zippedISO_20220629[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

documents.lnk

windows7_x64

documents.lnk

windows10-2004_x64

s4pesa.dll

windows7_x64

s4pesa.dll

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

documents.lnk

Resource

win7-20220414-en

icedid 3652318967 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

documents.lnk

Resource

win10v2004-20220414-en

icedid 3652318967 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

s4pesa.dll

Resource

win7-20220414-en

icedid 3652318967 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

s4pesa.dll

Resource

win10v2004-20220414-en

icedid 3652318967 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

zippedISO_20220629.zip
Size

419KB
MD5

56eb5a0b6bf34a0fd5acacfed153ffef
SHA1

2359ad3743a85598f9fe06d94c6e577879ec2600
SHA256

e5451e56bbadaf208e57ce1562edfeeae1f7eae2b6fe8d0a92cf29e48cfafa7c
SHA512

21007e9c612c7a8feff4d0f1cb57c465652caec41bbb07d1b185a783f9539fd874942719bb862e80832a7ea3b71a6b681a84e34f598d3ecb89781ca4e103b307
SSDEEP

12288:0NNEMUhwrByN6jN/JnWyjU8hP53pOyvApJer6/KoaTXOoSSFE:m2iEmNBWyQ0ZHvApJer6/KBTXO3r

Score

N/A

Malware Config

Signatures

Files

zippedISO_20220629.zip
.zip
documents.lnk
.lnk
s4pesa.dll
.dll windows x64

0c386dcb6969524b143d3607f3fff6cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateDialogIndirectParamA
DrawStateA
InsertMenuW
DrawMenuBar
DdeEnableCallback
FindWindowW

imm32

ImmConfigureIMEW
ImmGetCompositionFontW
ImmGetConversionStatus
ImmEnumRegisterWordA

usp10

ScriptGetCMap
ScriptGetFontProperties
ScriptStringXtoCP

ole32

CoGetClassObject
WriteClassStm
CoRegisterInitializeSpy
CoTreatAsClass
HMENU_UserMarshal
OleCreateLink
OleCreateFromFile
OleRegGetMiscStatus

Exports

Exports

Hyuasbbjhas
S6CSff9
Z1a0oYSm6
eEranvp
hp6pnYlHiJ
qFYbuL

Sections

.text
Size: 729KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy