171ebaf6e9e975313e68ff5d9bc155b8de68a4ba | Triage

Submit
Reports

Overview

overview

Static

static

win10-standard

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

171ebaf6e9e975313e68ff5d9bc155b8de68a4ba.dll

Resource

win10v2004-20220812-en

icedid 3539145315 banker loader trojan

windows10-2004-x64

3 signatures

200 seconds

General

Target

171ebaf6e9e975313e68ff5d9bc155b8de68a4ba
Size

242KB
MD5

d76b51c7be4f4b7f5fd3f273f535e8e8
SHA1

171ebaf6e9e975313e68ff5d9bc155b8de68a4ba
SHA256

0cae01ffecfcb086909dc84463712224d381a40f8908e40053763073fb011b9a
SHA512

2fed24dceadc429438c693dde6502fa22bd397c58dad5bfca80ad586ce0b441718e2f9a0875c3d608ff3ed7a447287789c414eaf8fbe8f82c881fecf84959ca4
SSDEEP

6144:+Y3wWXXYay5YLFLkes3tuiJXwtXibYmFzOyMFKQX+S:j1pPLFAesdx597FIX+

Score

N/A

Malware Config

Signatures

Files

171ebaf6e9e975313e68ff5d9bc155b8de68a4ba
.dll windows x64

c5d8a037d2cfcc03849bfbbc5953e9d8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateAcceleratorTableA
RegisterClassW
GetDialogBaseUnits
DrawStateA
MessageBoxExA

usp10

ScriptString_pLogAttr
ScriptString_pSize
ScriptStringValidate
ScriptSubstituteSingleGlyph

msvfw32

DrawDibStart
ICGetDisplayFormat
DrawDibGetBuffer
DrawDibRealize
ICCompress
DrawDibStop

Exports

Exports

BHTe3LS3IyrMY
CY56LOE
DcHnrFup
ESXolxl2Ao
GuHnATkok8
Hgjhghxghgcxhccxs
O5i9Hx0
PFa4KabcE0lW3j
PssTMm73g4
SDaJZiI1hdq
a2wzbp4O0v2v0
cPlVqSdFruOYjAwh
gJful0CRYk
hNKXe4zvw
i5GuvZqYB
nI8dgyeVwr0N
rewd56X4HUbQ
seWDqH6
yKJLeV
zY4I8b

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy