Desktop[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

Contract.lnk

windows7-x64

3

Contract.lnk

windows10-2004-x64

3

unbelt/jamaican.dll

windows7-x64

unbelt/jamaican.dll

windows10-2004-x64

unbelt/spa...ly.cmd

windows7-x64

1

unbelt/spa...ly.cmd

windows10-2004-x64

1

unbelt/wea...ded.js

windows7-x64

3

unbelt/wea...ded.js

windows10-2004-x64

1

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Contract.lnk

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

Contract.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

unbelt/jamaican.dll

Resource

win7-20220812-en

qakbot bb 1663774884 banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

unbelt/jamaican.dll

Resource

win10v2004-20220901-en

qakbot bb 1663774884 banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral5

Sample

unbelt/spatSinglehandedly.cmd

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

unbelt/spatSinglehandedly.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

unbelt/weathercockUnfolded.js

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral8

Sample

unbelt/weathercockUnfolded.js

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

Desktop.zip
Size

454KB
MD5

73b98bb90b1690fe47be8066a8a8dc5f
SHA1

839905aface04a27007b9edba8ee21577cfc5d54
SHA256

6101db66b6f6ff3e2dde06dbb36ff46225bb7e8ec090e5cfc89bd9bdd7b83c57
SHA512

4e9ab7e8eb57973a7c5a13308a572a7919b3ba6b4760cda40e637b5261a326f85f67aacf738c5862853035e8c9adbac11c569ce1d7235c1ed63314e4198e0ff4
SSDEEP

12288:fnWqj5dvHenWKkP8b+rq++D2ashC0WDqkLMarFEk:ftd3KkA+HhpqBoarFEk

Score

N/A

Malware Config

Signatures

Files

Desktop.zip
.zip
Contract.lnk
.lnk
fireman/fodder.txt
unbelt/eyelid.png
.png
unbelt/jamaican.db
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 488KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 300KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
unbelt/spatSinglehandedly.cmd
unbelt/weathercockUnfolded.js
.js

© 2018-2024

Terms | Privacy