2024-06-08_c2bf71e3c13abb482d2ee2b7e40df6d1_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-06-08_c2bf71e3c13abb482d2ee2b7e40df6d1_icedid
Size

2.0MB
MD5

c2bf71e3c13abb482d2ee2b7e40df6d1
SHA1

b0241319ee946516286f4a000f2e80e5165f0685
SHA256

0034487fa6cb815fc335c22779783f8b3d08081bfda18418f71a9b3ffc00cce7
SHA512

d30607ab8d76993228387c550a8226256341d4de777011f67fe8423619d3158d2fd0e50ab7d9f2286597864fcef8c900515638d7155924de6b42aea4cf7e0ed4
SSDEEP

24576:FWCWFIM+WKbzai0DnAo6nbq+quWNOIzL0Jw9+be0FUps6HpwBkvsP:wghhbMuWNOIzLzae0FJBkUP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-08_c2bf71e3c13abb482d2ee2b7e40df6d1_icedid

Files

2024-06-08_c2bf71e3c13abb482d2ee2b7e40df6d1_icedid
.exe windows:4 windows x86 arch:x86

62464c31a79e694d97b0c618e9f21e19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

CreateMutexA
ReleaseMutex
FindResourceExA
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
GetFileTime
GetCurrentDirectoryA
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
LocalAlloc
FreeResource
GetSystemDefaultLangID
lstrcatA
WinExec
GetFileAttributesA
GetWindowsDirectoryA
lstrcpyA
IsBadReadPtr
LeaveCriticalSection
EnterCriticalSection
FormatMessageA
LocalFree
SetThreadLocale
lstrcpynA
SetProcessWorkingSetSize
DuplicateHandle
VirtualLock
SetEnvironmentVariableA
GetLocaleInfoW
IsBadCodePtr
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
CompareStringW
CompareStringA
lstrlenA
lstrlenW
GetVersion
MultiByteToWideChar
GetLocalTime
GetModuleFileNameA
GetCurrentProcessId
InterlockedDecrement
InterlockedIncrement
GetFileSize
ReadFile
SetFilePointer
QueryPerformanceFrequency
QueryPerformanceCounter
WriteFile
GetSystemDirectoryA
QueryDosDeviceA
CreateEventA
ResetEvent
WaitForSingleObject
lstrcmpiA
GetModuleHandleA
GetProcAddress
GetLastError
GetLogicalDrives
GetDriveTypeA
DeviceIoControl
CreateFileA
CloseHandle
GetCurrentProcess
SetPriorityClass
HeapAlloc
GetProcessHeap
HeapFree
Sleep
GlobalSize
GlobalReAlloc
GlobalFree
LoadLibraryA
FreeLibrary
GetTickCount
GetSystemTime
GetTempPathA
CopyFileA
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
WideCharToMultiByte
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetStdHandle
GetFileType
GetStdHandle
SetHandleCount
WritePrivateProfileStringA
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc
ExitThread
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
GetTimeZoneInformation
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
VirtualProtect
SetLastError
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
SetThreadPriority
ResumeThread
SetEvent
SuspendThread
FindClose
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
DeleteFileA
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
EnumResourceLanguagesA
GetVolumeInformationA
GetFullPathNameA
CreateThread

user32

SetWindowTextA
GetDesktopWindow
GetDlgCtrlID
GetWindowTextA
IsWindowEnabled
IsDialogMessageA
GetDlgItem
SetFocus
GetAsyncKeyState
SetActiveWindow
GetActiveWindow
GetCapture
ShowWindow
GetMenuState
UnhookWindowsHookEx
BeginPaint
EndPaint
GetWindowPlacement
IntersectRect
DefWindowProcA
RegisterClassA
GetClassInfoA
EqualRect
AdjustWindowRectEx
SetForegroundWindow
MapWindowPoints
GetMessagePos
GetMessageTime
GetTopWindow
GetLastActivePopup
GetForegroundWindow
GetWindowTextLengthA
SendDlgItemMessageA
RemovePropA
GetClassInfoExA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
CheckRadioButton
MoveWindow
GetMenuCheckMarkDimensions
CheckMenuItem
SetMenuItemBitmaps
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
ValidateRect
GetMessageA
PostQuitMessage
SetWindowContextHelpId
DestroyMenu
WindowFromPoint
CallWindowProcA
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
IsWindowVisible
MapDialogRect
MessageBeep
CopyIcon
DrawFocusRect
DestroyCursor
SetRectEmpty
WinHelpA
IsChild
PostMessageA
SystemParametersInfoA
IsWindow
DestroyWindow
InflateRect
GetSysColorBrush
CopyRect
IsMenu
GetClassNameA
GetWindow
RegisterWindowMessageA
GetFocus
ScreenToClient
DrawEdge
FillRect
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
CharUpperA
RemoveMenu
SetCursor
RedrawWindow
UpdateWindow
GetDialogBaseUnits
MsgWaitForMultipleObjects
DispatchMessageA
PeekMessageA
TranslateMessage
MessageBoxA
GetCursorPos
TrackPopupMenu
LoadMenuA
wsprintfA
DrawStateA
LoadImageA
GetKeyState
LoadCursorA
IsIconic
GetSystemMenu
GetMenu
ModifyMenuA
GetSubMenu
GetMenuStringA
GetMenuItemID
GetMenuItemCount
EnableMenuItem
AppendMenuA
DrawIcon
LoadBitmapA
DrawIconEx
SendMessageA
GetWindowRect
InvalidateRect
GetParent
EnableWindow
LoadIconA
UnregisterClassA
GetClientRect
GetSysColor
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
SetTimer
SetPropA
ClientToScreen
ReleaseCapture
SetCapture
SetWindowLongA
DrawFrameControl
SetRect
KillTimer
IsRectEmpty
GetDC
ReleaseDC
GetPropA
SetWindowPos
GetSystemMetrics
GetWindowLongA
OffsetRect
PtInRect
GetWindowDC

gdi32

CreateRectRgn
Escape
ExtTextOutA
RectVisible
PtVisible
GetCurrentObject
GetBkColor
DeleteDC
GetStockObject
MoveToEx
LineTo
Polygon
SetTextColor
SetPixel
Ellipse
SetBkColor
CreatePen
CreateRectRgnIndirect
CombineRgn
GetSystemPaletteEntries
GetDIBits
GetBitmapBits
DeleteObject
BitBlt
RealizePalette
CreateCompatibleDC
CreatePalette
GetObjectA
GetDeviceCaps
SetBkMode
GetTextExtentPoint32A
SetTextAlign
TextOutA
Rectangle
SelectObject
CreateFontIndirectA
CreateSolidBrush
SaveDC
RestoreDC
SetMapMode
GetClipBox
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreateBitmap
SelectPalette
GetMapMode
DPtoLP
SetTextJustification
GetTextExtentPointA
CreateCompatibleBitmap
GetRgnBox
GetTextColor
EnumFontFamiliesExA

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegEnumKeyA
RegSetValueExA
RegCreateKeyExA
RegEnumValueA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueA
RegEnumKeyExA

shell32

SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
SHGetMalloc

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

SysAllocStringLen
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysStringLen
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect

comctl32

ImageList_SetBkColor
ImageList_GetBkColor
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetImageInfo
ord17
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Create
ImageList_DrawIndirect
ImageList_Draw

shlwapi

PathFindExtensionA
PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFileExistsA

oledlg

ord8

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetSaveFileNameA
GetFileTitleA
ChooseColorA
GetOpenFileNameA

Sections

.text
Size: 744KB - Virtual size: 740KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 156KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 60KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62464c31a79e694d97b0c618e9f21e19

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

oledlg

oleacc

winspool.drv

comdlg32

Sections

.text Size: 744KB - Virtual size: 740KB

.rdata Size: 156KB - Virtual size: 154KB

.data Size: 60KB - Virtual size: 1.3MB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.text
Size: 744KB - Virtual size: 740KB

.rdata
Size: 156KB - Virtual size: 154KB

.data
Size: 60KB - Virtual size: 1.3MB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB