Card#7672[.]iso | Triage

Submit
Reports

Overview

overview

Static

static

CardS.lnk

windows7-x64

3

CardS.lnk

windows10-2004-x64

3

anticipati...ard.js

windows7-x64

3

anticipati...ard.js

windows10-2004-x64

1

anticipati...ng.dll

windows7-x64

anticipati...ng.dll

windows10-2004-x64

anticipati...le.cmd

windows7-x64

1

anticipati...le.cmd

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

CardS.lnk

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

CardS.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

anticipations/reginaOnward.js

Resource

win7-20220901-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

anticipations/reginaOnward.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

anticipations/shirking.dll

Resource

win7-20220812-en

qakbot bb 1664358901 banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

anticipations/shirking.dll

Resource

win10v2004-20220901-en

qakbot bb 1664358901 banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral7

Sample

anticipations/sodomyDiminishable.cmd

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

anticipations/sodomyDiminishable.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

Card#7672.iso
Size

756KB
MD5

3e068ef6861280cf35f8f6464e3b2139
SHA1

1d9a9298f3027bbe03b8154518f2914745e880ed
SHA256

f2a705ce8b0e275ef80902a8c7a3dc00723ee54957d7665e78b3a9e202b04eec
SHA512

84b01f8ace4e33455cfd6d2f512d026ec1acc6f725370f28c58d9faf6b325852aee6b1f0eb835b4b66e7eb01a64705e842bc2c6e5bb244e44bd04a59742ce039
SSDEEP

12288:+ieL1vc1PdFjpmw5qS6xnGWvE/NIg5UT+QD1lNMAxH:l81IFnqnvE/5w9MW

Score

N/A

Malware Config

Signatures

Files

Card#7672.iso
.iso .js
CardS.lnk
.lnk
anticipations/reginaOnward.js
.js
anticipations/shirking.db
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 365KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
anticipations/sodomyDiminishable.cmd

© 2018-2025

Terms | Privacy