2024-10-11_999c54d1f28488473d606dff922de019_floxif_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-10-11_999c54d1f28488473d606dff922de019_floxif_icedid
Size

2.6MB
MD5

999c54d1f28488473d606dff922de019
SHA1

59cedc971282ca87b2c6a05074c61f63c037db17
SHA256

d595ff1a40c6a0cbde4a68a8bc0df85d0392acc1784060f641b2f28656bbfd14
SHA512

193c93e9a0da1a6fdbd62d9b59043c993680326ddeed988dce8899781c97728369b95651290a3ff3da739a07d2e5231b2cdc25efacea3efd19b0d880771972fd
SSDEEP

24576:RpqzhKwykVFLvty85U+PzY0Ff5lAVElV7mTYSllGaqlz0d6PSdTjo8ufJa/zfzkR:RpAhDFy+zWOglvqlz0gQTWfJa/jzkjk2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-10-11_999c54d1f28488473d606dff922de019_floxif_icedid

Files

2024-10-11_999c54d1f28488473d606dff922de019_floxif_icedid
.exe windows:5 windows x86 arch:x86

bbf9d38cb9d556be03aabe3309c9584c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\kevin\Documents\Visual Studio 2008\Projects\AFWebDown\release\AFWebDown.pdb

Imports

iphlpapi

GetAdaptersInfo

imm32

ImmSetConversionStatus
ImmGetConversionStatus
ImmGetContext
ImmReleaseContext

kernel32

HeapSize
SetStdHandle
GetFileType
HeapCreate
VirtualFree
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetACP
IsValidCodePage
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
FindResourceA
SizeofResource
LockResource
LoadResource
CreateFileMappingA
GetLastError
WideCharToMultiByte
GetModuleHandleA
DuplicateHandle
GetCurrentProcess
GetExitCodeProcess
GetProcAddress
CreateRemoteThread
WaitForSingleObject
CloseHandle
SetLastError
OpenProcess
Sleep
GetTempPathA
CreateProcessA
lstrlenA
GetFileAttributesA
CreateEventA
SetEvent
ResumeThread
SetThreadPriority
CreateDirectoryA
GetDiskFreeSpaceA
GetTickCount
GetModuleFileNameA
CreateFileA
WriteFile
OutputDebugStringA
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
LoadLibraryA
MulDiv
lstrcpynA
MultiByteToWideChar
FreeLibrary
WinExec
lstrcpyA
FreeResource
ResetEvent
ExitProcess
GetCurrentProcessId
LocalFree
FormatMessageA
lstrcmpA
InterlockedExchange
CompareStringA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThreadId
GetCurrentThread
GlobalDeleteAtom
WritePrivateProfileStringA
FindClose
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
DeleteFileA
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
GetVolumeInformationA
GetFullPathNameA
SuspendThread
GlobalAddAtomA
GetVersionExA
lstrcmpW
GlobalFindAtomA
GlobalGetAtomNameA
GetModuleFileNameW
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
GetModuleHandleW
InterlockedIncrement
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCurrentDirectoryA
GetFileSizeEx
GetFileTime
SetErrorMode
GetCPInfo
GetOEMCP
HeapFree
HeapAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
ExitThread
CreateThread
GetCommandLineA
GetStartupInfoA
RtlUnwind
RaiseException
GetDriveTypeA
VirtualAlloc

user32

GetClassInfoA
RegisterClassA
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
SetWindowsHookExA
CallNextHookEx
GetMessageA
ValidateRect
CharUpperA
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
EndDialog
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
EndPaint
BeginPaint
GetWindowDC
GetMenuState
GetMenuItemID
GetMenuItemCount
GetWindowThreadProcessId
GetLastActivePopup
IsWindowEnabled
MessageBoxA
SetRectEmpty
GetDesktopWindow
SetLayeredWindowAttributes
GrayStringA
DrawTextExA
TabbedTextOutA
DrawTextA
SetWindowLongA
IsWindowVisible
GetFocus
LoadCursorA
LoadBitmapA
SetRect
ReleaseCapture
SetCapture
ScreenToClient
GetCursorPos
GetClassInfoExA
IsRectEmpty
PtInRect
GetCapture
KillTimer
IntersectRect
GetWindow
GetNextDlgGroupItem
GetKeyState
LoadImageA
DrawStateA
OffsetRect
DrawFocusRect
CopyRect
PostMessageA
TrackPopupMenuEx
GetSubMenu
GetActiveWindow
WindowFromPoint
ClientToScreen
SetCursor
GetNextDlgTabItem
GetWindowLongA
DestroyIcon
DestroyMenu
DestroyCursor
ExitWindowsEx
TranslateMessage
PeekMessageA
DispatchMessageA
ReleaseDC
RedrawWindow
IsWindow
GetScrollPos
CreateWindowExA
SetForegroundWindow
SetScrollPos
FillRect
GetSysColorBrush
GetSysColor
UpdateWindow
InvalidateRect
FrameRect
InflateRect
GetParent
GetDC
DrawIcon
GetSystemMetrics
IsIconic
AppendMenuA
GetSystemMenu
GetClientRect
GetWindowRect
LoadIconA
SetMenu
MapWindowPoints
GetMessagePos
GetMessageTime
SendMessageA
EnableWindow
SetTimer
UnregisterClassA
UnhookWindowsHookEx
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetTopWindow
EqualRect

gdi32

CreateCompatibleDC
AddFontResourceA
EnumFontsA
GetTextExtentPoint32A
CreateSolidBrush
CreateFontIndirectA
BitBlt
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
SetMapMode
GetEnhMetaFilePaletteEntries
CreatePalette
SelectPalette
PlayEnhMetaFile
SetEnhMetaFileBits
GetEnhMetaFileHeader
DeleteEnhMetaFile
SetWinMetaFileBits
SaveDC
GetClipBox
ExtSelectClipRgn
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
RestoreDC
RealizePalette
GetDIBits
Escape
ExtTextOutA
RectVisible
PtVisible
CombineRgn
CreateRoundRectRgn
CreateEllipticRgn
CreateRectRgn
TextOutA
SetTextJustification
LineTo
MoveToEx
SetBkMode
GetTextMetricsA
SetRectRgn
CreateRectRgnIndirect
CreatePen
GetDeviceCaps
PtInRegion
GetRgnBox
GetCurrentObject
CreateDIBSection
SetPixel
GetPixel
DeleteDC
SetTextColor
SetBkColor
CreateBitmap
CreateCompatibleBitmap
GetStockObject
RemoveFontResourceA
SelectObject
DeleteObject
GetObjectA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegDeleteValueA
OpenProcessToken
RegSetValueExA
RegQueryValueExA
LookupPrivilegeValueA
RegCreateKeyExA
RegOpenKeyA
AdjustTokenPrivileges
RegCloseKey
RegEnumKeyA
RegQueryValueA
RegOpenKeyExA

shell32

ShellExecuteExA
ShellExecuteA

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA

ole32

CreateStreamOnHGlobal

oleaut32

VariantInit
VariantChangeType
VariantClear
OleLoadPicture

wsock32

WSASetLastError
WSACleanup
WSAStartup
ntohl
htonl
ntohs
htons

gdiplus

GdipDrawLineI
GdipCreatePath
GdipSetPageUnit
GdipDrawPath
GdipFillPath
GdipCreateRegionHrgn
GdipDeleteRegion
GdipSetClipRegion
GdipCreateBitmapFromHBITMAP
GdipCreateRegion
GdipCreateRegionRectI
GdipSetEmpty
GdipCombineRegionRegion
GdipGetPageUnit
GdipSetLinePresetBlend
GdipSetLineWrapMode
GdipCreatePathGradientFromPath
GdipSetPathGradientCenterPointI
GdipSetPathGradientSurroundColorsWithCount
GdipGetPathGradientPointCount
GdipSetPathGradientCenterColor
GdipCreateRegionPath
GdipCloneRegion
GdipFillEllipseI
GdipResetClip
GdipGetImageGraphicsContext
GdipTranslateRegionI
GdipDrawImageRectRectI
GdipGetImageWidth
GdipGetImageHeight
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipAddPathPolygonI
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipDrawString
GdipSetPathFillMode
GdipGetImageBounds
GdipDrawImageRectRect
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipSetTextRenderingHint
GdipFillRectangleI
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipSetClipRectI
GdipSetSmoothingMode
GdipGetSmoothingMode
GdipDrawEllipse
GdipSetPenMode
GdipDeletePen
GdipCreatePen1
GdipAddPathArcI
GdipAddPathEllipseI
GdipClosePathFigure
GdipAddPathRectangleI
GdipResetPath
GdipDrawImage
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdiplusShutdown
GdipCreateBitmapFromScan0
GdiplusStartup
GdipDeletePath
GdipCreateLineBrushFromRectI

psapi

EnumProcesses
GetModuleFileNameExA
EnumProcessModules

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

wininet

InternetSetStatusCallback
InternetSetOptionExA
InternetGetLastResponseInfoA
HttpQueryInfoA
InternetCloseHandle
InternetReadFile
InternetQueryDataAvailable
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetOpenA

winmm

PlaySoundA

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 343KB - Virtual size: 343KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 861KB - Virtual size: 860KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbf9d38cb9d556be03aabe3309c9584c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

iphlpapi

imm32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

wsock32

gdiplus

psapi

version

wininet

winmm

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 343KB - Virtual size: 343KB

.data Size: 23KB - Virtual size: 87KB

.rsrc Size: 861KB - Virtual size: 860KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 343KB - Virtual size: 343KB

.data
Size: 23KB - Virtual size: 87KB

.rsrc
Size: 861KB - Virtual size: 860KB