2024-06-24_fb7af33227d102ce5d2cae30d9e0f2b4_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-24_fb7af33227d102ce5d2cae30d9e0f2b4_icedid
Size

1.3MB
MD5

fb7af33227d102ce5d2cae30d9e0f2b4
SHA1

80ab9cc280473997070ded178d11e5bb6a5cf059
SHA256

6138a605b6006b74906daf13e00af3625705dc19d129020b007705dc3afc814d
SHA512

cb568810a15b752344dd55e8d2fa2f367a480096243b3cd78a6c0ded84a7eb5b8055a99aa47444d3dd1931c7bb5dbb801943165fdd4a66b5cbc26c2e95fd0281
SSDEEP

24576:NYxwUw+OHJt1uroiRtppOf/w/hfEsO+u0:P5uMMpOqhfEy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-24_fb7af33227d102ce5d2cae30d9e0f2b4_icedid

Files

2024-06-24_fb7af33227d102ce5d2cae30d9e0f2b4_icedid
.exe windows:5 windows x86 arch:x86

8ad9dd1f7ab79f3c20c30963adc435be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
PathFileExistsW
PathCompactPathW

kernel32

GlobalFlags
GlobalGetAtomNameW
GetStartupInfoW
RtlUnwind
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
MoveFileA
DeleteFileA
ExitThread
CreateThread
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapReAlloc
ExitProcess
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
InterlockedIncrement
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetStringTypeW
GetTimeZoneInformation
GetTimeFormatA
GetDateFormatA
InitializeCriticalSectionAndSpinCount
SetStdHandle
CreateFileA
LCMapStringA
LCMapStringW
GetStringTypeA
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetCurrentDirectoryA
GetDriveTypeA
GetProcessHeap
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
GetFileTime
GetFileAttributesW
SetErrorMode
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrlenA
lstrcmpA
FileTimeToLocalFileTime
FindNextFileW
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentProcessId
GetModuleHandleA
InterlockedDecrement
FormatMessageW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
WritePrivateProfileStringW
GetLogicalDriveStringsW
GetDriveTypeW
DeleteFileW
GetFileSizeEx
CreateFileW
ReadFile
SetFilePointerEx
WriteFile
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
MulDiv
LocalAlloc
LocalLock
LocalFree
LocalUnlock
GlobalLock
GlobalUnlock
GetVersionExW
CreateDirectoryW
FileTimeToSystemTime
CreateEventW
ResumeThread
SystemTimeToFileTime
FreeLibrary
WaitForMultipleObjects
GetSystemTime
ResetEvent
SetEvent
WaitForSingleObject
CloseHandle
InitializeCriticalSection
Sleep
GetTickCount
CreateMutexW
LoadLibraryExW
lstrlenW
GetModuleFileNameW
GetLastError
SetLastError
GetProcAddress
GetModuleHandleW
LoadLibraryW
WideCharToMultiByte
GlobalMemoryStatus
GetLocalTime
GlobalAlloc
GlobalReAlloc
GlobalFree
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetFileType

user32

CopyAcceleratorTableW
IsRectEmpty
InvalidateRgn
TranslateAcceleratorW
BringWindowToTop
CreatePopupMenu
InsertMenuItemW
LoadAcceleratorsW
ReuseDDElParam
UnpackDDElParam
RegisterClipboardFormatW
PostThreadMessageW
CharNextW
GetMenuItemInfoW
UnregisterClassW
GetSysColorBrush
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
GetMessageW
ValidateRect
InflateRect
GetDesktopWindow
GetNextDlgTabItem
EndDialog
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
GetWindowTextLengthW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
GetKeyState
SetMenu
GetScrollRange
SetScrollPos
GetScrollPos
IsWindowVisible
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
SetScrollInfo
GetDlgCtrlID
CallWindowProcW
GetMenu
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowThreadProcessId
IsWindowEnabled
GetWindowDC
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
CharUpperW
MessageBoxA
GetNextDlgGroupItem
ClientToScreen
WindowFromPoint
SetWindowRgn
GetCapture
GetActiveWindow
GetLastActivePopup
MessageBeep
CreateDialogIndirectParamW
IsDialogMessageW
WaitMessage
PostQuitMessage
DestroyWindow
SetWindowLongW
GetSystemMenu
CheckDlgButton
SetFocus
MoveWindow
SetWindowTextW
WinHelpW
RedrawWindow
ReleaseDC
GetDC
LoadImageW
LoadBitmapW
GetDialogBaseUnits
GetAsyncKeyState
IsWindow
GetWindowTextW
GetDlgItem
GetWindow
GetClassNameW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
LoadStringW
DestroyIcon
BeginPaint
EndPaint
ReleaseCapture
SetCapture
FrameRect
SystemParametersInfoW
GetWindowLongW
LoadMenuW
GetSubMenu
EnableMenuItem
CheckMenuItem
ModifyMenuW
DrawTextW
GetClientRect
ScreenToClient
InvalidateRect
GetParent
SendMessageW
GetCursorPos
EnableWindow
PostMessageW
GetWindowRect
SetTimer
KillTimer
SetRect
FillRect
GetSysColor
TabbedTextOutW
DrawTextExW
GrayStringW
SetCursor
LoadCursorW
CopyRect
PtInRect
SetRectEmpty
OffsetRect
DrawEdge
DrawFocusRect
UpdateWindow
GetScrollInfo
SetWindowPos
MessageBoxW
GetSystemMetrics
SetForegroundWindow
ShowWindow
FindWindowW
TranslateMessage
DispatchMessageW
PeekMessageW
DrawIcon
SetMenuDefaultItem
TrackPopupMenu
DestroyMenu
MonitorFromWindow
GetMonitorInfoW
LoadIconW
IsIconic
DefWindowProcW

gdi32

ExtSelectClipRgn
CreateBitmap
ScaleWindowExtEx
CreateRectRgnIndirect
GetBkColor
GetRgnBox
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
CreateCompatibleDC
CreatePalette
MoveToEx
LineTo
ExcludeClipRect
GetClipBox
GetObjectW
SetMapMode
SetBkMode
SelectClipRgn
CreateRectRgn
CombineRgn
GetPixel
CreateDCW
DeleteDC
SetBkColor
GetCurrentObject
Polygon
Ellipse
SetBitmapBits
CreatePatternBrush
CreatePen
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetMapMode
CreateCompatibleBitmap
GetCurrentPositionEx
SaveDC
GetTextExtentPoint32W
RestoreDC
DeleteObject
SelectObject
GetTextColor
SetTextColor
StretchBlt
Rectangle
CreateFontIndirectW
CreateSolidBrush
BitBlt
CreateFontW
GetSystemPaletteEntries
GetStockObject
SelectPalette
GetDIBits
RealizePalette
GetDeviceCaps

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCloseKey
RegOpenKeyW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW

shell32

DragQueryFileW
DragFinish
ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW

comctl32

_TrackMouseEvent

oledlg

OleUIBusyW

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
CoTaskMemAlloc
CLSIDFromProgID
CoTaskMemFree
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromString

oleaut32

OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
VarUdateFromDate
SysFreeString
VariantClear
SysAllocString
VariantInit
VariantChangeType
SafeArrayDestroy
VariantCopy
SysStringLen
SysAllocStringLen

Sections

.text
Size: 551KB - Virtual size: 550KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 593KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ad9dd1f7ab79f3c20c30963adc435be

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

Sections

.text Size: 551KB - Virtual size: 550KB

.rdata Size: 105KB - Virtual size: 104KB

.data Size: 30KB - Virtual size: 48KB

.rsrc Size: 593KB - Virtual size: 592KB

.text
Size: 551KB - Virtual size: 550KB

.rdata
Size: 105KB - Virtual size: 104KB

.data
Size: 30KB - Virtual size: 48KB

.rsrc
Size: 593KB - Virtual size: 592KB