2024-06-28_de278e6b2afe1314c7d93003dec28cf5_icedid_vidar

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-28_de278e6b2afe1314c7d93003dec28cf5_icedid_vidar
Size

4.9MB
MD5

de278e6b2afe1314c7d93003dec28cf5
SHA1

d36a75a4027a9fbacb89891dba5ed71769f0933c
SHA256

7a8bb40a1388f4440428431d3cdbf47070fcfabc051cf6e364e42eeb5cbbcc9f
SHA512

34acb7724c8a14e70f9495715ad7b6b7df280a9523702a1bb5308900120e0dc9a75b97d1589257fadce9ca9e16b47d5abfa6a1416070e479e25f1f0627baa23c
SSDEEP

98304:83qilYbDqRhM5uSt2gwRMdrSMj3ho075aPl7temGEp:83H8Iat3ho0lGl7gmG0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-28_de278e6b2afe1314c7d93003dec28cf5_icedid_vidar

Files

2024-06-28_de278e6b2afe1314c7d93003dec28cf5_icedid_vidar
.exe windows:5 windows x86 arch:x86

7c1cb513607628a8d4c0b0164f27d635

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Sujatha\Satheesh\SWIFTPCOPT\Sourcecode\SWIFTPCOPT\Release\SWIFTPCOPT.pdb

Imports

shell32

ShellExecuteW
SHGetFolderPathW
SHEmptyRecycleBinW
SHGetPathFromIDListW
SHGetMalloc
SHQueryRecycleBinW
SHGetDesktopFolder
SHGetFileInfoW
SHAppBarMessage
DragFinish
DragQueryFileW
SHBrowseForFolderW
ShellExecuteExA
Shell_NotifyIconW
SHGetSpecialFolderLocation

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
HeapDestroy
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetStringTypeW
LCMapStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
EnumSystemLocalesA
SetStdHandle
GetDriveTypeW
GetFullPathNameA
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
AreFileApisANSI
GetSystemTime
GetTempPathA
GetStdHandle
OutputDebugStringA
GetDiskFreeSpaceA
CreateFileMappingW
CreateFileMappingA
LoadLibraryA
LockFileEx
HeapValidate
GetFileAttributesA
FormatMessageA
UnlockFileEx
OutputDebugStringW
UnmapViewOfFile
MapViewOfFile
CreateFileA
InterlockedCompareExchange
VirtualQuery
VirtualAlloc
HeapSize
HeapReAlloc
MoveFileA
HeapAlloc
HeapFree
DecodePointer
EncodePointer
CreateThread
ExitThread
GetDateFormatW
DeleteFileA
GetTimeFormatW
RtlUnwind
GetStartupInfoW
HeapSetInformation
FindResourceExW
VirtualProtect
SetUnhandledExceptionFilter
HeapQueryInformation
GetVersionExA
GetFileType
GetDiskFreeSpaceW
GetUserDefaultLCID
SearchPathW
GetProfileIntW
GetTickCount
GetNumberFormatW
GetTempFileNameW
GetCurrentDirectoryW
SetErrorMode
GetSystemDirectoryW
GlobalGetAtomNameW
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InitializeCriticalSection
GlobalFlags
SuspendThread
SetThreadPriority
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
GetFullPathNameW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
lstrcmpiW
GetThreadLocale
GetFileTime
GetFileSizeEx
GetFileAttributesExW
SystemTimeToFileTime
lstrlenA
lstrcmpA
RaiseException
GetCurrentProcessId
InterlockedDecrement
ReleaseActCtx
CreateActCtxW
GlobalSize
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetLogicalDriveStringsW
GetPrivateProfileIntW
FindNextFileW
SetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVolumeInformationW
GetPrivateProfileStringW
WritePrivateProfileStringW
TerminateProcess
FindClose
FindFirstFileW
ExpandEnvironmentStringsW
LocalFree
CopyFileW
CreateDirectoryW
FormatMessageW
GetCommandLineW
CreateMutexW
GetSystemInfo
GetCurrentProcess
GetVersionExW
GlobalMemoryStatusEx
lstrcpynW
ExitProcess
GetFileAttributesW
FreeResource
CreateEventW
ResumeThread
SetEvent
lstrcmpW
GetWindowsDirectoryW
FreeLibrary
lstrcatW
lstrlenW
lstrcpyW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
MulDiv
RemoveDirectoryW
ActivateActCtx
DeactivateActCtx
SetLastError
GetProcAddress
LoadLibraryW
CreateProcessW
Sleep
WaitForSingleObject
GetTempPathW
DeleteFileW
MoveFileExW
GetLastError
GetModuleHandleW
GetModuleFileNameW
CreateFileW
WriteFile
CloseHandle
WideCharToMultiByte
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
IsValidLocale

user32

DrawMenuBar
DefMDIChildProcW
DefFrameProcW
PostThreadMessageW
CharUpperBuffW
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
SetClipboardData
RegisterClipboardFormatW
GetIconInfo
HideCaret
InvertRect
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
GetNextDlgGroupItem
DestroyIcon
WaitMessage
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
GetSystemMenu
DeleteMenu
CharNextW
InvalidateRgn
OffsetRect
CopyAcceleratorTableW
UnregisterClassW
IsClipboardFormatAvailable
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
CopyImage
RealChildWindowFromPoint
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
GetMessageW
TranslateMessage
PostQuitMessage
DestroyMenu
GetMenuItemInfoW
CharUpperW
IntersectRect
WindowFromPoint
DrawStateW
GetWindowThreadProcessId
TranslateMDISysAccel
EndDialog
EndPaint
BeginPaint
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
IsWindowEnabled
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetDC
EnableWindow
SendMessageW
MessageBoxW
GetActiveWindow
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
PeekMessageW
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
GetScrollPos
IsWindowVisible
ValidateRect
GetMenuItemID
GetMenuItemCount
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
CreateMenu
GetUpdateRect
GetDoubleClickTime
IsCharLowerW
MapVirtualKeyExW
SubtractRect
DestroyCursor
GetWindowRgn
CreateDialogIndirectParamW
SetCursor
PtInRect
CopyRect
GetClientRect
ScreenToClient
InvalidateRect
RedrawWindow
SetTimer
KillTimer
GetParent
LoadBitmapW
GetMessagePos
GetSysColor
LoadCursorW
PostMessageW
SetWindowRgn
GetWindowRect
LoadImageW
GetNextDlgTabItem
GetKeyState
SetWindowLongW
GetWindowLongW
ReleaseDC
DrawTextW
BringWindowToTop
LockWindowUpdate
LoadIconW
SetActiveWindow
EqualRect
IsWindow
TabbedTextOutW
DrawTextExW
GrayStringW
InflateRect
CopyIcon
MessageBeep
SetCapture
ReleaseCapture
FillRect
SetRect
GetWindow
DrawIcon
CheckMenuItem
GetSubMenu
LoadMenuW
IsIconic
SetForegroundWindow
GetCursorPos
GetSystemMetrics
GetScrollInfo
SystemParametersInfoW
GetWindowDC
SetWindowPos
GetSysColorBrush
ShowWindow
GetWindowPlacement
FindWindowW
OpenClipboard
EmptyClipboard
CountClipboardFormats
EnumClipboardFormats
GetClipboardFormatNameW
CloseClipboard
IsRectEmpty
FrameRect
UpdateWindow
GetFocus
RegisterWindowMessageW
DrawFrameControl
GetDesktopWindow
DefWindowProcW
GetClassInfoW
SetScrollPos
ClientToScreen
ShowScrollBar
GetKeyNameTextW
MapVirtualKeyW
EnableMenuItem
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
CallWindowProcW
GetMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
GetMenuState

gdi32

GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
SetPixel
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
CreatePalette
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
Ellipse
Polygon
Polyline
CreateEllipticRgn
CreatePolygonRgn
CreateDIBSection
CreateRoundRectRgn
GetTextColor
GetRgnBox
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
DPtoLP
GetMapMode
SetRectRgn
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
CreatePatternBrush
ExtSelectClipRgn
TextOutW
ExtTextOutW
Escape
GetViewportOrgEx
StretchBlt
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
CopyMetaFileW
PatBlt
CreateRectRgnIndirect
GetBkColor
GetTextMetricsW
Rectangle
GetCurrentObject
GetObjectW
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
CreateRectRgn
CombineRgn
BitBlt
GetPixel
GetStockObject
DeleteObject
GetTextExtentPoint32W
SelectObject
CreateFontW
DeleteDC
RestoreDC
SetTextColor
SetBkMode
SaveDC
SetBkColor
CreateBitmap
CreateSolidBrush
GetDeviceCaps
CreateDCW
PtVisible
RectVisible

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegCreateKeyExW
RegQueryValueW
RegOpenKeyExW
GetTokenInformation
OpenProcessToken
GetUserNameW
RegQueryInfoKeyW
RegEnumValueW
RegQueryValueExW
RegEnumKeyExW
RegDeleteValueW
RegEnumKeyW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathUnquoteSpacesW
PathIsDirectoryW
PathFileExistsW
PathRemoveFileSpecW

ole32

OleTranslateAccelerator
IsAccelerator
OleLockRunning
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
OleInitialize
CoInitializeEx
CoInitializeSecurity
CoUninitialize
CoSetProxyBlanket
CoInitialize
CoCreateInstance
CreateStreamOnHGlobal
OleDestroyMenuDescriptor

oleaut32

VarUdateFromDate
VariantClear
VarDateFromStr
VariantChangeType
VariantInit
VariantCopy
SysAllocString
DispCallFunc
LoadRegTypeLi
SysStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetElemsize
SysFreeString
SafeArrayDestroy
SystemTimeToVariantTime
VarBstrFromDate
OleCreateFontIndirect
VariantTimeToSystemTime
SysAllocStringLen
SafeArrayCreate

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipDrawImageI
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipFree
GdipAlloc
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipDeleteBrush
GdipCreateStringFormat
GdipDeleteStringFormat
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFont
GdipDeleteFont
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromStream
GdipSetImageAttributesColorMatrix
GdipCreateSolidFill
GdipSetStringFormatAlign
GdipCreateFromHDC
GdipSetTextRenderingHint
GdipDrawString
GdipDrawImageRectI
GdipSaveGraphics
GdipCloneImage
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipSetInterpolationMode
GdipCreateBitmapFromScan0

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

winmm

PlaySoundW

wininet

FindNextUrlCacheEntryExW
FindFirstUrlCacheEntryExW
FindCloseUrlCache
DeleteUrlCacheEntryW
InternetCanonicalizeUrlW
InternetOpenUrlW
InternetReadFile
InternetGetConnectedState
InternetCloseHandle
InternetOpenW

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 410KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c1cb513607628a8d4c0b0164f27d635

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

shell32

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

version

winmm

wininet

oleacc

imm32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 410KB - Virtual size: 410KB

.data Size: 33KB - Virtual size: 104KB

.rsrc Size: 2.5MB - Virtual size: 2.5MB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 410KB - Virtual size: 410KB

.data
Size: 33KB - Virtual size: 104KB

.rsrc
Size: 2.5MB - Virtual size: 2.5MB