file | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

core.bat

windows10-2004_x64

paper_x32.dll

windows7_x64

1

paper_x32.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-20220311-en

icedid 3415411565 banker core_loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

core.bat

Resource

win10v2004-en-20220113

icedid 3415411565 banker core_loader trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

paper_x32.dll

Resource

win7-20220311-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

paper_x32.dll

Resource

win10v2004-en-20220113

windows10-2004_x64

0 signatures

0 seconds

General

Target

file
Size

363KB
MD5

b6460cf1835db52565efd8bbeceab763
SHA1

a804a22e5d99be652a92ae4ef1a79b2f80e8944e
SHA256

1d05de979e7e76488378237e121475bef8a7ad071e059fc26ff7339cd2120a65
SHA512

c844b2383e9c2252529c8fee5ed655bc9dad087d2d562c4c41c93fb841264da61d986550cf4857313942f787a6e354d93a562434e8fac7a8dfc42e9030b93e12

Score

N/A

Malware Config

Signatures

Files

file
.zip
core.bat
license.dat
paper_x32.dat
.dll windows x64

9e7c6a393b12eb84289e5a86adca17af

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

imm32

ImmGetProperty
ImmAssociateContextEx
ImmSetConversionStatus
ImmGetOpenStatus
ImmGetCompositionFontA
ImmSetCompositionFontW
ImmConfigureIMEA
ImmGetConversionListA
ImmEnumInputContext

shlwapi

ord153
StrRetToStrA
StrFormatByteSizeA
StrFormatByteSizeEx
StrCSpnIA
StrFormatKBSizeA

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW
DrawDibProfileDisplay
ICCompress
DrawDibDraw
DrawDibBegin
ICSeqCompressFrameStart
ICImageDecompress

Exports

Exports

BxCOLgxzna
DllMain
OdalgbEP
czYVQMm
iHNAxsIgD
zvwqWYlKp

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy