2024-06-23_935f44adc8136f0005c16a8a8926a20a_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-23_935f44adc8136f0005c16a8a8926a20a_icedid
Size

6.8MB
MD5

935f44adc8136f0005c16a8a8926a20a
SHA1

9cc1546e0b2ad89e3a9246cbb7e992f87da352cb
SHA256

d5262770026ed6059926cbcc273a2182f7b7860ebf8e363f245ef310fb78e3c9
SHA512

9e3a8d6a378d12e35f798fb66b9048d1b39207e25cc1d4f49820f4cee53541fa04114da11d99d5d64dbfcc6c9fbc6b05f7d9c0c39fb751d0463c602e5ff3877e
SSDEEP

196608:KO2EL4oo5oooooooToooooooooHotoooJoooooYoooooouoooJojon73+zOpOC:/OOC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-23_935f44adc8136f0005c16a8a8926a20a_icedid

Files

2024-06-23_935f44adc8136f0005c16a8a8926a20a_icedid
.exe windows:4 windows x86 arch:x86

5fca270f8a4afe6e384ab002ec980d8d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetCurrentProcessId
HeapReAlloc
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
OutputDebugStringA
GetCommandLineA
GetStartupInfoA
GetDateFormatA
GetTimeFormatA
TerminateProcess
ExitProcess
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapAlloc
HeapFree
RtlUnwind
GetSystemTimeAsFileTime
SetErrorMode
LocalLock
LocalUnlock
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
InterlockedExchange
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
MoveFileA
GetOEMCP
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
LeaveCriticalSection
InterlockedIncrement
GlobalFlags
FileTimeToSystemTime
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
WaitForSingleObject
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetModuleFileNameA
GlobalReAlloc
GetCurrentThreadId
GlobalGetAtomNameA
GetTimeZoneInformation
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GetModuleHandleA
SetLastError
FormatMessageA
lstrcpynA
FreeResource
MulDiv
CreateThread
SetThreadPriority
LocalAlloc
LocalHandle
LocalFree
GetCurrentDirectoryA
WritePrivateProfileStringA
lstrcmpA
lstrcpyA
GetProfileStringA
GlobalFree
GlobalAlloc
FreeLibrary
Sleep
CreateProcessA
LoadLibraryA
SetProcessAffinityMask
CreateMutexA
GetPrivateProfileStringA
GlobalLock
GlobalUnlock
GetCurrentProcess
SetPriorityClass
GetStringTypeW
GetStringTypeA
HeapSize
GetFileType
SetStdHandle
MoveFileExA
GetSystemDirectoryA
ReleaseSemaphore
CreateSemaphoreA
CompareStringW
CompareStringA
GetLastError
GetTickCount
CreateFileA
WriteFile
CloseHandle
lstrlenW
GetCPInfo
lstrlenA
lstrcmpiA
MultiByteToWideChar
GetVersion
GetLocalTime
GetProcAddress
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
SetUnhandledExceptionFilter

user32

ReleaseCapture
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
DestroyMenu
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
wsprintfA
EndPaint
BeginPaint
GetWindowDC
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
CopyAcceleratorTableA
SetFocus
IsChild
GetWindowTextLengthA
GetForegroundWindow
InvalidateRgn
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetNextDlgGroupItem
MessageBeep
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
GetScrollPos
SetForegroundWindow
IsWindowVisible
GetMenu
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetParent
RegisterClipboardFormatA
PostThreadMessageA
SetScrollInfo
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
IntersectRect
GetWindowPlacement
GetMenuStringA
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
IsWindowEnabled
GetDCEx
LockWindowUpdate
SetCapture
GetWindowTextA
CharNextA
EndDialog
SendDlgItemMessageA
UpdateWindow
SetWindowPos
AnimateWindow
LoadIconA
GetFocus
KillTimer
SetTimer
IsIconic
GetSystemMenu
DrawIcon
GetWindow
MessageBoxA
CharUpperA
LoadCursorA
SetRectEmpty
PtInRect
IsRectEmpty
LoadImageA
PostMessageA
SetCursor
DestroyCursor
GetWindowLongA
WindowFromPoint
GetParent
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
GetWindowRect
FrameRect
OffsetRect
InflateRect
GetIconInfo
CreateIconIndirect
IsMenu
DrawStateA
DrawFocusRect
SendMessageA
GetClientRect
GetMenuItemInfoA
GetSysColorBrush
GetSystemMetrics
SystemParametersInfoA
GetSysColor
DrawIconEx
DestroyIcon
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetDesktopWindow
ReleaseDC
GetDC
ModifyMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
CreatePopupMenu
CreateMenu
DrawEdge
FillRect
LoadBitmapA
CopyRect
SetRect
EnableWindow
SetWindowsHookExA

gdi32

GetRgnBox
GetTextColor
CombineRgn
SetRectRgn
GetBkColor
SetViewportExtEx
GetCharWidthA
StretchDIBits
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
GetTextExtentPoint32W
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
RestoreDC
SaveDC
GetClipBox
AbortDoc
CreateRectRgnIndirect
SetWindowOrgEx
CreatePatternBrush
GetTextMetricsA
DPtoLP
GetMapMode
SetMapMode
SetStretchBltMode
CreateBitmap
SetBkColor
GetStockObject
SetBkMode
SetTextColor
StretchBlt
CreateDIBSection
CreateSolidBrush
DeleteDC
DeleteObject
EndDoc
EndPage
SelectObject
TextOutA
StartPage
StartDocA
CreateDCA
CreateFontA
CreatePen
CreateFontIndirectA
CreateCompatibleBitmap
GetObjectA
CreateCompatibleDC
GetDeviceCaps
GetBkMode
Ellipse
Rectangle
PatBlt
BitBlt
GetPixel
SetPixel
GetTextExtentPoint32A
PtVisible
RectVisible
ExtTextOutA
Escape
ScaleViewportExtEx

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

winspool.drv

OpenPrinterA
ClosePrinter
EnumPrintersA
DocumentPropertiesA

advapi32

CryptHashData
RegOpenKeyA
CryptAcquireContextA
CryptCreateHash
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA

shell32

ShellExecuteExA

comctl32

ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
_TrackMouseEvent
ord17
ImageList_Destroy
ImageList_Create
ImageList_GetImageCount

shlwapi

PathStripToRootA
PathFindFileNameA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
CoRegisterMessageFilter
OleFlushClipboard

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
SysAllocString

ws2_32

WSACleanup
WSAStartup

gdiplus

GdipAlloc
GdipCloneBrush
GdipSetSmoothingMode
GdiplusStartup
GdiplusShutdown
GdipFillPieI
GdipDeleteBrush
GdipFillRectangleI
GdipCreateFromHDC
GdipCreateSolidFill
GdipDeleteGraphics
GdipFree

odbc32

ord8
ord17
ord41
ord10
ord2
ord1
ord23
ord15
ord9
ord14
ord3
ord61
ord16
ord20
ord5
ord48
ord49
ord11
ord19
ord12
ord46
ord18
ord13
ord59
ord43
ord68
ord44
ord45
ord50
ord51

winmm

PlaySoundA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA

hid

HidD_GetPreparsedData
HidP_GetCaps
HidD_FreePreparsedData
HidD_SetFeature
HidD_GetHidGuid
HidD_GetAttributes
HidD_GetFeature

phonic_ubox

ord26
ord1
ord6
ord2
ord8
ord33

mscoree

_CorExeMain

Sections

.text
Size: 584KB - Virtual size: 583KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6.1MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5fca270f8a4afe6e384ab002ec980d8d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ws2_32

gdiplus

odbc32

winmm

setupapi

hid

phonic_ubox

mscoree

Sections

.text Size: 584KB - Virtual size: 583KB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 12KB - Virtual size: 5.1MB

.rsrc Size: 6.1MB - Virtual size: 6.1MB

.text
Size: 584KB - Virtual size: 583KB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 12KB - Virtual size: 5.1MB

.rsrc
Size: 6.1MB - Virtual size: 6.1MB