c:\par\Common\Utilities\BootStrapSetupUI\Release\Setup.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-12-06_01908c8c560d63274ae3a37168f18b34_icedid.exe
Resource
win7-20240903-en
windows7-x64
15 signatures
150 seconds
General
-
Target
2024-12-06_01908c8c560d63274ae3a37168f18b34_icedid
-
Size
2.7MB
-
MD5
01908c8c560d63274ae3a37168f18b34
-
SHA1
0c42e0072b7bbd31f5f4645bc4bdcd6a78098094
-
SHA256
b0e63005c9b7763de32d3035aff919fd524ff6a5e6856ef3662fd6091a14e07f
-
SHA512
887dbd3829dc49eab00b44665c548469c2d623228b248f631bfff7f2c552762c92ab39dfe77873abfae68f14a3271ea9692573f890677edda0cb0264aaed8330
-
SSDEEP
24576:9wWtdmdWUqjyeiSinbalHLlKvoSpqqHlQZ31dliPOHVym6EupAriTp3+Bw+6hjPj:9A+BSoT9/ymO0DBDLP8JXD49Mo81
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-12-06_01908c8c560d63274ae3a37168f18b34_icedid
Files
-
2024-12-06_01908c8c560d63274ae3a37168f18b34_icedid.exe windows:5 windows x86 arch:x86
1dc75b318b2b478f6d92ebad8259ea67
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
msi
ord113
kernel32
GlobalFlags
FormatMessageW
GetModuleFileNameW
GetPrivateProfileIntW
FindClose
FindNextFileW
GetLastError
OpenEventA
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
FindFirstFileW
GetPrivateProfileStringW
VerifyVersionInfoW
VerSetConditionMask
GetEnvironmentVariableW
GetPrivateProfileSectionW
MultiByteToWideChar
FindResourceW
SizeofResource
LockResource
LoadResource
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
SetCurrentDirectoryW
GetCurrentProcess
GetProcAddress
GetModuleHandleA
GetVersion
lstrlenA
lstrcmpA
LocalAlloc
CreateFileW
CreateMutexW
lstrlenW
SetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
CopyFileW
SetEnvironmentVariableA
GetProcessHeap
CreateFileA
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
GetDriveTypeA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
HeapReAlloc
HeapSize
HeapAlloc
SetConsoleCtrlHandler
FatalAppExitA
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetUnhandledExceptionFilter
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
VirtualQuery
GetSystemInfo
VirtualAlloc
GetModuleFileNameA
ExitThread
CreateThread
ExitProcess
Sleep
GetFileType
SetStdHandle
IsBadReadPtr
HeapValidate
RaiseException
RtlUnwind
GetStartupInfoW
GetTickCount
GetDiskFreeSpaceW
GetTempFileNameW
GetSystemDirectoryW
FindResourceExW
GetCurrentDirectoryW
WritePrivateProfileStringW
GlobalFree
FileTimeToSystemTime
InterlockedIncrement
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
InterlockedDecrement
SetFileAttributesW
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
MulDiv
GetFileAttributesExW
GetFileTime
GetFileSizeEx
GetFileAttributesW
GetShortPathNameW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
GetVolumeInformationW
DeleteFileW
MoveFileW
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
GetHandleInformation
GetProfileIntW
VirtualProtect
GetAtomNameW
SetErrorMode
GetCurrentProcessId
CreateEventW
SetEvent
CompareStringA
InterlockedExchange
GetCurrentThread
GetLocaleInfoW
LoadLibraryExW
ConvertDefaultLocale
EnumResourceLanguagesW
CompareStringW
LoadLibraryA
GetVersionExW
LoadLibraryW
lstrcmpW
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameW
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleW
GetVersionExA
SuspendThread
ResumeThread
GetThreadPriority
SetThreadPriority
FreeResource
WideCharToMultiByte
LocalFree
user32
TranslateAcceleratorW
DestroyIcon
WaitMessage
LoadAcceleratorsW
UnpackDDElParam
GetClipboardFormatNameW
GetClipboardFormatNameA
SystemParametersInfoW
DestroyMenu
GetDialogBaseUnits
CharUpperW
ReleaseCapture
SetRectEmpty
GetAsyncKeyState
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectW
LoadMenuW
ModifyMenuW
InsertMenuItemW
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringW
GetTabbedTextExtentW
DrawTextExW
DrawTextW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateW
DrawIcon
InvertRect
FrameRect
FillRect
ExcludeUpdateRgn
WindowFromDC
GetSysColorBrush
GetWindowThreadProcessId
GetCursorPos
GetMessageW
PostQuitMessage
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
ScrollWindowEx
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckRadioButton
CheckDlgButton
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
RegisterWindowMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
SendDlgItemMessageW
SendDlgItemMessageA
GetSysColor
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpW
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetKeyState
GetDlgCtrlID
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
UnhookWindowsHookEx
CallWindowProcW
DefWindowProcW
ReuseDDElParam
GetMenu
GetMessageTime
GetMessagePos
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
OpenIcon
CloseWindow
LoadIconW
PostThreadMessageW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageW
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
IsChild
GetLastActivePopup
FindWindowExW
FindWindowW
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirListW
GetFocus
SetCapture
GetCapture
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
ValidateRgn
ValidateRect
PeekMessageA
IsWindowUnicode
GetMessageA
InvalidateRgn
GetUpdateRgn
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ClientToScreen
MapWindowPoints
GetClientRect
BringWindowToTop
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
IsIconic
HiliteMenuItem
GetSystemMenu
GetMenuBarInfo
CharNextW
CopyAcceleratorTableW
MessageBeep
GetKeyNameTextW
MapVirtualKeyW
UnregisterClassW
DispatchMessageA
SubtractRect
UnionRect
InflateRect
SetRect
PtInRect
DrawMenuBar
DragDetect
EndDialog
GetDesktopWindow
GetActiveWindow
SetActiveWindow
RegisterClipboardFormatW
InSendMessage
IsClipboardFormatAvailable
IsRectEmpty
GetTabbedTextExtentA
SetMenu
EnableWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
IsWindowEnabled
RemoveMenu
IsMenu
GetMenuItemCount
GetSubMenu
GetMenuState
GetMenuStringW
AppendMenuW
InsertMenuW
GetMenuItemID
TabbedTextOutW
PostMessageW
MapDialogRect
GetWindow
GetTopWindow
IsWindowVisible
InvalidateRect
RemovePropW
GetPropW
SetPropW
IsWindow
ScreenToClient
GetWindowRect
GetWindowLongW
GetParent
SendMessageW
LoadCursorW
SetCursor
GetSystemMetrics
ExitWindowsEx
MsgWaitForMultipleObjects
PeekMessageW
TranslateMessage
DispatchMessageW
LoadStringW
MessageBoxW
IsDlgButtonChecked
gdi32
CreateDCW
CopyMetaFileW
ExtTextOutW
CloseEnhMetaFile
CreateEnhMetaFileW
CloseMetaFile
CreateMetaFileW
BitBlt
CreateCompatibleBitmap
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
PtInRegion
RectInRegion
CreateICW
CreateCompatibleDC
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
SelectObject
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
GetTextCharacterExtra
GetCharWidthW
GetFontLanguageInfo
GetClipBox
GetDeviceCaps
Escape
SetBoundsRect
GetBoundsRect
ResetDCW
GetOutlineTextMetricsW
GetCharABCWidthsW
GetFontData
GetKerningPairsW
GetGlyphOutlineW
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatW
GetCharWidthFloatW
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
StretchDIBits
EnumFontFamiliesExW
DeleteMetaFile
GetAspectRatioFilterEx
GetDCOrgEx
SetTextColor
SetBkColor
GetObjectW
CreateBitmap
GetStockObject
UnrealizeObject
GetObjectType
CreatePen
CreatePenIndirect
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreateBrushIndirect
CreatePatternBrush
CreateDIBPatternBrushPt
CreateFontIndirectW
CreateFontW
CreateBitmapIndirect
SetBitmapBits
GetBitmapBits
GetCharacterPlacementW
GetBitmapDimensionEx
SetBitmapDimensionEx
comdlg32
GetFileTitleW
winspool.drv
GetJobW
OpenPrinterW
DocumentPropertiesW
ClosePrinter
advapi32
SetFileSecurityW
RegDeleteValueW
RegCreateKeyW
RegDeleteKeyW
OpenThreadToken
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
RegSetValueW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyA
RegQueryValueExA
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
SetThreadToken
RevertToSelf
GetFileSecurityW
shell32
DragAcceptFiles
SHGetFileInfoW
ExtractIconW
DragFinish
DragQueryFileW
ShellExecuteExW
oledlg
OleUIInsertObjectW
OleUIConvertW
OleUIChangeIconW
OleUIEditLinksW
OleUIUpdateLinksW
OleUIPasteSpecialW
OleUIBusyW
ole32
DoDragDrop
OleRegEnumVerbs
OleRegGetMiscStatus
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CreateOleAdviseHolder
CreateDataAdviseHolder
OleTranslateAccelerator
IsAccelerator
GetRunningObjectTable
CoLockObjectExternal
OleLoad
OleCreate
OleCreateLinkToFile
OleCreateFromFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleSetContainedObject
OleLockRunning
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoGetMalloc
CreateStreamOnHGlobal
GetClassFile
CreateFileMoniker
CreateGenericComposite
CreateItemMoniker
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
OleSetMenuDescriptor
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoRegisterClassObject
OleRun
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
StringFromGUID2
CoDisconnectObject
CoUninitialize
CoInitializeEx
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
ReleaseStgMedium
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
CoTaskMemFree
OleDuplicateData
OleQueryCreateFromData
OleIsRunning
OleSaveToStream
OleQueryLinkFromData
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
OleGetClipboard
WriteClassStm
OleGetIconOfClass
GetHGlobalFromILockBytes
StgIsStorageILockBytes
CoRegisterMessageFilter
OleSave
oleaut32
VarBstrFromDec
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SafeArrayGetDim
SafeArrayGetElemsize
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
VariantCopy
SysReAllocStringLen
VarCyFromStr
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
VarDateFromStr
VarDecFromStr
SysStringLen
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
SystemTimeToVariantTime
shlwapi
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 307KB - Virtual size: 306KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 16KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 943KB - Virtual size: 944KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE