ta578[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

ta578/documents.lnk

windows7_x64

ta578/documents.lnk

windows10-2004_x64

ta578/r7kom.dll

windows7_x64

ta578/r7kom.dll

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ta578/documents.lnk

Resource

win7-20220414-en

icedid 3568430872 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ta578/documents.lnk

Resource

win10v2004-20220414-en

icedid 3568430872 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

ta578/r7kom.dll

Resource

win7-20220414-en

icedid 3568430872 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

ta578/r7kom.dll

Resource

win10v2004-20220414-en

icedid 3568430872 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

ta578.zip
Size

256KB
MD5

45d2816df1b3db1c6132d9a0936532cd
SHA1

f747de13ddd1aa298df8bc895c19f3e978fc502a
SHA256

653ce0a5a10034f67ee8b532c0dceff339cdabe1cef35633cface24b124b6688
SHA512

79e190e74d538c469693fd6e7b78b40d970edb983f40534ba4e29a682cd8197b272a9b517e0846f72a4e5b4c560b148bcfbc0837881c1d4eba1abf76aebcfd9b
SSDEEP

6144:RA3ix1d4wHRucLMwSUkcgMCXV2LwrmXB141lt6VkuY+UyhgZm:J4ERhLMzUnghXV41XB1bKTKUm

Score

N/A

Malware Config

Signatures

Files

ta578.zip
.zip
ta578/documents.lnk
.lnk
ta578/r7kom.dll
.dll windows x64

878ef37663bbb5b9208245879ee2536f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

gdi32

GetBrushOrgEx
GetCharWidthA
GetFontData
GetNearestColor
ExtCreatePen
CreatePolygonRgn
AddFontResourceA

ole32

CoQueryProxyBlanket
CoTaskMemFree
SNB_UserSize
StgOpenPropStg
OleFlushClipboard
CoUnmarshalHresult

Exports

Exports

A2deA1C2oQ
A5jqHo
ADO1pCniBQ
BiW1Xu
GYusdknsa
IR9NF1VovrO
NTgsRhwLe
RkDtyya
SHFU3Ve
TYVS1R
dG03Ck8
dh93JItPGc
efaouVm2N
fhupqAD7HP4
n0qvDyrtZ
yExMDrqs0s3

Sections

.text
Size: 448KB - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy