file | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

core.bat

windows10-2004_x64

paper_x32.dll

windows7_x64

1

paper_x32.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-20220311-en

icedid 3415411565 banker core_loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

core.bat

Resource

win10v2004-en-20220113

icedid 3415411565 banker core_loader trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

paper_x32.dll

Resource

win7-20220310-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

paper_x32.dll

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

General

Target

file
Size

363KB
MD5

4d51661394616fc594fa5c3b091ca5da
SHA1

a03592920a7a48e0ebb57180735fc7c2c5cbaf36
SHA256

eabc0d96125b693c9a05ee58d68354ade26194878abf5ab853ee1d40c5cacdef
SHA512

95a5ad0c683142f748122b186f3a7dc26cb6030cb0e1a11ef1a163bf5e787f5a1a3866a754c547a70a660bc7dd8310f25064f015ca1bdcad1f25e03c39097046

Score

N/A

Malware Config

Signatures

Files

file
.zip
core.bat
license.dat
paper_x32.dat
.dll windows x64

9e7c6a393b12eb84289e5a86adca17af

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

imm32

ImmGetProperty
ImmAssociateContextEx
ImmSetConversionStatus
ImmGetOpenStatus
ImmGetCompositionFontA
ImmSetCompositionFontW
ImmConfigureIMEA
ImmGetConversionListA
ImmEnumInputContext

shlwapi

ord153
StrRetToStrA
StrFormatByteSizeA
StrFormatByteSizeEx
StrCSpnIA
StrFormatKBSizeA

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW
DrawDibProfileDisplay
ICCompress
DrawDibDraw
DrawDibBegin
ICSeqCompressFrameStart
ICImageDecompress

Exports

Exports

BxCOLgxzna
DllMain
OdalgbEP
czYVQMm
iHNAxsIgD
zvwqWYlKp

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy