2024-07-04_d632c59b7c85716c2f7ec1e3fe7a8b4a_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-04_d632c59b7c85716c2f7ec1e3fe7a8b4a_icedid
Size

1.2MB
MD5

d632c59b7c85716c2f7ec1e3fe7a8b4a
SHA1

6c9ef7065165164a663f524734493530c9830d08
SHA256

37e0b9e1bc30775d7d8eb70c41bde29488e54aae89f95ca8e0b55f8730de4996
SHA512

57a153bc811d83eb265d69c011a2afe1a4a1c592d62706856ac0993e2ed3785e6bc62a9d46ef84af6360071fe1cf3715af1413f671ede4fffc2a1262663ba8f3
SSDEEP

24576:Y/7hZrnt/3Hidd5tTLNc338pIa1LiPZN3ZuO+9:q/Hiu3382a1LF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-04_d632c59b7c85716c2f7ec1e3fe7a8b4a_icedid

Files

2024-07-04_d632c59b7c85716c2f7ec1e3fe7a8b4a_icedid
.exe windows:4 windows x86 arch:x86

e6f1d0ae0a5ff18f61b8996bd52d7c4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
LCMapStringA
GetCurrentProcessId
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
HeapSize
TerminateProcess
CreateThread
ExitThread
ExitProcess
GetCommandLineA
GetStartupInfoA
CreateDirectoryA
HeapReAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
RtlUnwind
HeapFree
HeapAlloc
SetErrorMode
FindResourceExA
GetOEMCP
GetCPInfo
GetCurrentDirectoryA
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
LocalFileTimeToFileTime
GetShortPathNameA
CreateFileA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
VirtualProtect
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileIntA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcatA
lstrcmpW
GetCurrentThread
GlobalDeleteAtom
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
LoadLibraryA
FreeResource
SystemTimeToFileTime
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
GetCurrentThreadId
ResumeThread
CloseHandle
SetLastError
GlobalFree
MulDiv
GlobalAlloc
FormatMessageA
LocalFree
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetProcAddress
GetFileAttributesA
GlobalLock
GlobalUnlock
GetStringTypeExA
CompareStringW
CompareStringA
GetVersion
GetWindowsDirectoryA
GetComputerNameA
FileTimeToLocalFileTime
FileTimeToSystemTime
ExpandEnvironmentStringsA
GetPrivateProfileStringA
lstrcmpA
FindNextFileA
FindFirstFileA
FindClose
GetCurrencyFormatA
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GetLastError
GetModuleFileNameA
GetModuleHandleA
RaiseException
lstrlenA
lstrlenW
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
QueryPerformanceCounter
InterlockedExchange

user32

TabbedTextOutA
FillRect
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClientRect
GetMenu
GetSysColor
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
SetWindowPlacement
GetDlgCtrlID
CallWindowProcA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
PtInRect
GetWindow
PostQuitMessage
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
EndDialog
GetWindowTextLengthA
GetWindowTextA
MessageBoxA
DrawTextA
IsWindowEnabled
SetMenuItemBitmaps
GetFocus
ModifyMenuA
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
UnhookWindowsHookEx
GetMenuState
GetMenuStringA
GetMenuItemCount
RemoveMenu
BringWindowToTop
CharUpperA
IsWindowVisible
CharNextA
SendMessageA
IsIconic
GetTabbedTextExtentA
CreateMenu
SetParent
LockWindowUpdate
GetDCEx
TranslateAcceleratorA
PostThreadMessageA
IsWindow
SetTimer
LoadBitmapA
GetMessagePos
ScreenToClient
ClientToScreen
GetSystemMetrics
EnumChildWindows
AppendMenuA
DeleteMenu
CreatePopupMenu
SetMenuDefaultItem
RedrawWindow
LoadMenuA
InsertMenuA
GetSubMenu
GetMenuItemID
EnableMenuItem
DrawTextExA
GrayStringA
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
wsprintfA
InvalidateRect
LoadImageA
PostMessageA
GetParent
GetWindowRect
DefWindowProcA
UnregisterClassA
SetCursor
LoadIconA
LoadCursorA
EnableWindow
SetForegroundWindow
GetLastActivePopup
FindWindowA
UpdateWindow
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
GetWindowLongA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
DestroyIcon
GetSysColorBrush
SetWindowRgn
DrawIcon
SetCursorPos
UnionRect
IsRectEmpty
IsZoomed
WaitMessage
GetWindowThreadProcessId
SetCapture
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsA
InsertMenuItemA
SetRectEmpty
SetMenu
GetAsyncKeyState
DestroyMenu
GetMenuItemInfoA
InflateRect
DestroyCursor
WindowFromPoint
KillTimer
SetRect
GetNextDlgTabItem

gdi32

SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
StartDocA
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
GetStockObject
SelectPalette
CreateRectRgnIndirect
PatBlt
GetBkColor
GetViewportOrgEx
DPtoLP
Rectangle
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
CreateFontIndirectA
GetTextExtentPoint32A
CreateCompatibleBitmap
StretchDIBits
GetCharWidthA
CreateEllipticRgn
LPtoDP
Ellipse
SetRectRgn
CombineRgn
GetMapMode
GetTextColor
GetRgnBox
EnumFontFamiliesExA
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetWindowOrgEx
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreateDCA
DeleteObject
GetTextMetricsA
GetDeviceCaps
GetDIBColorTable
StretchBlt
BitBlt
RealizePalette
CreateCompatibleDC
CreatePen
CreateFontA
CreatePalette
GetObjectA
CreateSolidBrush
CreateHalftonePalette

comdlg32

PrintDlgA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

GetJobA
OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyA
SetFileSecurityA
GetFileSecurityA
RegSetValueA
RegEnumKeyA
RegCreateKeyA
RegCloseKey
RegQueryValueA

shell32

ExtractIconA
ShellExecuteA
SHGetFolderPathA
SHGetFileInfoA
DragFinish
DragAcceptFiles
DragQueryFileA

comctl32

ord17
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Destroy
ImageList_LoadImageA
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathRemoveExtensionA
PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CoCreateInstance
OleRegGetUserType
StringFromCLSID
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard

oleaut32

SysFreeString
SystemTimeToVariantTime
VarDateFromStr
VarBstrFromDate
VarUdateFromDate
VarUI4FromStr
VariantClear
SysStringLen
SysAllocStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantChangeType
VariantCopy
SafeArrayDestroy
SysAllocStringLen
SysAllocString
VarCyFromStr
VarBstrFromCy
VariantInit
OleCreateFontIndirect
VariantTimeToSystemTime

msvfw32

DrawDibOpen
DrawDibDraw
DrawDibClose

Sections

.text
Size: 548KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 548KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6f1d0ae0a5ff18f61b8996bd52d7c4d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

msvfw32

Sections

.text Size: 548KB - Virtual size: 545KB

.rdata Size: 132KB - Virtual size: 131KB

.data Size: 12KB - Virtual size: 26KB

.rsrc Size: 548KB - Virtual size: 544KB

.text
Size: 548KB - Virtual size: 545KB

.rdata
Size: 132KB - Virtual size: 131KB

.data
Size: 12KB - Virtual size: 26KB

.rsrc
Size: 548KB - Virtual size: 544KB