C1810220229[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

Contract.lnk

windows7-x64

Contract.lnk

windows10-2004-x64

liveried/relic.dll

windows7-x64

liveried/relic.dll

windows10-2004-x64

liveried/s...ng.cmd

windows7-x64

1

liveried/s...ng.cmd

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Contract.lnk

Resource

win7-20220812-en

qakbot bb04 1666265103 banker stealer trojan

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

Contract.lnk

Resource

win10v2004-20220812-en

qakbot bb04 1666265103 banker stealer trojan

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral3

Sample

liveried/relic.dll

Resource

win7-20220812-en

qakbot bb04 1666265103 banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

liveried/relic.dll

Resource

win10v2004-20220812-en

qakbot bb04 1666265103 banker stealer trojan

windows10-2004-x64

5 signatures

150 seconds

Behavioral task

behavioral5

Sample

liveried/simmering.cmd

Resource

win7-20220901-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

liveried/simmering.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

C1810220229.zip
Size

371KB
MD5

5fa1eb69e51904c82b07ecbc89872696
SHA1

5948835b50c954299ed1da993f7a6a9a72289963
SHA256

4a1e77b2acd3e2b53f6f5ec6ffe1ce547b55eb0c356a2134de21b0f9f433756e
SHA512

a84d00786541b56503737d741f2eb85c0bc9ae34f9358315334e08760fc02373d65af60dd3ada7032080df1d71f732c6384219543dfb6ee027184c2373318dd3
SSDEEP

6144:fO7lxtQXzCgE4uj8kHFgiY27U/d60TuYXpJdpM8Ko66rGbo5m9H5nl+MyEpUjl9A:fO7lx6jCN8kH02A/d4Mp5M3+Gs5m9HFf

Score

N/A

Malware Config

Signatures

Files

C1810220229.zip
.zip

Password: NH833
Contract7686.iso
.iso

Password: NH833
Contract.lnk
.lnk
liveried/relic.ssd
.dll windows x86

Password: NH833

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 393KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
liveried/simmering.cmd
.cmd .vbs

© 2018-2025

Terms | Privacy