file | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

core.bat

windows10-2004_x64

cruel-64.dll

windows7_x64

cruel-64.dll

windows10-2004_x64

Resubmissions

22-02-2022 16:13

220222-tplfmscabm 10

13-12-2021 19:49

211213-yjqwdsebc7 10

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-en-20211208

icedid 3494996616 banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

core.bat

Resource

win10v2004-en-20220113

icedid 3494996616 banker trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

cruel-64.dll

Resource

win7-en-20211208

icedid 3494996616 banker trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

cruel-64.dll

Resource

win10v2004-en-20220113

icedid 3494996616 banker trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

file
Size

398KB
MD5

ab19a1faedf6add1d7e1bd4270a66de6
SHA1

fb506312c7a0ed2e77ecc977be79479c6a805bf4
SHA256

f4c75386c042b8ac7fb221192727fd7cedd9b8471438a521d72f1e54f5b24812
SHA512

59666e1e856d292246c8f70cbde7388f5ceca6b26158eb1dad6efad83464aa1296b9d43058a611e95fa88c0c56c04eaf92fce17d7dc76845ccfeb4eb16e89854
SSDEEP

12288:cWYQ9HY96DaOgXV+xytrDtdGZMi1S3lR8uA:HYhk+NXVltrDIn1K8uA

Score

N/A

Malware Config

Signatures

Files

file
.zip
core.bat
cruel-64.dat
.dll windows x64

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

DllMain

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
license.dat

© 2018-2024

Terms | Privacy