file | Triage

Submit
Reports

Overview

overview

Static

static

core.bat

windows7_x64

core.bat

windows10-2004_x64

paper_x32.dll

windows7_x64

1

paper_x32.dll

windows10-2004_x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

core.bat

Resource

win7-20220310-en

icedid 3415411565 banker core_loader trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

core.bat

Resource

win10v2004-en-20220113

icedid 3415411565 banker core_loader trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

paper_x32.dll

Resource

win7-20220311-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

paper_x32.dll

Resource

win10v2004-20220310-en

windows10-2004_x64

0 signatures

0 seconds

General

Target

file
Size

363KB
MD5

06639443d5d8df4ebc50f2cda961b28a
SHA1

b1f430e2ccc5cce8debec784444b114f7b7d757f
SHA256

841894797507ec7ed307a7c1059f040154f4345ca7885ad16305107ad5893945
SHA512

2950273aff4bf9777a9aa4c678de136714bf793e238bf8509b392a320bf1b8402f0151fcc34f1135fcf7ea57a8cdf56069f4b0e317010251b8a618df76db2d87

Score

N/A

Malware Config

Signatures

Files

file
.zip
core.bat
license.dat
paper_x32.dat
.dll windows x64

9e7c6a393b12eb84289e5a86adca17af

Code Sign

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

imm32

ImmGetProperty
ImmAssociateContextEx
ImmSetConversionStatus
ImmGetOpenStatus
ImmGetCompositionFontA
ImmSetCompositionFontW
ImmConfigureIMEA
ImmGetConversionListA
ImmEnumInputContext

shlwapi

ord153
StrRetToStrA
StrFormatByteSizeA
StrFormatByteSizeEx
StrCSpnIA
StrFormatKBSizeA

msvfw32

GetOpenFileNamePreviewA
MCIWndCreateW
DrawDibProfileDisplay
ICCompress
DrawDibDraw
DrawDibBegin
ICSeqCompressFrameStart
ICImageDecompress

Exports

Exports

BxCOLgxzna
DllMain
OdalgbEP
czYVQMm
iHNAxsIgD
zvwqWYlKp

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

© 2018-2024

Terms | Privacy