Extracted

• • Target

    core.bat

  • Size

    184B

  • MD5

    c540eb5e82dc4dd90cd65bc5a8580745

  • SHA1

    3c009abc357c266b1eac6cee5efde0faf69f8afd

  • SHA256

    6325c1d867acf95f2786c760ad517fefa9f213d8beb76e422f6c2fea88e5b91c

  • SHA512

    5b0f0a797d0c8c4a5f53e329ce40d5e9f608753626ca67e94cfbe0c1bcc8086c9145f8093950f8edcd69307e353dffaf30025d614778ebc4aeac66946b33c8db

  Score

  10^/10

  icedidbankercollectionspywarestealertrojan

  • IcedID, BokBot

    IcedID is a banking trojan capable of stealing credentials.

    trojanbankericedid

  • Blocklisted process makes network request

  • Downloads MZ/PE file

  • Loads dropped DLL

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection
  behavioral1behavioral2

• • Target

    scan_x32.tmp

  • Size

    112KB

  • MD5

    3b89fae14077485209480f448bc6154d

  • SHA1

    0006d7bfefe42a3f1714653c1b14ad292a12baae

  • SHA256

    7338986761ad8de5fa5dabd42d85b08aa72f38fa5265840686f04d7de96a5016

  • SHA512

    8eb99ae51d2e10056061784d464b88351404b0d1272b9c1e4a2db2fba1610688d39511559af38ca24a5ea2be165017abcc7827d21525dc7fb050c6b335b03f62

  Score

  1^/10
  behavioral3behavioral4