ta578_zippediso[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

ta578_zipp...ts.lnk

windows7_x64

ta578_zipp...ts.lnk

windows10-2004_x64

ta578_zipp...om.dll

windows7_x64

ta578_zipp...om.dll

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

ta578_zippediso/documents.lnk

Resource

win7-20220414-en

icedid 3568430872 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ta578_zippediso/documents.lnk

Resource

win10v2004-20220414-en

icedid 3568430872 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

ta578_zippediso/r7kom.dll

Resource

win7-20220414-en

icedid 3568430872 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

ta578_zippediso/r7kom.dll

Resource

win10v2004-20220414-en

icedid 3568430872 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

ta578_zippediso.zip
Size

256KB
MD5

8a2580d3666efe34c52bf7e7f31857ed
SHA1

07493998e57cc68e3e9d56f57bd1ff8a49884dd9
SHA256

1ce62ff9dcbc297732a395d266e75749825fd9fbf03debee1762ee4c17a40ebf
SHA512

e720750644e680ce7da90347f1e5e0c024b61aa1a4a7445a98befb3ead24c5da3a104b27e9bc8b01d931cd93cf317251883caa8963b1b3dd79b7fa0a7635e2f6
SSDEEP

6144:L/JceUYL6d8snJ4vP3usd/g123ZKrHoK3bwIJ5rNFcmHKmjzeN:L/WeUYfWJ4Hu0/FKrVcI5rNFtxjzeN

Score

N/A

Malware Config

Signatures

Files

ta578_zippediso.zip
.zip
ta578_zippediso/documents.lnk
.lnk
ta578_zippediso/r7kom.dll
.dll windows x64

878ef37663bbb5b9208245879ee2536f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

gdi32

GetBrushOrgEx
GetCharWidthA
GetFontData
GetNearestColor
ExtCreatePen
CreatePolygonRgn
AddFontResourceA

ole32

CoQueryProxyBlanket
CoTaskMemFree
SNB_UserSize
StgOpenPropStg
OleFlushClipboard
CoUnmarshalHresult

Exports

Exports

A2deA1C2oQ
A5jqHo
ADO1pCniBQ
BiW1Xu
GYusdknsa
IR9NF1VovrO
NTgsRhwLe
RkDtyya
SHFU3Ve
TYVS1R
dG03Ck8
dh93JItPGc
efaouVm2N
fhupqAD7HP4
n0qvDyrtZ
yExMDrqs0s3

Sections

.text
Size: 448KB - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy