2024-12-11_f9f682bf23dbac1809b4860eb0f396b7_floxif_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-12-11_f9f682bf23dbac1809b4860eb0f396b7_floxif_icedid
Size

624KB
MD5

f9f682bf23dbac1809b4860eb0f396b7
SHA1

e193c7dc15a89dccb8cf01f78fc6a0717c32eed9
SHA256

c1ddc79779fbaa53e112879161a2b8ff746b8665b32d80e32429f2843fbde0f2
SHA512

9f6a9ecc09ae60771f16de5cd5b10f9b276bd7f622a2b71dc529fb15a55ef7f3a99ccdd2fbcae12121ed863f8cec4078a11bc781bfb449f6b21f540977074ded
SSDEEP

12288:ffwihI/3yuTyn7cpJVZLuTKeNNURtvVCnqTmUqnuEEPg6BjvrEH7mzD:HwihI/CwEMnoKeNNUrV1TmU+ulrEH7W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-12-11_f9f682bf23dbac1809b4860eb0f396b7_floxif_icedid

Files

2024-12-11_f9f682bf23dbac1809b4860eb0f396b7_floxif_icedid
.exe windows:5 windows x86 arch:x86

e4de3b3b99f172922cd4cdc73b37d4fe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

GetUrlCacheEntryInfoW

kernel32

LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
CreateFileW
GetFileAttributesExW
LocalFileTimeToFileTime
GetFileSizeEx
SetErrorMode
GetStartupInfoW
RtlUnwind
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapReAlloc
GetFileType
GetDriveTypeW
ExitProcess
HeapSize
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
FlushFileBuffers
GetStartupInfoA
HeapCreate
QueryPerformanceCounter
GetCPInfo
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
LCMapStringW
SetStdHandle
GetFileInformationByHandle
PeekNamedPipe
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
LCMapStringA
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
GetDriveTypeA
SetEnvironmentVariableA
SetFilePointer
ReadFile
lstrcmpiW
GetStringTypeExW
MoveFileW
GetCurrentDirectoryW
GetModuleHandleA
GlobalFlags
SystemTimeToFileTime
lstrlenA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedDecrement
InterlockedIncrement
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
WritePrivateProfileStringW
CloseHandle
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
CompareStringA
InterlockedExchange
FreeResource
GetCurrentThreadId
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GlobalGetAtomNameW
GlobalAddAtomW
SetLastError
GlobalFree
lstrlenW
MulDiv
CopyFileW
Sleep
GetUserDefaultLCID
GetPrivateProfileStringW
GetModuleHandleW
FormatMessageW
LocalFree
GetShortPathNameW
GetLongPathNameW
GetLocaleInfoW
GetTimeFormatW
GetThreadLocale
GetDateFormatW
WriteFile
GetVersionExW
GlobalAlloc
GlobalLock
GlobalUnlock
FindFirstFileW
FindClose
GetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetACP
GetLastError
WideCharToMultiByte
HeapAlloc
FreeLibrary
GetProcessHeap
HeapFree
MultiByteToWideChar
LoadLibraryW
GetProcAddress
VirtualFree
VirtualProtect
VirtualAlloc
GetCurrentProcessId
GetTempPathW
DeleteFileW
GetTickCount
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource
GetCommandLineW
CreateDirectoryW
GetPrivateProfileIntW
SetHandleCount

user32

MapDialogRect
ShowOwnedPopups
GetMessageW
GetCursorPos
ValidateRect
PostQuitMessage
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
MoveWindow
IsDialogMessageW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
GetWindowTextLengthW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
SetWindowContextHelpId
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
DefWindowProcW
CallWindowProcW
PtInRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
IsZoomed
GetSystemMetrics
GetSysColor
UnpackDDElParam
ReuseDDElParam
LoadMenuW
DestroyMenu
WinHelpW
SetWindowPos
SetFocus
GetWindowThreadProcessId
GetActiveWindow
IsWindowEnabled
EqualRect
GetDlgItem
SetWindowLongW
GetDlgCtrlID
GetKeyState
LoadIconW
SetCursor
GetCapture
ReleaseCapture
LoadAcceleratorsW
SetActiveWindow
IsWindowVisible
InvalidateRect
IsIconic
InsertMenuItemW
CreatePopupMenu
GetClassInfoW
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
GetMenu
RegisterClipboardFormatW
CopyAcceleratorTableW
IsRectEmpty
SetRect
GetDC
ReleaseDC
InvalidateRgn
SetCapture
SystemParametersInfoW
FillRect
DrawIcon
SetWindowRgn
GetLastActivePopup
BringWindowToTop
ClientToScreen
LoadCursorW
GetSysColorBrush
UnregisterClassW
PostThreadMessageW
MessageBeep
GetNextDlgGroupItem
CharNextW
CharUpperW
DestroyIcon
WindowFromPoint
DeleteMenu
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetMenuItemInfoW
GetClientRect
InflateRect
SetMenu
GetDesktopWindow
GetWindow
ShowWindow
GetWindowLongW
TranslateAcceleratorW
GetMenuState
GetMenuItemID
InsertMenuW
MessageBoxW
GetParent
IsWindow
GetClassNameW
GetWindowTextW
SetWindowTextW
GetMenuItemCount
GetMenuStringW
GetSubMenu
GetForegroundWindow
SendMessageW
PeekMessageW
DispatchMessageW
TranslateMessage
KillTimer
SetTimer
PostMessageW
EnableWindow
UpdateWindow
GetMessagePos

gdi32

ExtSelectClipRgn
DeleteDC
CreatePatternBrush
GetStockObject
ScaleWindowExtEx
CreateSolidBrush
GetMapMode
GetBkColor
GetTextColor
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
ExtTextOutW
BitBlt
CreateFontIndirectW
DeleteObject
Ellipse
LPtoDP
CreateEllipticRgn
GetRgnBox
CreateRectRgnIndirect
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPoint32W
GetTextMetricsW
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyW
GetFileSecurityW
SetFileSecurityW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW
GetUserNameW
IsTextUnicode
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

DragFinish
DragQueryFileW
ExtractIconW
SHGetFileInfoW
SHGetFolderPathW

comctl32

InitCommonControlsEx

shlwapi

StrChrW
StrRChrW
PathCreateFromUrlW
UrlIsW
PathCombineW
UrlUnescapeA
StrRStrIW
StrTrimW
StrStrIA
PathAddBackslashW
StrStrIW
PathFileExistsW
UrlCanonicalizeA
UrlUnescapeW
UrlCanonicalizeW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CoTaskMemAlloc
CLSIDFromProgID
CoTaskMemFree
CoCreateGuid
StringFromGUID2
CreateStreamOnHGlobal
CoCreateInstance
CoUninitialize
CoInitializeEx

oleaut32

SysAllocString
OleCreateFontIndirect
SysFreeString
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
VariantChangeType
SysStringLen
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
VariantClear
VariantInit
SystemTimeToVariantTime
VariantTimeToSystemTime

urlmon

URLDownloadToCacheFileW
URLDownloadToFileW

Sections

.text
Size: 380KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4de3b3b99f172922cd4cdc73b37d4fe

Headers

DLL Characteristics

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

Sections

.text Size: 380KB - Virtual size: 380KB

.rdata Size: 95KB - Virtual size: 94KB

.data Size: 26KB - Virtual size: 41KB

.rsrc Size: 45KB - Virtual size: 45KB

.text
Size: 380KB - Virtual size: 380KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 26KB - Virtual size: 41KB

.rsrc
Size: 45KB - Virtual size: 45KB