C:\TeamCity\buildAgent\work\be39dc226f0a3911\ECS\Release\EsgrafCfgSrv.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-06-20_77dc8c1d57dfd230ec789df04deba82b_icedid_silence.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-06-20_77dc8c1d57dfd230ec789df04deba82b_icedid_silence.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
2024-06-20_77dc8c1d57dfd230ec789df04deba82b_icedid_silence
-
Size
3.1MB
-
MD5
77dc8c1d57dfd230ec789df04deba82b
-
SHA1
1ff7745e6450ad077c195fbf3e554973b3a629cd
-
SHA256
4fca32596de3148c0c6350b3daca1ba1292a1f890ab5b672e283e5282e4e7c31
-
SHA512
4f2bb90f8c5c7a60f8cd60c324d8dee3988d04ed4d9f36700693c704436e4e4dd7098f5aa33eb3041949b87d63f6cd67973aa04595b21812b50580e746be419c
-
SSDEEP
98304:BQ3L5lqsgpV+2seIvr3MHqprkLbsGHJQ5obC3V:ybTe0gOk3Zu5obC3
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-06-20_77dc8c1d57dfd230ec789df04deba82b_icedid_silence
Files
-
2024-06-20_77dc8c1d57dfd230ec789df04deba82b_icedid_silence.exe windows:6 windows x86 arch:x86
f59749c5d0291c73806f7d038c36f1ff
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
zlibwapi
ord4
ord20
ord8
ord19
ord6
ord27
ord22
esmilicense
EWSExitLicense
EWSGetLicenseStr
EWSGetLicenseDate
EWSGetLicenseInt
EWSGetMD5
EWSVerifyLicenseEnv
EWSInitLicense
kernel32
CreateThread
ExitThread
HeapSize
HeapQueryInformation
SetStdHandle
GetFileType
IsValidCodePage
FatalAppExitA
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
RtlUnwind
GetProcessHeap
GetStringTypeW
CreateFileW
ReadConsoleW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
MoveFileExW
GetDriveTypeW
GetConsoleCP
SetFilePointerEx
OutputDebugStringW
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
WriteConsoleW
SetCurrentDirectoryW
GetCurrentDirectoryW
SetEnvironmentVariableA
HeapReAlloc
GetCommandLineA
DeleteFileW
SetConsoleMode
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
GetConsoleMode
IsProcessorFeaturePresent
IsDebuggerPresent
HeapFree
HeapAlloc
AreFileApisANSI
GetModuleHandleExW
ExitProcess
GetSystemTimeAsFileTime
LocalUnlock
LocalLock
FindResourceExW
GetUserDefaultLCID
ReplaceFileA
GetDiskFreeSpaceA
VirtualProtect
SearchPathA
GetProfileIntA
VerifyVersionInfoA
VerSetConditionMask
GetACP
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExA
GetCPInfo
GetOEMCP
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetAtomNameA
GetStringTypeExA
GetVolumeInformationA
MoveFileA
GetShortPathNameA
LoadLibraryExA
DuplicateHandle
UnlockFile
LockFile
GetFullPathNameA
FlushFileBuffers
GlobalGetAtomNameA
GlobalFindAtomA
FindResourceA
FreeResource
GetSystemDirectoryW
DecodePointer
EncodePointer
LoadLibraryW
GetModuleFileNameW
GetVersion
GetFileAttributesW
VirtualQuery
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleW
SuspendThread
SetThreadPriority
CompareStringA
GlobalDeleteAtom
LoadLibraryExW
FileTimeToLocalFileTime
CreateSemaphoreA
WaitForMultipleObjects
CreateMutexA
ReleaseMutex
ReleaseSemaphore
MulDiv
GlobalSize
SetLastError
WritePrivateProfileStringA
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
InitializeCriticalSection
GetCurrentThread
SetFileAttributesA
CompareFileTime
SetThreadLocale
GetThreadLocale
TerminateThread
ResumeThread
ResetEvent
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
FindClose
FindNextFileA
FindFirstFileA
MultiByteToWideChar
lstrcatA
GetTempFileNameA
GetTempPathA
SetFileTime
SystemTimeToFileTime
FileTimeToSystemTime
GetFileTime
GetTickCount
CreateDirectoryA
GetComputerNameExA
GetComputerNameA
lstrcpyA
GetSystemTime
Beep
SetEndOfFile
ReadFile
GetFileSize
WaitForSingleObject
CreateEventA
SetConsoleCtrlHandler
lstrcmpiA
RemoveDirectoryA
CopyFileA
GetFileAttributesA
GetTimeZoneInformation
lstrcmpA
WriteFile
SetFilePointer
DeleteFileA
GetModuleHandleA
SetErrorMode
SetUnhandledExceptionFilter
SetEvent
Sleep
GetConsoleWindow
GetModuleFileNameA
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
GetStdHandle
FormatMessageA
LocalFree
GetVersionExA
OutputDebugStringA
lstrcmpW
lstrlenA
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
DeleteCriticalSection
LockResource
LoadLibraryA
GetLocalTime
EnterCriticalSection
GetProcAddress
GetLastError
LeaveCriticalSection
SizeofResource
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GetWindowsDirectoryA
GetCurrentProcess
LoadResource
FreeLibrary
FindResourceW
lstrcpynA
CreateFileA
VirtualAlloc
GetSystemInfo
GlobalAddAtomA
RaiseException
InitializeCriticalSectionEx
LockFileEx
UnlockFileEx
CreateSemaphoreW
user32
IsCharLowerA
GetKeyboardLayout
WaitMessage
PostThreadMessageA
GetSystemMenu
IsZoomed
GetComboBoxInfo
LoadMenuW
TrackMouseEvent
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetKeyNameTextA
MapVirtualKeyA
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
GetIconInfo
DrawIconEx
IsRectEmpty
OffsetRect
SetRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
GetMenuDefaultItem
CreatePopupMenu
GetDialogBaseUnits
IntersectRect
InflateRect
GetMenuItemInfoA
DestroyMenu
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DestroyIcon
IsIconic
ScrollWindowEx
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
UnregisterClassA
InvalidateRect
KillTimer
SetTimer
RealChildWindowFromPoint
GetDesktopWindow
SetWindowTextA
MapVirtualKeyExA
SystemParametersInfoA
CopyImage
FillRect
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetSystemMetrics
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
GetKeyboardState
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
SetFocus
IsWindow
GetLastActivePopup
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetRect
SetParent
LockWindowUpdate
SetClassLongA
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
FrameRect
EnumChildWindows
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
GetTabbedTextExtentW
GetTabbedTextExtentA
WindowFromDC
DrawIcon
GetWindowRgn
DestroyCursor
GetDCEx
MapDialogRect
CreateMenu
InSendMessage
SendNotifyMessageA
SubtractRect
DeleteMenu
GetUpdateRect
GetWindowThreadProcessId
GetWindowLongA
MessageBoxA
IsWindowEnabled
EnableWindow
SetCursor
ShowOwnedPopups
CallNextHookEx
SetWindowsHookExA
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
LoadBitmapW
GetParent
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
SendMessageA
UnhookWindowsHookEx
PostQuitMessage
PostMessageA
MsgWaitForMultipleObjectsEx
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
LoadImageA
CharUpperA
MessageBeep
wsprintfA
LoadStringA
wvsprintfA
IsDialogMessageA
gdi32
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
GetCurrentObject
CreateFontA
GetCharWidthA
StretchDIBits
PatBlt
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
EndDoc
StartPage
EndPage
AbortDoc
GetSystemPaletteEntries
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
SetTextCharacterExtra
SetStretchBltMode
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
GetMapMode
CreateRectRgnIndirect
CombineRgn
GetTextExtentPoint32A
CreateFontIndirectA
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutA
TextOutA
MoveToEx
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
SetTextAlign
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
GetTextMetricsA
DPtoLP
SetAbortProc
SetRectRgn
ArcTo
StartDocA
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
RoundRect
CopyMetaFileA
SetGraphicsMode
SetMapperFlags
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
PlayMetaFile
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
CreateCompatibleDC
BitBlt
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
SetTextJustification
msimg32
AlphaBlend
TransparentBlt
winspool.drv
GetJobA
ClosePrinter
DocumentPropertiesA
OpenPrinterA
advapi32
ReportEventA
CryptReleaseContext
GetFileSecurityA
SetFileSecurityA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExW
RegQueryValueA
RegEnumKeyA
RegSetValueA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
CryptGetHashParam
RegisterEventSourceA
DeleteService
RegCloseKey
RegSetValueExA
RegCreateKeyA
CreateServiceA
QueryServiceStatus
CloseServiceHandle
OpenServiceA
OpenSCManagerA
DeregisterEventSource
GetUserNameA
CryptHashData
CryptDestroyHash
CryptCreateHash
CryptAcquireContextA
shell32
SHFileOperationA
SHGetFileInfoA
SHAddToRecentDocs
ExtractIconA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHGetMalloc
SHBrowseForFolderA
DragQueryFileA
DragFinish
SHAppBarMessage
ShellExecuteExA
shlwapi
PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
StrStrIA
StrFormatKBSizeA
uxtheme
CloseThemeData
GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
DrawThemeText
DrawThemeParentBackground
OpenThemeData
ole32
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
OleGetClipboard
CoTaskMemAlloc
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleCreateFromData
StgCreateDocfileOnILockBytes
OleDuplicateData
CreateItemMoniker
WriteClassStm
OleCreate
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
IsAccelerator
ReleaseStgMedium
OleRegGetUserType
SetConvertStg
CoCreateGuid
CoInitializeEx
CLSIDFromString
StringFromGUID2
CoDisconnectObject
CreateStreamOnHGlobal
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleSetMenuDescriptor
OleLockRunning
StgCreateDocfile
StgOpenStorage
StgOpenStorageOnILockBytes
StgIsStorageFile
CreateFileMoniker
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
CreateGenericComposite
StringFromCLSID
CoUninitialize
CoCreateInstance
CoInitialize
CreateOleAdviseHolder
CreateDataAdviseHolder
GetRunningObjectTable
CoGetMalloc
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleRegEnumVerbs
OleRegGetMiscStatus
PropVariantCopy
OleRun
GetHGlobalFromILockBytes
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
CoTaskMemFree
oleaut32
VariantTimeToSystemTime
SysAllocString
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
VarDecFromStr
VarBstrFromDec
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
SysStringLen
SysReAllocStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
OleLoadPicture
VarBstrFromDate
SystemTimeToVariantTime
SysFreeString
ws2_32
select
accept
listen
bind
recv
send
connect
htons
socket
gethostbyname
inet_addr
closesocket
shutdown
WSAStartup
WSACleanup
oledlg
ord8
gdiplus
GdipAlloc
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
crypt32
CryptProtectData
CryptUnprotectData
secur32
EncryptMessage
AcceptSecurityContext
RevertSecurityContext
ImpersonateSecurityContext
FreeContextBuffer
QuerySecurityPackageInfoA
VerifySignature
DecryptMessage
CompleteAuthToken
InitializeSecurityContextA
AcquireCredentialsHandleA
FreeCredentialsHandle
QueryContextAttributesA
DeleteSecurityContext
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
winmm
PlaySoundA
oleacc
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
Sections
.text Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 576KB - Virtual size: 575KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 42KB - Virtual size: 110KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 93KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ