2024-06-09_1db8d9db32c2baf870b30775fa2dd5e7_floxif_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-09_1db8d9db32c2baf870b30775fa2dd5e7_floxif_icedid
Size

5.1MB
MD5

1db8d9db32c2baf870b30775fa2dd5e7
SHA1

908bf232521d3dcd6e157cbbd6f866cfa5a9799b
SHA256

8c89375e90ddbc153c317ec9e5fba98a31d8e86d417234f19f9f764a14ad2f70
SHA512

f63e1e911d2c3e13d0179f727329ae539afd5e6b72851b3576994783e6ecec7687875c12115aeae433bb04e009b1e4196279b8ba9dd79816a121117bb209c93e
SSDEEP

49152:DZpjrERjdU9ZzcAoBYfz9Jq9JD7VF/pg0lEEkJ+T+qdfgMPr1sT0OYPQ2461B/0:0mhoB2z+VRpdeEkJi+qtgZG54

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-09_1db8d9db32c2baf870b30775fa2dd5e7_floxif_icedid

Files

2024-06-09_1db8d9db32c2baf870b30775fa2dd5e7_floxif_icedid
.exe windows:4 windows x86 arch:x86

55d6a7611466b6f1ba215dd7411d30e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Dokumente und Einstellungen\Administrator\Desktop\emule-dev\pro_ultra2\Release\emule.pdb

Imports

kernel32

UnhandledExceptionFilter
GetStdHandle
HeapSize
SetStdHandle
CreateThread
ExitThread
VirtualQuery
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
GetCommandLineW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
GetOEMCP
GetStringTypeA
GetCurrentDirectoryA
IsBadReadPtr
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetDriveTypeA
GetSystemDirectoryA
ExitProcess
GetCurrentProcess
GetCurrentProcessId
LocalAlloc
CreateFileA
lstrlenA
FindClose
GetTimeZoneInformation
LocalFree
SetLastError
Beep
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
MulDiv
SetThreadPriority
FreeResource
SetFilePointer
WaitForMultipleObjects
InterlockedDecrement
InterlockedIncrement
ResetEvent
QueryPerformanceFrequency
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetLocalTime
GetSystemInfo
VirtualAlloc
GetDateFormatA
GetTimeFormatA
PeekNamedPipe
GetFileInformationByHandle
GetFileType
TerminateProcess
ReadFile
WriteFile
GetOverlappedResult
GetProcessHeap
HeapAlloc
HeapFree
TerminateThread
SetEnvironmentVariableA
DeviceIoControl
SetEvent
ResumeThread
WritePrivateProfileStringA
GetPrivateProfileStringA
SetThreadLocale
GetSystemDefaultLCID
GlobalAlloc
GlobalFree
SetConsoleCtrlHandler
GlobalLock
GlobalUnlock
LoadLibraryA
FreeLibrary
RaiseException
GetFileSize
GetTickCount
GetCurrentThreadId
GetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
Sleep
LoadResource
LockResource
SizeofResource
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetSystemTimeAsFileTime
HeapReAlloc
RtlUnwind
GlobalFlags
SetErrorMode
VirtualProtect
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
GetCurrentThread
lstrcmpiA
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GlobalDeleteAtom
GetVersionExA
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
ReleaseMutex
DuplicateHandle
UnlockFile
LockFile
FlushFileBuffers
SuspendThread
lstrcmpA
GlobalSize
SetEndOfFile

advapi32

LookupPrivilegeValueW
OpenProcessToken
RegCloseKey
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
AdjustTokenPrivileges

user32

DestroyWindow
GetParent
FillRect
GetSysColor
GetDesktopWindow
SetForegroundWindow
GetDlgItem
wsprintfA
CopyRect
SetWindowRgn
InvalidateRect
IsWindowVisible
TranslateMessage
MapWindowPoints
FrameRect
UpdateWindow
CreateIconIndirect
GetIconInfo
InflateRect
OffsetRect
DrawFocusRect
GetActiveWindow
GetNextDlgTabItem
WindowFromPoint
DestroyMenu
DestroyCursor
SetCursor
GetSubMenu
CreatePopupMenu
ScreenToClient
GetClassNameA
GetCursorPos
DestroyIcon
GetAsyncKeyState
PtInRect
DrawEdge
DrawFrameControl
SetRect
GetCapture
SetCapture
ReleaseCapture
GetMessagePos
GetWindow
LockWindowUpdate
GetDCEx
GetNextDlgGroupItem
DeleteMenu
SetParent
UnpackDDElParam
ReuseDDElParam
SetMenu
InvalidateRgn
SetWindowContextHelpId
MapDialogRect
EndDialog
ShowOwnedPopups
EndPaint
BeginPaint
PostQuitMessage
GetDC
ReleaseDC
ClientToScreen
SetTimer
ExitWindowsEx
KillTimer
UnhookWindowsHookEx
CallNextHookEx
IsWindow
AdjustWindowRectEx
GetClientRect
GetWindowRect
EmptyClipboard
SetClipboardData
EnumWindows
GetSystemMetrics
OpenClipboard
RedrawWindow
CloseClipboard
IsWindowEnabled
MoveWindow
IsDlgButtonChecked
MessageBoxA
SetWindowPos
EnableMenuItem
IsChild
ChildWindowFromPointEx
SubtractRect
ShowWindow
ShowCursor
SetMenuDefaultItem
SetRectEmpty
GetWindowTextA
SetDlgItemTextA
SetWindowTextA
ScrollDC
CheckMenuRadioItem
IsRectEmpty
CopyIcon
ShowScrollBar
DrawIconEx
CopyImage
EqualRect
MessageBeep
FlashWindow
SetActiveWindow
BringWindowToTop
IsIconic
GetSystemMenu
RemoveMenu
GetMenuItemCount
SetDlgItemInt
CheckMenuItem
CreateMenu
DrawIcon
IntersectRect
GetDoubleClickTime
GetSysColorBrush
GetKeyState
GetWindowDC
GetFocus
GetMenu
IsMenu
GetWindowRgn
GetScrollInfo
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsZoomed
GetMenuItemID
GetMenuState
ValidateRect
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindowPlacement
SystemParametersInfoA
GetDlgCtrlID
SetWindowPlacement
SetScrollInfo
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
ScrollWindow
GetMessageTime
GetTopWindow
GetLastActivePopup
GetForegroundWindow
SetFocus
SendDlgItemMessageA
CheckDlgButton
CheckRadioButton
GetDlgItemInt

gdi32

SetBoundsRect
SetBitmapDimensionEx
SetBkMode
GetWindowOrgEx
GetViewportOrgEx
GetBitmapBits
SetBitmapBits
CreateDIBSection
SetDIBColorTable
GdiFlush
CreateRectRgnIndirect
Rectangle
RealizePalette
CreatePalette
Polygon
GetPixel
SetPixel
SelectObject
SetBkColor
SetTextColor
DeleteDC
DeleteObject
BitBlt
GetRgnBox
Ellipse
LPtoDP
CreateEllipticRgn
SelectPalette
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
PatBlt
CreatePolygonRgn
FillRgn
SetRectRgn
GetClipBox
ExtSelectClipRgn
SetStretchBltMode
SetDIBitsToDevice
GetObjectA
GetDIBits
CreateDIBitmap
SetTextAlign
Escape
RectVisible
PtVisible
SetPixelV
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetTextColor
GetBkMode
GetBkColor
SetBrushOrgEx
GetBrushOrgEx
CreateCompatibleDC
OffsetRgn
CombineRgn
CreateRoundRectRgn
CreateRectRgn
CreateCompatibleBitmap
GetBitmapDimensionEx
CreatePatternBrush
CreateSolidBrush
CreatePen
DPtoLP
GetDeviceCaps
GetStockObject
CreateBitmap
CreateBrushIndirect

shell32

SHGetMalloc
DragFinish
SHAppBarMessage

winmm

timeGetTime
timeGetDevCaps
timeBeginPeriod
timeEndPeriod

crypt32

CryptEncryptMessage
CertFreeCertificateContext
CertCloseStore
CertFindCertificateInStore
CertNameToStrW
CertGetNameStringW
CertGetCertificateContextProperty
CertOpenSystemStoreW

comctl32

ImageList_Remove
ImageList_GetImageCount
ImageList_DragLeave
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_DragMove
ImageList_EndDrag
ImageList_BeginDrag
ImageList_SetOverlayImage
CreatePropertySheetPageW
ImageList_Destroy
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Draw
_TrackMouseEvent
ord17
ImageList_ReplaceIcon
ImageList_Create
ImageList_LoadImageW
PropertySheetW
DestroyPropertySheetPage

shlwapi

PathFileExistsW
PathRenameExtensionW
PathRemoveFileSpecW
PathIsRelativeW
PathRemoveExtensionW
PathFindExtensionW
PathFindFileNameW
PathRemoveBackslashW
PathCanonicalizeW
PathAddBackslashW
PathStripToRootW
PathStripPathW
PathGetArgsW
StrStrIW
PathIsUNCW
PathCombineW
UrlUnescapeW
PathMatchSpecW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
OleSetContainedObject
CreateStreamOnHGlobal
CoTaskMemAlloc
StgOpenStorage
CoTaskMemFree
CoCreateInstance
CoInitialize
CoInitializeSecurity
OleDuplicateData
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleGetClipboard
CoGetClassObject
StgOpenStorageOnILockBytes
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
ReleaseStgMedium
CoUninitialize
CoFreeUnusedLibraries

oleaut32

OleCreateFontIndirect
SafeArrayGetDim
SafeArrayGetElemsize
LoadRegTypeLi
DispCallFunc
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantInit
VariantClear
SysAllocStringLen
SysFreeString
SysAllocString
SafeArrayCreate
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElement
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
SafeArrayDestroy
SafeArrayPutElement
SysStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
OleLoadPicture
VariantCopy

urlmon

FindMimeFromData

wininet

InternetGetLastResponseInfoW
InternetCrackUrlW
HttpQueryInfoW
InternetCanonicalizeUrlW
InternetReadFile
InternetCloseHandle
InternetErrorDlg
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetConnectW
InternetSetStatusCallbackW
InternetOpenW
InternetQueryOptionW
InternetQueryDataAvailable
InternetOpenUrlW
InternetWriteFile
InternetSetFilePointer

winspool.drv

ClosePrinter

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 648KB - Virtual size: 646KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55d6a7611466b6f1ba215dd7411d30e4

Headers

File Characteristics

PDB Paths

Imports

kernel32

advapi32

user32

gdi32

shell32

winmm

crypt32

comctl32

shlwapi

ole32

oleaut32

urlmon

wininet

winspool.drv

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.rdata Size: 648KB - Virtual size: 646KB

.data Size: 68KB - Virtual size: 2.2MB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.text
Size: 2.9MB - Virtual size: 2.9MB

.rdata
Size: 648KB - Virtual size: 646KB

.data
Size: 68KB - Virtual size: 2.2MB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB