8317298498[.]zip | Triage

Submit
Reports

Overview

overview

Static

static

b78da1eba6...11.zip

windows7-x64

1

b78da1eba6...11.zip

windows10-2004-x64

1

REJ.lnk

windows7-x64

3

REJ.lnk

windows10-2004-x64

3

juggles.cmd

windows7-x64

1

juggles.cmd

windows10-2004-x64

1

sag.dll

windows7-x64

sag.dll

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

b78da1eba668f0abe0da971a07aa5f90a1f7e2e378d7af507d4e4110cac64f11.zip

Resource

win7-20220812-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

b78da1eba668f0abe0da971a07aa5f90a1f7e2e378d7af507d4e4110cac64f11.zip

Resource

win10v2004-20220901-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

REJ.lnk

Resource

win7-20220812-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral4

Sample

REJ.lnk

Resource

win10v2004-20220812-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral5

Sample

juggles.cmd

Resource

win7-20220812-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral6

Sample

juggles.cmd

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral7

Sample

sag.dll

Resource

win7-20220812-en

qakbot obama213 1665998932 banker stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral8

Sample

sag.dll

Resource

win10v2004-20220812-en

qakbot obama213 1665998932 banker stealer trojan

windows10-2004-x64

5 signatures

150 seconds

General

Target

8317298498.zip
Size

795KB
MD5

0e84f708e44c26f3f42d5f5d71a0d1bf
SHA1

9d7dfce3004919e73fbe2dbbf09dce570cb0d4b7
SHA256

37b0d2788e35116e4c3591fa1339fe0bfe6f73f4195c39a7a894c51d71de2ff8
SHA512

77b6af53d61f9c3df113f53907ca1790fe9ba8ee9f2f80edefe842926cdd44dc6732a77de69841c71300ad9e4b89dd1e14aeadd01fd3846b8eb7ee70a77ee75f
SSDEEP

12288:OjAkwHsGCs2tWhbi2sk2GDOH8ayJoHe1oBrCX+i9mFvTNG1cdMTNcsEPMNS8BvV+:ThMGItWwy2GD3LZXV9UI1cd1sET

Score

N/A

Malware Config

Signatures

Files

8317298498.zip
.zip

Password: infected
b78da1eba668f0abe0da971a07aa5f90a1f7e2e378d7af507d4e4110cac64f11
.zip
REJ.lnk
.lnk
juggles.cmd
.cmd .vbs
sag.dat
.dll windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 304KB - Virtual size: 304KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy