2024-06-11_0f737fe84a6599f0ace7f9b33de2b230_icedid | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-11_0f737fe84a6599f0ace7f9b33de2b230_icedid
Size

1.2MB
MD5

0f737fe84a6599f0ace7f9b33de2b230
SHA1

aeaa89aa252035563d7cd689a8ea0e1a771f17da
SHA256

c0f1df45fdbec0bf5239ddf7ac79a1ba0689488979206e2f2272ee97ff975826
SHA512

9481d2ea7bfa9e57a818b3f4cc5a49d565fc08e9ceb7bbf26cecb2093b8d0d4b2481bdd09b193044d6e49cd338ac2b00ea88c8910fbc03b8c5a8af4ad9c39c7a
SSDEEP

24576:dtf3nPNVrHyW/0gUvkkyDBS4oyxEQhGoe4LEEzNY:PLyR6ZG54wEO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-11_0f737fe84a6599f0ace7f9b33de2b230_icedid

Files

2024-06-11_0f737fe84a6599f0ace7f9b33de2b230_icedid
.exe windows:4 windows x86 arch:x86

0c4dc5a20a7ca2b8bd3ce08033f8398b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleHandleA
GetProcAddress
CloseHandle
GetTickCount
CreateFileA
DeviceIoControl
ExitProcess
GetSystemTime
GetVersion

user32

MessageBoxExA
SetTimer
KillTimer

cdll5

Lock32_Function

t40shapi

ord15

Sections

.text
Size: 948KB - Virtual size: 944KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 196KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.......
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE