2025-01-14_822987f6920c5c37b35290f4317dd291_icedid

Sharing

Copy URL

Twitter E-mail

General

Target

2025-01-14_822987f6920c5c37b35290f4317dd291_icedid
Size

296KB
MD5

822987f6920c5c37b35290f4317dd291
SHA1

a740b284491b4e42e447ff6b1a26ed208f0e40f7
SHA256

1829f6a09b7c742ce0b530b2f8638bc90af58f06f7cca9e2654990e62742d01f
SHA512

fba15b72717b93aac5aba8c06e0e0212219c4bfcd3a2dfedea14a1768430fc466f197b833256c8d073d5c826cb8fe24cf41af3af38462bd25df6ad18ba26cddc
SSDEEP

6144:0vO54bGZ4s2oMDZ+mUI3P8jfgiOtpC3nDMWTQKHB:HgGZ4/3+xU8wH8nIAB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2025-01-14_822987f6920c5c37b35290f4317dd291_icedid

Files

2025-01-14_822987f6920c5c37b35290f4317dd291_icedid
.exe windows:4 windows x86 arch:x86

94e9b3bbe5992fee6f9e15c0c8b0f843

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
HeapReAlloc
TerminateProcess
HeapSize
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
HeapFree
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
HeapAlloc
RtlUnwind
SetErrorMode
GetFileTime
FileTimeToLocalFileTime
GetTickCount
CreateFileA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
GlobalFlags
DeleteCriticalSection
InitializeCriticalSection
RaiseException
CloseHandle
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
FileTimeToSystemTime
InterlockedDecrement
SetLastError
MulDiv
GlobalAlloc
FormatMessageA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
LoadLibraryA
FreeLibrary
lstrcatA
lstrcmpW
lstrcpynA
GetModuleHandleA
GetProcAddress
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
CompareStringW
CompareStringA
lstrcmpiA
GetVersion
GetLastError
GetCurrentThreadId
LoadLibraryExW
ExitProcess
LoadLibraryExA
GetCurrentProcess
IsBadReadPtr
lstrlenA
GetFileAttributesA
GetFullPathNameA
GetModuleFileNameA
GetPrivateProfileStringA
WideCharToMultiByte
GetWindowsDirectoryA
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
LocalAlloc
MultiByteToWideChar
GetEnvironmentStringsW
LocalFree

user32

PostThreadMessageA
MessageBeep
GetNextDlgGroupItem
ReleaseCapture
SetCapture
InvalidateRgn
InvalidateRect
CopyAcceleratorTableA
SetRect
IsRectEmpty
LoadCursorA
GetSysColorBrush
DestroyMenu
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
SetCursor
PostQuitMessage
SetWindowContextHelpId
MapDialogRect
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
ShowWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetFocus
SetFocus
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
MessageBoxA
GetKeyState
EnableWindow
CharNextA
CharPrevA
CopyRect
OffsetRect
PostMessageA
GetWindowRect
GetClientRect
GetParent
SendMessageA
AdjustWindowRectEx
IsWindow
MoveWindow
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetSysColor
ScreenToClient
EqualRect
GetClassInfoA
RegisterClassA
RegisterClipboardFormatA
UnregisterClassA
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
PtInRect
GetWindow
GetDesktopWindow
GetCapture
LoadStringA
wsprintfA
DrawIcon
AppendMenuA
GetSystemMenu
IsIconic
SetTimer
KillTimer
LoadIconA
GetSystemMetrics
GetDlgCtrlID
UnhookWindowsHookEx
CallNextHookEx
IsChild
SetWindowsHookExA
CharUpperA
EndDialog
GetNextDlgTabItem
IsWindowEnabled
GetDlgItem
GetWindowLongA
DestroyWindow
CreateDialogIndirectParamA
SetActiveWindow
GetActiveWindow

gdi32

GetMapMode
GetBkColor
GetRgnBox
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
GetTextColor
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject
SetMapMode
RestoreDC
SaveDC
CreateRectRgnIndirect
GetDeviceCaps
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
ExtTextOutA

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
CryptAcquireContextA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17
ImageList_Destroy
ImageList_LoadImageA

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoCreateInstance
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject

oleaut32

VariantClear
SysFreeString
VariantChangeType
VariantInit
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
SysStringLen
SystemTimeToVariantTime
SysAllocString
SysAllocStringByteLen
OleCreateFontIndirect
SysAllocStringLen

Sections

.text
Size: 176KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94e9b3bbe5992fee6f9e15c0c8b0f843

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 176KB - Virtual size: 172KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 176KB - Virtual size: 172KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 56KB - Virtual size: 53KB