e472b696ec89d0d6215c0d21304408a2b9a1257727c971279103dda68738592a[.]rar | Triage

Submit
Reports

Overview

overview

Static

static

documents.lnk

windows7_x64

documents.lnk

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

documents.lnk

Resource

win7-20220414-en

icedid 3084789471 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

documents.lnk

Resource

win10v2004-20220414-en

icedid 3084789471 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

e472b696ec89d0d6215c0d21304408a2b9a1257727c971279103dda68738592a.rar
Size

478KB
MD5

b19a5078e63c53ff46a62085ffb0a1ae
SHA1

4e88e784e12057dfd4c1adb4a2c384890a166f3c
SHA256

92c6795bb0fd13a958ed3544db69ad07a0139c787c18625d48683fd861ebcaa9
SHA512

fd505c8fd6bba67ebe484aeae79cd1628533c2775efad838062153eccc3a5393a0d465eff1a25cc125e5cca2956570d5406d43255d3f7bde283e5fdf80ff2c3f
SSDEEP

12288:RHb4U3KbApYn2i8DlPvKxA9yHJ85caW4cf2nOdbDxUmM9l9Qq9:tbrDpTDdSIyKn+f2nOdb9+F9

Score

N/A

Malware Config

Signatures

Files

e472b696ec89d0d6215c0d21304408a2b9a1257727c971279103dda68738592a.rar
.rar
documents.lnk
.lnk
starkam.dll
.dll windows x64

930a73823b772200e07dc9059c7aca8f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

DdeCreateStringHandleW
GetComboBoxInfo
RemovePropW
GetDCEx
SetMenuItemInfoW
DestroyMenu
CheckRadioButton

shlwapi

ord157
wnsprintfA
StrTrimW
StrStrW
StrRChrA
StrCmpNW
StrChrW

Exports

Exports

PluginInit
QUqs2szkHhn
TOIX1X3U
rdRTaDIC
sgNkAYAvRL9
xWW5QM

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 822KB - Virtual size: 821KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy