s4pesa[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

s4pesa/documents.lnk

windows7_x64

s4pesa/documents.lnk

windows10-2004_x64

s4pesa/s4pesa.dll

windows7_x64

s4pesa/s4pesa.dll

windows10-2004_x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

s4pesa/documents.lnk

Resource

win7-20220414-en

icedid 3652318967 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

s4pesa/documents.lnk

Resource

win10v2004-20220414-en

icedid 3652318967 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

s4pesa/s4pesa.dll

Resource

win7-20220414-en

icedid 3652318967 banker loader suricata trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral4

Sample

s4pesa/s4pesa.dll

Resource

win10v2004-20220414-en

icedid 3652318967 banker loader suricata trojan

windows10-2004_x64

0 signatures

0 seconds

General

Target

s4pesa.zip
Size

412KB
MD5

f9590e5b42490a33415244b20f239f88
SHA1

cdbf4da9663b91cdb9b7d8cc4dc85b1c8fdc1b7b
SHA256

1cb625ae9478f646f53fd2d807d14073803b9ca75d46656d4937d94f4b4d36a9
SHA512

790d5b05e66e6e59adce9286e5a2a6c96c893f0a18b018e691643ea5cf7cd77e35232c476f54278c07689e191d9c100a660427ce0ac38fe861e88d9256d8b20c
SSDEEP

12288:VxmQYBOo6jsTKpj6VnSSwghiks7GSrPrYl:VzYB1hGHghiksaAPsl

Score

N/A

Malware Config

Signatures

Files

s4pesa.zip
.zip
s4pesa/documents.lnk
.lnk
s4pesa/s4pesa.dll
.dll windows x64

0c386dcb6969524b143d3607f3fff6cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateDialogIndirectParamA
DrawStateA
InsertMenuW
DrawMenuBar
DdeEnableCallback
FindWindowW

imm32

ImmConfigureIMEW
ImmGetCompositionFontW
ImmGetConversionStatus
ImmEnumRegisterWordA

usp10

ScriptGetCMap
ScriptGetFontProperties
ScriptStringXtoCP

ole32

CoGetClassObject
WriteClassStm
CoRegisterInitializeSpy
CoTreatAsClass
HMENU_UserMarshal
OleCreateLink
OleCreateFromFile
OleRegGetMiscStatus

Exports

Exports

Hyuasbbjhas
S6CSff9
Z1a0oYSm6
eEranvp
hp6pnYlHiJ
qFYbuL

Sections

.text
Size: 729KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy