TA578-IcedID[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

ahol3m.dll

windows7_x64

1

ahol3m.dll

windows10-2004_x64

1

documents.lnk

windows7_x64

documents.lnk

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ahol3m.dll

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ahol3m.dll

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

documents.lnk

Resource

win7-20220414-en

icedid 1328647508 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

documents.lnk

Resource

win10v2004-20220414-en

icedid 1328647508 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

TA578-IcedID.zip
Size

347KB
MD5

31a51cf11039ba7cf1d42eed6ee62b65
SHA1

3b2fbffeb3494f47af5a1d66d920bbb59b04c6fc
SHA256

ce28d57c54d4b5965106d956d3d3c0211c1dd591c881f34f3582775b07dce387
SHA512

94c70984f6d2767930f9d4ac3e5bddfad02d918c1a2054ba891ca3a942857434e1b1856c32e2c42a18900b2e246c2a98e63ac6e247085bbe002f96694d21217f
SSDEEP

6144:Xql2XSCnkEBbha4AyesSG2c/+n+ANbOi0w1RspXtrm9xWez:XLXSCkCpAzsSS/TAJ9b1RYa9xDz

Score

N/A

Malware Config

Signatures

Files

TA578-IcedID.zip
.zip
ahol3m.dll
.dll windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

FsCacG2z
G52tlex
IEUWi3zF8T
IyVg0rZF
LMrBV5d9
PluginInit
SF3NTEhp6Lh
X2M0fxZABxN
aR9X2u
idl4RUlCV
qnPROcQWN
rRxCylztL
y60vuODJnc

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 576KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
documents.lnk
.lnk

© 2018-2024

Terms | Privacy