file | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

core.bat

windows10-2004_x64

paper_x32.dll

windows7_x64

1

paper_x32.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-20220310-en

icedid 3415411565 banker core_loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

core.bat

Resource

win10v2004-20220310-en

icedid 3415411565 banker core_loader trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

paper_x32.dll

Resource

win7-20220311-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

paper_x32.dll

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

General

Target

file
Size

363KB
MD5

7a9c3e19f93e9d094155bd135ca0baa2
SHA1

9eb432a6a6d03fd280191061f758fdd76c63363a
SHA256

187364ccb5e949f03459e59f086ee3423877edfbcbc86e4f374b86513f3c3181
SHA512

a3459f4bcc16862a9c835106cece9c9bd565ab515094213cdf66a934f9b3ed7820fd4a790e0839ee80d0521e7eebbdfd7ded9ae502f1a1b1d74ea40593bf34f4

Score

N/A

Malware Config

Signatures

Files

file
.zip
core.bat
license.dat
paper_x32.dat
.dll windows x64

9e7c6a393b12eb84289e5a86adca17af

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

imm32

ImmGetProperty
ImmAssociateContextEx
ImmSetConversionStatus
ImmGetOpenStatus
ImmGetCompositionFontA
ImmSetCompositionFontW
ImmConfigureIMEA
ImmGetConversionListA
ImmEnumInputContext

shlwapi

ord153
StrRetToStrA
StrFormatByteSizeA
StrFormatByteSizeEx
StrCSpnIA
StrFormatKBSizeA

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW
DrawDibProfileDisplay
ICCompress
DrawDibDraw
DrawDibBegin
ICSeqCompressFrameStart
ICImageDecompress

Exports

Exports

BxCOLgxzna
DllMain
OdalgbEP
czYVQMm
iHNAxsIgD
zvwqWYlKp

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy