2025-01-05_60a997c98ef0aed02f43a08d7e05999c_floxif_icedid_rhadamanthys

Sharing

Copy URL

Twitter E-mail

General

Target

2025-01-05_60a997c98ef0aed02f43a08d7e05999c_floxif_icedid_rhadamanthys
Size

1.6MB
MD5

60a997c98ef0aed02f43a08d7e05999c
SHA1

4137b50117aaa1fcc06319cfeafdab50bcf3bdfa
SHA256

a37f97f4ff08502ebc99af67358726c8096f1bbbc949c4297dda2cce80848f95
SHA512

1aa0fd21420972d51ad9651fa30c9edfe17f0132365000d2cabed5e5764406e7e35451b0048b82c866b83d15891a18b91d76e1d2ca847cbb57235f7f2545359f
SSDEEP

24576:6ck622mwdU4KY5GABkuwPKzhZEm1xmvdmc5C65Bwbg6a5fQE4UJ0IiGmOjzbdiNq:1Bk5Wham1iYMpPcG0Ii0T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2025-01-05_60a997c98ef0aed02f43a08d7e05999c_floxif_icedid_rhadamanthys

Files

2025-01-05_60a997c98ef0aed02f43a08d7e05999c_floxif_icedid_rhadamanthys
.exe windows:4 windows x86 arch:x86

406dfcbf6c18bbc55a031431e16f37eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFlags
InterlockedIncrement
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
SetErrorMode
RtlUnwind
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
EnumResourceLanguagesA
GetStartupInfoA
GetCommandLineA
SetEnvironmentVariableA
SetCurrentDirectoryA
ExitProcess
ExitThread
CreateThread
HeapSize
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
lstrcpyA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateEventA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
InterlockedDecrement
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
GetFullPathNameA
GetModuleHandleA
GlobalAlloc
LocalFree
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
SetVolumeLabelA
GetFileAttributesA
IsBadWritePtr
IsBadReadPtr
CopyFileA
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
SystemTimeToFileTime
LocalFileTimeToFileTime
GetPrivateProfileStringA
MoveFileA
SetFileTime
GetFileTime
GetDriveTypeA
CreateDirectoryA
SetFileAttributesA
GetDiskFreeSpaceA
WriteFile
WaitForSingleObject
GetExitCodeProcess
DeviceIoControl
GetDiskFreeSpaceExA
FormatMessageA
FreeLibrary
LoadLibraryA
GetProcAddress
GetTickCount
CreateProcessA
RemoveDirectoryA
RaiseException
GetModuleFileNameA
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
MulDiv
GetLogicalDriveStringsA
lstrcpynA
SetLastError
GetFileSize
CreateFileA
GetLastError
SetFilePointer
ReadFile
CloseHandle
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
Sleep
GetPrivateProfileSectionA
WritePrivateProfileStringA
TerminateProcess
GetCurrentProcess
GetPrivateProfileIntA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVolumeInformationA
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentThread
lstrcmpA
lstrcmpW
ConvertDefaultLocale
HeapReAlloc

user32

GetSysColorBrush
GetDCEx
LockWindowUpdate
SetCapture
CharNextA
IsRectEmpty
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
SetParent
RegisterClipboardFormatA
PostThreadMessageA
PostQuitMessage
GetMessageA
TranslateMessage
ValidateRect
KillTimer
SetTimer
SetRect
SetRectEmpty
InflateRect
GetCursorPos
WindowFromPoint
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
ShowWindow
MoveWindow
IsDialogMessageA
EndPaint
BeginPaint
ClientToScreen
GrayStringA
DrawTextExA
TabbedTextOutA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
IsZoomed
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
TrackPopupMenu
GetKeyState
SetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
AdjustWindowRectEx
EqualRect
GetClassInfoA
RegisterClassA
SetWindowPlacement
DefWindowProcA
CallWindowProcA
SetWindowLongA
IntersectRect
GetWindowPlacement
PtInRect
GetWindow
GetMenuState
GetSubMenu
GetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
CharToOemBuffA
OemToCharBuffA
DrawTextA
FillRect
SetScrollInfo
EnableScrollBar
IsIconic
DrawIcon
CharUpperA
SystemParametersInfoA
GetDlgCtrlID
SetWindowPos
LoadStringA
LoadMenuA
DestroyMenu
EnumWindows
GetWindowThreadProcessId
MessageBoxA
GetWindowLongA
GetWindowDC
LoadBitmapA
GetMenuItemCount
GetMenuItemInfoA
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetMenu
IsMenu
GetMenuItemID
wsprintfA
SetWindowTextA
GetDesktopWindow
RedrawWindow
DrawMenuBar
GetMenu
RemoveMenu
ModifyMenuA
InsertMenuA
BringWindowToTop
CopyRect
TranslateAcceleratorA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
GetTopWindow
SetCursor
UnregisterClassA
FindWindowA
UpdateWindow
DestroyIcon
GetParent
ScreenToClient
PostMessageA
LoadImageA
ReleaseDC
IsWindowVisible
IsWindow
LoadCursorA
SetActiveWindow
GetDC
GetClientRect
GetSystemMetrics
GetSysColor
LoadIconA
EnableWindow
SendMessageA
InvalidateRect
GetWindowRect
OffsetRect
DeferWindowPos

gdi32

CreatePatternBrush
CreateBitmap
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
PatBlt
StretchDIBits
GetCharWidthA
GetBkColor
ExtSelectClipRgn
GetRgnBox
SetTextAlign
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
GetPixel
SetPixel
DeleteDC
GetTextColor
GetTextMetricsA
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
SetBoundsRect
CreateFontA
CreateSolidBrush
CreateCompatibleBitmap
TextOutA
ExtTextOutA
BitBlt
GetTextExtentPoint32A
GetStockObject
GetDeviceCaps
DeleteObject
CreateFontIndirectA
GetObjectA
CreateCompatibleDC
SelectObject

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey

shell32

ShellExecuteA
SHGetSpecialFolderPathA
DragFinish
DragQueryFileA
SHGetFileInfoA

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create
ord17
ImageList_LoadImageA
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
OleInitialize
CoTaskMemFree
CoFreeUnusedLibraries
OleUninitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject

oleaut32

SysAllocStringLen
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
SysFreeString
VariantInit
VariantChangeType
VariantClear
OleLoadPicturePath
OleCreateFontIndirect

Sections

.text
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 848KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

406dfcbf6c18bbc55a031431e16f37eb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 556KB - Virtual size: 555KB

.rdata Size: 112KB - Virtual size: 111KB

.data Size: 16KB - Virtual size: 35KB

.rsrc Size: 848KB - Virtual size: 844KB

.text
Size: 556KB - Virtual size: 555KB

.rdata
Size: 112KB - Virtual size: 111KB

.data
Size: 16KB - Virtual size: 35KB

.rsrc
Size: 848KB - Virtual size: 844KB