2024-09-07_87895321000bab3dad3ba96edd4b6eb2_icedid | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_87895321000bab3dad3ba96edd4b6eb2_icedid
Size

2.5MB
MD5

87895321000bab3dad3ba96edd4b6eb2
SHA1

6d033d88471275f6eaf905f4e3c494db74ec5939
SHA256

f9a4cd390bdf60283f33a3920faf0c7fb906d0c47b2fa148156883a1363cb62b
SHA512

ca56d0cc32f86f231deccf568151dc7b26937a9364a87f4db1b0466e4e2ef0868727e4830f0c1045cdafb74bb42ecbea44602e79634668650918072aaee30e10
SSDEEP

49152:aW8YraFEKyyhnDhKh6KT8FEAwxkDk8MG8MQyyhnDhKh6KT8FEAwxkDx:aWPraFEFyRoT8FEA5g8MG8MnyRoT8FEc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-09-07_87895321000bab3dad3ba96edd4b6eb2_icedid

Files

2024-09-07_87895321000bab3dad3ba96edd4b6eb2_icedid
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.newimp
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE