2024-08-22_5415822173725dfc012d3a2313d5ebef_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-22_5415822173725dfc012d3a2313d5ebef_icedid
Size

1.4MB
MD5

5415822173725dfc012d3a2313d5ebef
SHA1

98187be55dc969e0de7233b3669cdc48ba2943f0
SHA256

ef9b2178fc2e4d3b9b2e3ecdd1b44b78c1bf4b632c7575cc865a5dc1dca5ec01
SHA512

68a1dfc6f01b2e070ea7f8f960e1f13e5fcc2ea3360d977ddc9ac855e8ef86133512a6bb3b84743640a353db1d5f71757d6c4c8234ca3e604691f25fa1f1f3b3
SSDEEP

12288:EE3A59YOqS9hOASLdTQO8zJl/guKLQFuW2qFwuODrdT5wgTJvFv5moa:EEoNN94AMdTEvcQFuOjOP95Xdt5c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-08-22_5415822173725dfc012d3a2313d5ebef_icedid

Files

2024-08-22_5415822173725dfc012d3a2313d5ebef_icedid
.exe windows:4 windows x86 arch:x86

ae20e5299c8f03ca9e57dcb48e818562

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

10ftest_lib

?fnGo_10FTest@@YAHH@Z

kernel32

RtlUnwind
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
GetModuleFileNameA
LoadLibraryA
GetModuleHandleA
FileTimeToSystemTime
FileTimeToLocalFileTime
CloseHandle
ReadFile
SetFilePointer
FindClose
FindFirstFileA
FindNextFileA
InterlockedIncrement
CreateDirectoryA
CopyFileA
GetCurrentDirectoryA
GetLastError
CreateProcessA
LocalFree
FormatMessageA
MulDiv
MultiByteToWideChar
lstrcpyA
WinExec
lstrlenA
lstrcatA
FreeLibrary
GetWindowsDirectoryA
SetErrorMode
GetOEMCP
GetCPInfo
GetCurrentProcess
FlushFileBuffers
WriteFile
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GlobalFlags
WritePrivateProfileStringA
InterlockedDecrement
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalAddAtomA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
SetLastError
lstrcpynA
GlobalUnlock
GlobalFree
FreeResource
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
SetCurrentDirectoryA
DeleteFileA
RemoveDirectoryA
MoveFileExA
CompareStringW
CompareStringA
lstrcmpiA
GetVersion
_lopen
_lread
_lclose
GetSystemDefaultLangID

user32

DestroyMenu
GetSysColorBrush
WindowFromPoint
EndPaint
BeginPaint
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
wsprintfA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
UpdateWindow
GetMenu
AdjustWindowRectEx
ScreenToClient
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
CopyRect
GetWindow
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
MessageBoxA
EnableWindow
GetTopWindow
GetClientRect
GetSysColor
GetWindowRect
GetParent
CallWindowProcA
SetWindowLongA
MessageBeep
SetCursor
PtInRect
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
GetLastActivePopup
UnregisterClassA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
SetForegroundWindow
InflateRect
SendMessageA
GetDC
ReleaseDC
InvalidateRect
SetCapture
ReleaseCapture
IsWindow
CopyIcon
LoadCursorA
DrawIcon
IsIconic
LoadIconA
GetSystemMetrics
PostMessageA
PostQuitMessage
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog

gdi32

SetTextColor
SetBkColor
SaveDC
RestoreDC
SetBkMode
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
GetClipBox
SetWindowExtEx
ScaleWindowExtEx
CreateBitmap
GetMapMode
SetMapMode
DPtoLP
CreateCompatibleDC
BitBlt
SelectObject
CreateDCA
SelectPalette
RealizePalette
CreateDIBitmap
GetTextExtentPoint32A
GetObjectA
CreateFontIndirectA
GetStockObject
GetDeviceCaps
DeleteDC
CreatePalette
ScaleViewportExtEx
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
ShellExecuteA

comctl32

ord17

shlwapi

PathFindFileNameA
PathFindExtensionA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ae20e5299c8f03ca9e57dcb48e818562

Headers

File Characteristics

Imports

10ftest_lib

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 128KB - Virtual size: 125KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 1.2MB - Virtual size: 1.8MB

.text
Size: 128KB - Virtual size: 125KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 1.2MB - Virtual size: 1.8MB