2024-12-25_91dbea4ed1acd12aed76f66748d88b00_floxif_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2024-12-25_91dbea4ed1acd12aed76f66748d88b00_floxif_icedid
Size

1.3MB
MD5

91dbea4ed1acd12aed76f66748d88b00
SHA1

be58acca70bd585cdbaa0da3e3e6055509d43c62
SHA256

185e8d93d7cbd5693b4c4126e141e48c19a209a321ade7e44e3153405b97df96
SHA512

5dea3b61c5a23ebb7bd71773044bb3b94917353fbcd22d9a17053a7ea2efb5f7f245a824174d5cc1890fa5ee737685703257557ca73022ec6052d7c82e545b4b
SSDEEP

24576:XLEHYGGHNi+tQmSMDlWSge3Mn9iX8Z4u0ZR3arPjE/w1LTiRuXhoWgrEH7w:WOjmMDl3geMHCR3arPow1L2kXY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-12-25_91dbea4ed1acd12aed76f66748d88b00_floxif_icedid

Files

2024-12-25_91dbea4ed1acd12aed76f66748d88b00_floxif_icedid
.exe windows:5 windows x86 arch:x86

57dab81936dec6b7804c0132e3bf3b6d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoW
lstrcmpA
EnumResourceLanguagesW
ConvertDefaultLocale
GetCurrentThread
SetThreadPriority
ResumeThread
SuspendThread
GlobalFlags
lstrlenA
GetThreadLocale
FileTimeToSystemTime
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedIncrement
FindResourceExW
WritePrivateProfileStringW
LoadLibraryExW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileW
GetVolumeInformationW
GetFullPathNameW
CreateFileW
SetErrorMode
FileTimeToLocalFileTime
SetFileTime
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetTickCount
GetStartupInfoW
HeapFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
RtlUnwind
HeapReAlloc
RaiseException
ExitProcess
ExitThread
HeapSize
VirtualAlloc
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetTimeZoneInformation
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
CreateFileA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
InterlockedCompareExchange
ExpandEnvironmentStringsA
MoveFileA
FindFirstFileA
CreateEventA
GetFullPathNameA
GetThreadPriority
ResetEvent
CompareStringA
VirtualProtect
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GlobalAlloc
FormatMessageW
LocalFree
lstrlenW
MulDiv
GetModuleHandleA
FreeLibrary
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
GetCurrentProcessId
GetModuleFileNameW
QueryPerformanceFrequency
GetProcessAffinityMask
GetSystemInfo
QueryPerformanceCounter
GetCurrentProcess
GlobalMemoryStatus
CreateDirectoryA
GetFileAttributesA
SetLastError
InterlockedDecrement
CreateThread
DeleteCriticalSection
CreateEventW
GetExitCodeThread
EnterCriticalSection
LeaveCriticalSection
Sleep
InitializeCriticalSection
SetEvent
WaitForSingleObject
MultiByteToWideChar
GetComputerNameW
LockResource
CloseHandle
ReleaseMutex
CreateMutexA
GetProcAddress
GetLastError
GetModuleHandleW
GetLocaleInfoA
InterlockedExchange
GetVersionExW
SizeofResource
WideCharToMultiByte
LoadResource
FindResourceW

user32

UnregisterClassW
SetCapture
ReleaseCapture
CharUpperW
CharNextW
CopyAcceleratorTableW
IsRectEmpty
SetRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatW
PostThreadMessageW
ShowWindow
MoveWindow
IsDialogMessageW
SetDlgItemInt
GetDlgItemInt
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
DispatchMessageW
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetMenu
IsWindowVisible
UpdateWindow
GetClientRect
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DefWindowProcW
PtInRect
GetMenu
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetMenuItemID
GetMenuItemCount
GetSysColor
EndPaint
BeginPaint
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
UnhookWindowsHookEx
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
GetSubMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetFocus
GetParent
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
DestroyMenu
LoadCursorW
GetMessageW
GetSysColorBrush
TranslateMessage
ValidateRect
SetWindowContextHelpId
SetCursor
PostQuitMessage
MapDialogRect
GetAsyncKeyState
GetDC
ReleaseDC
SetWindowLongW
RegisterDeviceNotificationW
UnregisterDeviceNotification
CallWindowProcW
GetActiveWindow
GetForegroundWindow
LoadIconW
SetForegroundWindow
FindWindowW
GetWindowTextW
EnumChildWindows
MessageBoxW
GetDlgCtrlID
SetWindowTextW
EnumDisplaySettingsW
GetSystemMetrics
ScreenToClient
GetWindowRect
WindowFromPoint
InvalidateRect
GetCursorPos
CopyRect
SetTimer
KillTimer
LoadBitmapW
SendMessageW
EnableWindow
GetWindowDC

gdi32

CreateRectRgnIndirect
OffsetViewportOrgEx
GetMapMode
CreateCompatibleDC
BitBlt
SaveDC
RestoreDC
SetBkColor
SetTextColor
SetMapMode
GetClipBox
DeleteObject
StretchDIBits
GetDeviceCaps
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
EnumFontFamiliesExW
GetBkColor
GetTextColor
GetRgnBox
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
GetObjectW
SetWindowExtEx
ScaleViewportExtEx
CreateBitmap
SetViewportExtEx

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW

comctl32

ord17

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW

oledlg

OleUIBusyW

dsound

ord11
ord12

d3d8

Direct3DCreate8

dinput8

DirectInput8Create

d3d9

Direct3DCreate9

ddraw

DirectDrawCreate

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

comdlg32

GetFileTitleW

advapi32

RegEnumKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegOpenKeyW
RegQueryValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleInitialize
OleUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
OleIsCurrentClipboard
CoFreeUnusedLibraries
CoRegisterMessageFilter
OleFlushClipboard

oleaut32

OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen

winmm

timeGetTime

Sections

.text
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 648KB - Virtual size: 648KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57dab81936dec6b7804c0132e3bf3b6d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

shlwapi

oledlg

dsound

d3d8

dinput8

d3d9

ddraw

winspool.drv

comdlg32

advapi32

ole32

oleaut32

winmm

Sections

.text Size: 460KB - Virtual size: 459KB

.rdata Size: 116KB - Virtual size: 116KB

.data Size: 17KB - Virtual size: 390KB

.rsrc Size: 648KB - Virtual size: 648KB

.text
Size: 460KB - Virtual size: 459KB

.rdata
Size: 116KB - Virtual size: 116KB

.data
Size: 17KB - Virtual size: 390KB

.rsrc
Size: 648KB - Virtual size: 648KB