2024-10-03_8093b603f16ab59c58defc4de9a87f0b_icedid

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-03_8093b603f16ab59c58defc4de9a87f0b_icedid
Size

452KB
MD5

8093b603f16ab59c58defc4de9a87f0b
SHA1

1ce844822bc8c9dff0cf3d61221d377e9d3fe08e
SHA256

6e04378b72273230452f433c7443cdc5edba068c43c7858f3fe2fab5ce954dd3
SHA512

250a4875ed161cc3a7956f3144a8c1fcc472ab2ccee4288db39184d86c141bf8469bfc3588ca0e3718cdb533c38b03c3b046817122bdb3c6da9b8f417b125911
SSDEEP

6144:fsY7vp2GYX7zZEUyK/Be9vE1mnGSiOQZAFp0fjSHZPMRs:kYDwGYXp5yK5KvAmnGNsnZos

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-03_8093b603f16ab59c58defc4de9a87f0b_icedid

Files

2024-10-03_8093b603f16ab59c58defc4de9a87f0b_icedid
.exe windows:4 windows x86 arch:x86

d7ad4c5a81e39aa3c246c73a3ae1f35d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\maxim\Desktop\sdk\SolveigMM Video Editing SDK\Samples\C++\SimpleJoiner\Release_Unicode\SMM_SimpleJoiner.pdb

Imports

kernel32

VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateThread
LCMapStringW
IsBadWritePtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
ExitThread
TerminateProcess
HeapReAlloc
HeapAlloc
HeapFree
ExitProcess
RtlUnwind
GetStartupInfoW
GetTickCount
GetFileTime
GetFileAttributesW
FileTimeToLocalFileTime
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GlobalFlags
lstrcmpiW
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
InterlockedDecrement
GlobalFindAtomW
lstrlenA
GetModuleHandleA
LoadLibraryA
lstrcatW
GetVersionExA
WritePrivateProfileStringW
FreeResource
CreateEventW
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GlobalAddAtomW
GetCurrentThread
GetCurrentThreadId
lstrcmpW
FreeLibrary
GlobalDeleteAtom
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
LoadLibraryW
GetLocaleInfoW
WideCharToMultiByte
SetLastError
GlobalFree
MulDiv
lstrcpyW
lstrlenW
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
lstrcpynW
LocalFree
RaiseException
DeleteCriticalSection
InitializeCriticalSection
Sleep
LoadResource
LockResource
SizeofResource
FindResourceW
GetCurrentDirectoryW
SetFilePointer
MultiByteToWideChar
WriteFile
GetLastError
CreateFileW
GetFileSize
CloseHandle
ReadFile
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
LCMapStringA
GetVersionExW

user32

RegisterClipboardFormatW
PostThreadMessageW
InvalidateRgn
InvalidateRect
CopyAcceleratorTableW
SetRect
IsRectEmpty
CharNextW
CharUpperW
ReleaseCapture
SetCapture
GetSysColorBrush
DestroyMenu
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetSysColor
AdjustWindowRectEx
EqualRect
GetClassInfoW
RegisterClassW
GetDlgCtrlID
DefWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
PtInRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetDesktopWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetFocus
ModifyMenuW
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
MessageBoxW
GetParent
GetLastActivePopup
IsWindowEnabled
PostQuitMessage
PostMessageW
GetMenuState
GetMenuItemID
GetMenuItemCount
MessageBeep
GetForegroundWindow
GetNextDlgGroupItem
UnregisterClassW
LoadIconW
EnableWindow
SetActiveWindow
KillTimer
SetTimer
GetClientRect
GetWindowRect
IsIconic
GetSystemMenu
GetMenu
GetSubMenu
EnableMenuItem
AppendMenuW
DrawIcon
CallWindowProcW
SendMessageW
LoadCursorW
SetCursor
GetSystemMetrics
GetWindowLongW
SetWindowLongW
PeekMessageW
DispatchMessageW
wsprintfW
GetMessagePos

gdi32

CreateRectRgnIndirect
GetBkColor
GetTextColor
GetRgnBox
GetMapMode
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject
Escape
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetDeviceCaps
SetMapMode
RestoreDC
SaveDC
GetObjectW
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
SelectObject

comdlg32

GetFileTitleW
GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegCloseKey

comctl32

ord17

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
StgOpenStorageOnILockBytes
CoTaskMemFree
StringFromCLSID
CoCreateInstance
CoInitialize
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
VariantChangeType
SysStringLen
VariantClear
VariantInit
SysFreeString
SysAllocStringLen
SysAllocString

Sections

.text
Size: 200KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d7ad4c5a81e39aa3c246c73a3ae1f35d

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 200KB - Virtual size: 198KB

.rdata Size: 56KB - Virtual size: 52KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 180KB - Virtual size: 180KB

.text
Size: 200KB - Virtual size: 198KB

.rdata
Size: 56KB - Virtual size: 52KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 180KB - Virtual size: 180KB