Public#2154[.]iso | Triage

Submit
Reports

Overview

overview

Static

static

PublicItem.lnk

windows7-x64

3

PublicItem.lnk

windows10-2004-x64

3

democratiz...ry.cmd

windows7-x64

1

democratiz...ry.cmd

windows10-2004-x64

1

democratiz...est.js

windows7-x64

3

democratiz...est.js

windows10-2004-x64

1

democratiz...le.dll

windows7-x64

democratiz...le.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PublicItem.lnk

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

PublicItem.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

democratization/cachedSkullduggery.cmd

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

democratization/cachedSkullduggery.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

democratization/peninsulasBunchiest.js

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral6

Sample

democratization/peninsulasBunchiest.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

democratization/wrestle.dll

Resource

win7-20220812-en

qakbot bb 1663570298 banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

democratization/wrestle.dll

Resource

win10v2004-20220812-en

qakbot bb 1663570298 banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

General

Target

Public#2154.iso
Size

1.1MB
MD5

3105b433d3245f71b464809521426c92
SHA1

0344cc3d718b1d561cc192cd8e7908400eb7538b
SHA256

1e7b28d02a08d5c7268f623c1acd5c2e9b7bc4cb8195a9cd91afd69519789ee9
SHA512

a13a451f692ebb2d440b18f5e7f5476f9b5a679ae2a792db332f78f6c25c370808694770ae1782a43cb60781f381b4dd8400a813084f77ed50355491be73219d
SSDEEP

12288:wDHykY4XA+Tdb0guWIUjoxRxus7grz1yqpn0CgB3gLYFvknxByn5I117KcU4Mxn:wDHykYrCG5b2ofd7grzZ5093QMOQ5iM

Score

N/A

Malware Config

Signatures

Files

Public#2154.iso
.iso
PublicItem.lnk
.lnk
democratization/cachedSkullduggery.cmd
democratization/fertilize.txt
democratization/peninsulasBunchiest.js
.js
democratization/wrestle.db
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 458KB - Virtual size: 458KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 294KB - Virtual size: 294KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy