Card#6218[.]iso | Triage

Submit
Reports

Overview

overview

Static

static

CardS.lnk

windows7-x64

3

CardS.lnk

windows10-2004-x64

3

brickwork/...ans.js

windows7-x64

3

brickwork/...ans.js

windows10-2004-x64

1

brickwork/...is.dll

windows7-x64

brickwork/...is.dll

windows10-2004-x64

brickwork/...te.cmd

windows7-x64

1

brickwork/...te.cmd

windows10-2004-x64

1

Resubmissions

03/10/2022, 18:20

221003-wy3sdsaehq 10

30/09/2022, 16:25

220930-twx31seah6 10

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

CardS.lnk

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

CardS.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

brickwork/constantineEquestrians.js

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

brickwork/constantineEquestrians.js

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

brickwork/rhinitis.dll

Resource

win7-20220812-en

qakbot banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral6

Sample

brickwork/rhinitis.dll

Resource

win10v2004-20220812-en

qakbot banker stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Behavioral task

behavioral7

Sample

brickwork/scoffersDebate.cmd

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

brickwork/scoffersDebate.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

Card#6218.iso
Size

744KB
MD5

2f832c79b0161734fb1dcd86bdb95409
SHA1

6f0bd5efc97bb63dc0f7d22905332db4b0d66308
SHA256

e72494d58a80a06fdf0ded1abee6bf23091aec41b6ab9ca4e2c37d10a6d0be70
SHA512

e66dc9d11edd15658220621febcb100798c992a82aff49deae9c2fda1dd4537a56ba79d7c01359d95c3879092c0e1b39583154f4ca8d94829f5994b5af7606f5
SSDEEP

12288:XzGUo9tIf1JUFR+NcGW4izhxSsB20HQ+n3VGo9lD0ZoggSVSK7tHs:XzG3QtiRgbWhbLdQG3VGonQo4tHs

Score

N/A

Malware Config

Signatures

Files

Card#6218.iso
.iso .js
CardS.lnk
.lnk
brickwork/constantineEquestrians.js
.js
brickwork/rhinitis.db
.dll regsvr32 windows x86

adb63404f98d8725720dc3b9811d9ace

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
SetEndOfFile
CloseHandle
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
WaitForSingleObject
OpenThread
VirtualAlloc
GetModuleHandleA
GetProcAddress
SwitchToFiber
CreateFiber
ConvertThreadToFiber
CreateFileMappingA
LoadLibraryA
GetTempPathA
CreateActCtxA
ReleaseActCtx
ActivateActCtx
DeactivateActCtx

Exports

Exports

DQFiFa0y
DllRegisterServer

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 293KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
brickwork/scoffersDebate.cmd
brickwork/trawlers.gif

© 2018-2025

Terms | Privacy