2024-07-05_a2a944c07097eb922a8407bc6c1e650d_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-05_a2a944c07097eb922a8407bc6c1e650d_icedid
Size

424KB
MD5

a2a944c07097eb922a8407bc6c1e650d
SHA1

9a0eb3ad3406c8182cb01d3f2419df778904e04f
SHA256

b843316c1e6d0bb4a2522e1a6b141b36123b92c3f576b4f26f8de776709ba126
SHA512

c7c4028e5be3d5f7407b49e3e033ef1630cd07a53c811db3ac251bc82bf1e907619d3db1f5b87bea08d840d1d81e47a5826a9233f6a88488045cd9cedb05e9fb
SSDEEP

6144:YNq1QHqoz6/1epCwNq9Vd5S2UP3fMISPoYVerJ75/uMUbcSb7jgPh:OHqx/1+dEHuPagzd5/u7bvgPh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-07-05_a2a944c07097eb922a8407bc6c1e650d_icedid

Files

2024-07-05_a2a944c07097eb922a8407bc6c1e650d_icedid
.exe windows:4 windows x86 arch:x86

177483976329232b1f55f63c4a35eeeb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\업체지원\Gaon\CtxPlayer\Release\CtxPlayer.pdb

Imports

km_dxb_player

KM_DxBPlayer_GetSizeInfo
KM_DxBPlayer_GetCurrentTime
KM_DxBPlayer_GetRunningTime
KM_DxBPlayer_SetCurrentTime
KM_DxBPlayer_SetTimeShift
KM_DxBPlayer_GetTimeShift
KM_DxBPlayer_Restart
KM_DxBPlayer_TimeShiftOn
KM_DxBPlayer_TimeShiftOff
KM_DxBPlayer_SetAudioAGC
KM_DxBPlayer_SetColorAdjust
KM_DxBPlayer_SetDownloadComplete
KM_DxBPlayer_StartRecord
KM_DxBPlayer_GetFileInfo
KM_DxBPlayer_Open
KM_DxBPlayer_SetAppMode
KM_DxBPlayer_SetTargetDir
KM_DxBPlayer_SetPlaySpeed
KM_DxBPlayer_SetOverlay
KM_DxBPlayer_SetVerticalSync
KM_DxBPlayer_Start
KM_DxBPlayer_SetVolume
KM_DxBPlayer_GetVolume
KM_DxBPlayer_StopRecord
KM_DxBPlayer_Stop
KM_DxBPlayer_Close
KM_DxBPlayer_PutData
KM_DxBPlayer_SetVendorCode
KM_DxBPlayer_OnMove

bbm

BBM_TUNER_SET
BBM_BULK_READ
BBM_LONG_READ
BBM_WORD_READ
BBM_READ
BBM_USB_OPEN
BBM_USB_CLOSE
BBM_CPU_RESET
BBM_MSC_CALLBACK_REGISTER
BBM_SPI_CALLBACK_REGISTER
BBM_I2C_INIT
BBM_INIT
BBM_HOSTIF_SET
BBM_WORD_WRITE
BBM_WRITE
BBM_SELECT_CHANNEL
BBM_SVC_INFO_LIST
BBM_ESB_INFO
BBM_FIND_ALL_LABELS
BBM_MSC_CALLBACK_DEREGISTER
BBM_SPI_CALLBACK_DEREGISTER
BBM_DIDP_CLEAN
BBM_SUBCH_INFO_CLEAN
BBM_SELECT_AUDIO_CHANNEL
BBM_TUNER_SELECT
BBM_USB_THREAD
BBM_MSC_THREAD
BBM_I2C_READ
BBM_LONG_WRITE
BBM_INT_UNLOCK
BBM_INT_LOCK
BBM_I2C_WRITE
BBM_TUNER_CTRL_SELECT
BBM_RESET
BBM_SELECT_DATA_CHANNEL
BBM_SVC_INFO
BBM_SELECT_VIDEO_CHANNEL

kernel32

GlobalFree
SetLastError
RaiseException
LoadLibraryA
lstrcpyA
EnumResourceLanguagesA
ConvertDefaultLocale
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
lstrcmpA
GlobalDeleteAtom
FreeLibrary
GetCurrentThreadId
GetCurrentThread
GlobalAddAtomA
SetThreadPriority
SetEvent
CreateEventA
FreeResource
WritePrivateProfileStringA
lstrcmpW
lstrcatA
GlobalFindAtomA
GlobalGetAtomNameA
InterlockedDecrement
InterlockedIncrement
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetFullPathNameA
FileTimeToSystemTime
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesA
GetFileTime
GetTickCount
ExitProcess
RtlUnwind
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetTimeFormatA
GetDateFormatA
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
ExitThread
CreateThread
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
SetThreadExecutionState
ReleaseMutex
CreateMutexA
GetExitCodeThread
WaitForSingleObject
Sleep
SuspendThread
ResumeThread
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetCommMask
WaitCommEvent
ClearCommError
ReadFile
CreateFileA
GetCommState
SetCommState
GetCommTimeouts
SetCommTimeouts
WideCharToMultiByte
WriteFile
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
CloseHandle
GetVolumeInformationA

user32

GetForegroundWindow
IsChild
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassInfoExA
GetClassLongA
CreateWindowExA
GetCapture
WinHelpA
RegisterWindowMessageA
CharNextA
GetSysColorBrush
SetCapture
WindowFromPoint
ReleaseCapture
SetRect
MessageBeep
IsRectEmpty
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
SetParent
PostThreadMessageA
SystemParametersInfoA
DestroyMenu
CopyRect
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
SetMenuItemBitmaps
EnableMenuItem
GetMenuCheckMarkDimensions
SetWindowsHookExA
CallNextHookEx
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
PeekMessageA
ValidateRect
GetLastActivePopup
IsWindowEnabled
BeginDeferWindowPos
PostQuitMessage
UnregisterClassA
GetMenuState
GetMenuItemID
ShowWindow
MapWindowPoints
CharUpperA
InflateRect
InvalidateRect
DefWindowProcA
RegisterClassA
SetWindowPos
GetParent
FillRect
MessageBoxA
GetCursorPos
wsprintfA
GetKeyState
GetSystemMetrics
SetCursor
LoadIconA
LoadCursorA
EnableWindow
GetDesktopWindow
GetFocus
KillTimer
SetTimer
ScreenToClient
GetClientRect
GetWindowRect
IsIconic
GetSystemMenu
SetMenu
GetMenu
LoadMenuA
ModifyMenuA
GetSubMenu
GetMenuItemCount
CheckMenuItem
AppendMenuA
DrawIcon
LoadBitmapA
GetWindowLongA
PtInRect
PostMessageA
GetDlgItem
SendMessageA
RegisterDeviceNotificationA
FindWindowA
SetForegroundWindow
UpdateWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClassInfoA
CallWindowProcA
IntersectRect
GetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
SetFocus
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
GetWindow
SetWindowContextHelpId
MapDialogRect
TrackPopupMenu
OffsetRect
SetRectEmpty
IsZoomed
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetNextDlgTabItem
GetMessageA
EndDialog
GetSysColor

gdi32

IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
GetDeviceCaps
GetTextExtentPoint32A
CreateRectRgn
SetPixel
CreateFontA
CreatePen
BitBlt
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
GetObjectA
LineTo
GetRgnBox
MoveToEx
SetTextAlign
DeleteObject
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateHatchBrush
GetTextMetricsA
CreateRectRgnIndirect
PatBlt
GetBkColor
GetTextColor
SetRectRgn
CombineRgn
GetMapMode
CreateSolidBrush

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegEnumValueA
RegQueryInfoKeyA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA

shell32

ShellExecuteA

comctl32

ord17
ImageList_Destroy

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
OleCreateFontIndirect
VariantClear
SysFreeString
SysStringLen
SysAllocStringByteLen
SysAllocStringLen
VariantChangeType
VariantInit
VariantCopy

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA

winmm

timeGetTime

Sections

.text
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

177483976329232b1f55f63c4a35eeeb

Headers

File Characteristics

PDB Paths

Imports

km_dxb_player

bbm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

setupapi

winmm

Sections

.text Size: 264KB - Virtual size: 260KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 68KB - Virtual size: 65KB

.text
Size: 264KB - Virtual size: 260KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 68KB - Virtual size: 65KB