFileA
LoadLibraryW
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetVersion
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileAttributesW

user32

TranslateMDISysAccel
GetUpdateRect
SubtractRect
MapDialogRect
GetWindowRgn
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
FrameRect
CharUpperBuffA
ModifyMenuA
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongA
SetCursorPos
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
GetComboBoxInfo
TrackMouseEvent
UpdateLayeredWindow
IsMenu
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
RegisterClipboardFormatA
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
MessageBeep
GetIconInfo
DrawIconEx
GetNextDlgGroupItem
IsClipboardFormatAvailable
WaitMessage
GetMenuDefaultItem
GetDCEx
UnionRect
CreateMenu
CopyAcceleratorTableA
PostThreadMessageA
GetTabbedTextExtentW
SetWindowRgn
DrawIcon
SetCapture
CopyImage
GetMenuItemInfoA
RealChildWindowFromPoint
LoadMenuW
LoadAcceleratorsW
UnregisterClassA
SystemParametersInfoA
IsRectEmpty
DeleteMenu
GetSystemMenu
WindowFromPoint
KillTimer
SetTimer
MonitorFromPoint
SetParent
ReuseDDElParam
UnpackDDElParam
LoadImageA
DestroyIcon
IntersectRect
InsertMenuItemA
DestroyMenu
CreatePopupMenu
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
ReleaseCapture
BringWindowToTop
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageA
DestroyCursor
LoadCursorW
OffsetRect
GetCursorPos
SetCursor
IsIconic
SetRect
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
MapVirtualKeyA
GetKeyNameTextA
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongA
MessageBoxA
IsWindowEnabled
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SetRectEmpty
IsWindowVisible
DestroyWindow
IsChild
IsWindow
GetSystemMetrics
CharUpperA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
UnhookWindowsHookEx
GetDesktopWindow
GetSysColorBrush
GetWindowRect
GetClientRect
ReleaseDC
GetDC
SetWindowPos
IsZoomed
wsprintfA
GetParent
InflateRect
CopyRect
FillRect
DrawFocusRect
GetSysColor
LockWindowUpdate
InvalidateRect
UpdateWindow
GetFocus
CharPrevA
LoadBitmapW
EnableWindow
SendMessageA
LoadCursorA

gdi32

SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextColor
SetTextAlign
StartDocA
GetObjectA
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
DPtoLP
GetViewportOrgEx
GetBkColor
GetTextMetricsA
CreateFontA
GetCharWidthA
StretchDIBits
CombineRgn
Escape
SetRectRgn
CreateEllipticRgn
Ellipse
CreateDIBSection
LPtoDP
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextColor
GetTextExtentPointA
GetTextExtentPoint32W
GetWindowOrgEx
GetTextFaceA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreatePolygonRgn
Polygon
Polyline
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
DeleteDC
CreateSolidBrush
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipBox
Rectangle
LineTo
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
BitBlt
CreateBitmap
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
MoveToEx
SelectObject
GetStockObject
DeleteObject
CreatePen
GetROP2
GetTextExtentPoint32A
ExcludeClipRect

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
ClosePrinter
GetJobA
OpenPrinterA

advapi32

RegQueryValueExA
RegQueryValueA
RegEnumKeyA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyExW
RegSetValueA
RegSetValueExA
RegEnumValueA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegCloseKey

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
SHAddToRecentDocs
ExtractIconA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHBrowseForFolderA
SHAppBarMessage

comctl32

ImageList_Draw
ImageList_DrawEx
ImageList_AddMasked
ImageList_GetIconSize

uxtheme

GetWindowTheme
GetThemeSysColor
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground
DrawThemeText
GetThemeColor
OpenThemeData
GetCurrentThemeName
CloseThemeData

ole32

OleCreateMenuDescriptor
CoInitializeEx
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
OleDestroyMenuDescriptor
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RevokeDragDrop
RegisterDragDrop
DoDragDrop
OleGetClipboard
OleLockRunning

oleaut32

SysAllocString
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImagePaletteSize

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

shlwapi

PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
StrFormatKBSizeA
PathIsUNCA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

114b815692242cdc1e0bf91ed83c40e1

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

elogapi

loc32vc0

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

uxtheme

ole32

oleaut32

oleacc

gdiplus

imm32

winmm

shlwapi

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 309KB - Virtual size: 309KB

.data Size: 24KB - Virtual size: 54KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 309KB - Virtual size: 309KB

.data
Size: 24KB - Virtual size: 54KB

.rsrc
Size: 28KB - Virtual size: 27KB