General

Malware Config

Signatures

Files

• 2024-07-01_8a428965e75c787b26800a83e9694226_icedid

  .exe windows:4 windows x86 arch:x86

  98a15083592bb70eeea997a73320138b

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  CreateWindowExA

  MessageBoxA

  SetPropA

  EnumChildWindows

  SendMessageA

  GetMessageA

  GetAncestor

  EnumWindows

  TranslateMessage

  GetClassNameA

  GetWindowLongA

  GetWindowRect

  GetDC

  UpdateLayeredWindow

  ReleaseDC

  IsWindow

  ShowWindow

  CallWindowProcA

  TrackMouseEvent

  GetPropA

  wsprintfA

  GetSystemMetrics

  GetCursorPos

  CloseClipboard

  GetClipboardData

  OpenClipboard

  DispatchMessageA

  PeekMessageA

  CreateIconFromResourceEx

  RegisterClipboardFormatA

  SetRectEmpty

  DispatchMessageA

  GetMessageA

  WindowFromPoint

  UnregisterClassA

  DrawEdge

  DrawFrameControl

  TranslateMessage

  LoadIconA

  GetForegroundWindow

  GetDesktopWindow

  GetClassNameA

  GetDlgItem

  GetWindowTextA

  IsRectEmpty

  ReleaseDC

  IsChild

  DestroyMenu

  SetForegroundWindow

  GetWindowRect

  EqualRect

  UpdateWindow

  ValidateRect

  InvalidateRect

  GetClientRect

  GetFocus

  GetParent

  GetTopWindow

  PostMessageA

  IsWindow

  SetParent

  DestroyCursor

  SendMessageA

  SetWindowPos

  MessageBoxA

  GetCursorPos

  GetSystemMetrics

  EmptyClipboard

  SetClipboardData

  OpenClipboard

  GetClipboardData

  CloseClipboard

  wsprintfA

  WaitForInputIdle

  SetActiveWindow

  FillRect

  SetCursorPos

  GetKeyState

  SetCursor

  GetDC

  CreateIconFromResource

  DrawIconEx

  CreatePopupMenu

  AppendMenuA

  ModifyMenuA

  GetWindowTextLengthA

  CharUpperA

  GetWindowDC

  BeginPaint

  EndPaint

  TabbedTextOutA

  DrawTextA

  GrayStringA

  DestroyWindow

  CreateDialogIndirectParamA

  EndDialog

  GetNextDlgTabItem

  GetWindowPlacement

  RegisterWindowMessageA

  GetLastActivePopup

  GetMessageTime

  RemovePropA

  CallWindowProcA

  GetPropA

  UnhookWindowsHookEx

  SetPropA

  GetClassLongA

  CallNextHookEx

  SetWindowsHookExA

  CreateWindowExA

  GetMenuItemID

  GetMenuItemCount

  RegisterClassA

  GetScrollPos

  AdjustWindowRectEx

  MapWindowPoints

  SendDlgItemMessageA

  ScrollWindowEx

  IsDialogMessageA

  SetWindowTextA

  MoveWindow

  CheckMenuItem

  SetMenuItemBitmaps

  GetMenuState

  GetMenuCheckMarkDimensions

  LoadStringA

  GetSysColorBrush

  CreateMenu

  CopyAcceleratorTableA

  PostQuitMessage

  IsZoomed

  GetClassInfoA

  DefWindowProcA

  CreateAcceleratorTableA

  GetDlgCtrlID

  GetSubMenu

  EnableMenuItem

  ClientToScreen

  EnumDisplaySettingsA

  LoadImageA

  SystemParametersInfoA

  ShowWindow

  IsWindowEnabled

  TranslateAcceleratorA

  GetMenu

  SetMenu

  PeekMessageA

  IsIconic

  SetFocus

  GetActiveWindow

  GetWindow

  DestroyAcceleratorTable

  SetWindowRgn

  GetMessagePos

  ScreenToClient

  ChildWindowFromPointEx

  CopyRect

  LoadBitmapA

  WinHelpA

  KillTimer

  SetTimer

  ReleaseCapture

  GetCapture

  SetCapture

  GetScrollRange

  SetScrollRange

  SetScrollPos

  SetRect

  InflateRect

  IntersectRect

  DestroyIcon

  PtInRect

  OffsetRect

  IsWindowVisible

  EnableWindow

  RedrawWindow

  GetWindowLongA

  SetWindowLongA

  LoadCursorA

  GetSysColor

  DrawFocusRect

  kernel32

  FreeEnvironmentStringsW

  FreeEnvironmentStringsA

  DeleteCriticalSection

  GetEnvironmentStrings

  GetEnvironmentStringsW

  GetStartupInfoA

  GetFileType

  GetStdHandle

  WriteFile

  GetCPInfo

  GetOEMCP

  GetACP

  SetHandleCount

  GetVersion

  RtlUnwind

  TerminateProcess

  HeapReAlloc

  LeaveCriticalSection

  EnterCriticalSection

  InitializeCriticalSection

  GetStringTypeA

  GetStringTypeW

  InterlockedDecrement

  InterlockedIncrement

  SetFilePointer

  SetUnhandledExceptionFilter

  IsBadCodePtr

  LCMapStringW

  SetStdHandle

  GetCurrentProcess

  FlushFileBuffers

  IsBadWritePtr

  RaiseException

  HeapCreate

  HeapDestroy

  GetVersionExA

  LCMapStringA

  LoadLibraryA

  FreeLibrary

  GetCurrentDirectoryA

  GetLocalTime

  Sleep

  GetFileSize

  ReadFile

  GetTempPathA

  GetTickCount

  CreateFileA

  GetCommandLineA

  CloseHandle

  GetModuleFileNameA

  IsBadReadPtr

  HeapFree

  GetEnvironmentVariableA

  HeapAlloc

  ExitProcess

  GetProcessHeap

  VirtualFree

  VirtualAlloc

  GetProcAddress

  LoadLibraryW

  MapViewOfFile

  CreateFileMappingA

  VirtualProtectEx

  WideCharToMultiByte

  LocalAlloc

  LocalSize

  lstrlenW

  GlobalFree

  MultiByteToWideChar

  GlobalUnlock

  GlobalLock

  GlobalAlloc

  LocalFree

  RtlMoveMemory

  GetModuleHandleA

  GetCurrentThreadId

  TlsSetValue

  TlsAlloc

  TlsFree

  SetLastError

  TlsGetValue

  GetLastError

  VirtualFree

  HeapCreate

  HeapDestroy

  GetEnvironmentVariableA

  GetFileType

  GetStdHandle

  SetHandleCount

  GetEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  FreeEnvironmentStringsA

  UnhandledExceptionFilter

  GetACP

  HeapSize

  SetEnvironmentVariableA

  RaiseException

  GetLocalTime

  GetSystemTime

  RtlUnwind

  GetStartupInfoA

  GetOEMCP

  GetCPInfo

  GetProcessVersion

  SetErrorMode

  GlobalFlags

  GetCurrentThread

  GetFileTime

  TlsGetValue

  LocalReAlloc

  TlsSetValue

  TlsFree

  GlobalHandle

  TlsAlloc

  LocalAlloc

  lstrcmpA

  GlobalGetAtomNameA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  CloseHandle

  WaitForSingleObject

  CreateProcessA

  GetTickCount

  GetCommandLineA

  MulDiv

  GetProcAddress

  GetModuleHandleA

  GetVolumeInformationA

  SetCurrentDirectoryA

  GetCurrentDirectoryA

  CreateDirectoryA

  CopyFileA

  GetFileAttributesA

  FindClose

  FindFirstFileA

  GetTempPathA

  GlobalUnlock

  GlobalLock

  GlobalAlloc

  Sleep

  CreateEventA

  CreateThread

  WritePrivateProfileStringA

  GetVersionExA

  GetLastError

  LoadLibraryA

  FreeLibrary

  GetFullPathNameA

  HeapAlloc

  GetProcessHeap

  HeapReAlloc

  HeapFree

  GlobalReAlloc

  FindNextFileA

  lstrcpyA

  WinExec

  lstrlenA

  lstrcatA

  InitializeCriticalSection

  DeleteCriticalSection

  GlobalFree

  GlobalSize

  ExitProcess

  GetCurrentThreadId

  GetModuleFileNameA

  ReadFile

  LockResource

  LoadResource

  FindResourceA

  SetEvent

  CreateFileA

  WaitForMultipleObjects

  WriteFile

  GetProfileStringA

  LeaveCriticalSection

  EnterCriticalSection

  ReleaseSemaphore

  ResumeThread

  CreateSemaphoreA

  GetSystemDirectoryA

  GetWindowsDirectoryA

  GetCurrentProcess

  MultiByteToWideChar

  WideCharToMultiByte

  TerminateThread

  SetFilePointer

  GetFileSize

  TerminateProcess

  SetLastError

  GetTimeZoneInformation

  GetVersion

  CreateMutexA

  ReleaseMutex

  SuspendThread

  LCMapStringA

  LCMapStringW

  VirtualAlloc

  IsBadWritePtr

  SetUnhandledExceptionFilter

  GetStringTypeA

  GetStringTypeW

  CompareStringA

  CompareStringW

  IsBadReadPtr

  IsBadCodePtr

  SetStdHandle

  InterlockedExchange

  lstrcmpiA

  SetEndOfFile

  UnlockFile

  LockFile

  FlushFileBuffers

  DuplicateHandle

  lstrcpynA

  FileTimeToLocalFileTime

  FileTimeToSystemTime

  LocalFree

  InterlockedDecrement

  InterlockedIncrement

  gdi32

  CreateCompatibleDC

  DeleteDC

  CreateDIBSection

  DeleteObject

  SelectObject

  LineTo

  MoveToEx

  ExcludeClipRect

  GetClipBox

  ScaleWindowExtEx

  SetWindowExtEx

  SetWindowOrgEx

  ScaleViewportExtEx

  SetViewportExtEx

  OffsetViewportOrgEx

  SetViewportOrgEx

  SetMapMode

  SetTextColor

  SetROP2

  SetPolyFillMode

  SetBkMode

  RestoreDC

  SaveDC

  ExtSelectClipRgn

  GetViewportExtEx

  PtVisible

  RectVisible

  TextOutA

  ExtTextOutA

  Escape

  GetTextMetricsA

  GetTextExtentPoint32A

  RoundRect

  GetCurrentObject

  DPtoLP

  LPtoDP

  Rectangle

  Ellipse

  CreateCompatibleDC

  BitBlt

  StartPage

  SetBkColor

  CreateRectRgnIndirect

  SetStretchBltMode

  GetClipRgn

  CreatePolygonRgn

  SelectClipRgn

  DeleteObject

  CreateDIBitmap

  GetSystemPaletteEntries

  CreatePalette

  StretchBlt

  SelectPalette

  RealizePalette

  GetDIBits

  GetWindowExtEx

  GetViewportOrgEx

  GetWindowOrgEx

  BeginPath

  StartDocA

  DeleteDC

  EndDoc

  EndPage

  CreateFontIndirectA

  GetStockObject

  CreateSolidBrush

  FillRgn

  CreateRectRgn

  CombineRgn

  PatBlt

  CreatePen

  GetObjectA

  SelectObject

  EndPath

  PathToRegion

  CreateEllipticRgn

  CreateRoundRectRgn

  GetTextColor

  GetBkMode

  GetBkColor

  GetROP2

  GetStretchBltMode

  GetPolyFillMode

  CreateCompatibleBitmap

  CreateBitmap

  CreateDCA

  GetDeviceCaps

  gdiplus

  GdipCreateFromHDC

  GdipCreateBitmapFromScan0

  GdipGetImageGraphicsContext

  GdipSetSmoothingMode

  GdipGetImageHeight

  GdipGetImageWidth

  GdiplusStartup

  GdipGetRegionBounds

  GdipSetTextRenderingHint

  GdipDeletePen

  GdipDrawRectangleI

  GdipSetSolidFillColor

  GdipDeleteBrush

  GdipLoadImageFromFile

  GdipCreateSolidFill

  GdipDisposeImage

  GdipLoadImageFromStream

  ole32

  CreateStreamOnHGlobal

  CLSIDFromString

  OleUninitialize

  OleInitialize

  CLSIDFromString

  imm32

  ImmAssociateContext

  ImmGetCompositionStringW

  ImmReleaseContext

  ImmSetCompositionWindow

  ImmGetContext

  shell32

  SHAppBarMessage

  ShellExecuteA

  SHGetSpecialFolderPathA

  Shell_NotifyIconA

  ShellExecuteA

  shlwapi

  PathFileExistsA

  winmm

  PlaySoundA

  midiStreamOut

  midiStreamStop

  waveOutOpen

  waveOutGetNumDevs

  waveOutClose

  waveOutReset

  waveOutPause

  waveOutWrite

  waveOutPrepareHeader

  waveOutUnprepareHeader

  midiOutUnprepareHeader

  midiOutReset

  midiStreamClose

  midiStreamOpen

  midiStreamRestart

  waveOutRestart

  midiOutPrepareHeader

  midiStreamProperty

  ws2_32

  WSACleanup

  inet_ntoa

  getpeername

  accept

  ntohl

  closesocket

  WSAAsyncSelect

  recvfrom

  ioctlsocket

  recv

  winspool.drv

  OpenPrinterA

  DocumentPropertiesA

  ClosePrinter

  advapi32

  RegCloseKey

  RegOpenKeyExA

  RegSetValueExA

  RegCreateKeyExA

  RegQueryValueA

  oleaut32

  LoadTypeLi

  RegisterTypeLi

  UnRegisterTypeLi

  comctl32

  ord17

  ImageList_Destroy

  comdlg32

  GetSaveFileNameA

  GetOpenFileNameA

  ChooseColorA

  GetFileTitleA

  Sections

  .text

  Size: 3.0MB - Virtual size: 3.0MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 2.0MB - Virtual size: 2.0MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 404KB - Virtual size: 629KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 168KB - Virtual size: 165KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ