Zeip[.]dll | Triage

Submit
Reports

Overview

overview

Static

static

Zeip.dll

windows7-x64

Zeip.dll

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

Zeip.dll

Resource

win7-20221111-en

gozi 20005 banker isfb trojan

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Zeip.dll

Resource

win10v2004-20220812-en

gozi 20005 banker isfb trojan

windows10-2004-x64

3 signatures

150 seconds

General

Target

Zeip.dll
Size

592KB
MD5

85fa54c2a97ad3a1f8bd64af62450511
SHA1

db92c0a81e8b27d222607e093ccc9d00485db119
SHA256

e609894b274a6c42e971e8082af8fd167ade4aef5d1a3816d5acea04839f0b35
SHA512

6c6faba5f566e3c383d676c736319a7a70138070b0d9771727a1c7756718a4add05db8a7c3a5b038b9269a0ecb14434872516912faea8e2479729a192f9a4b4b
SSDEEP

12288:cysmuJC4fktsdyjJGL44Clz8JwsWydYo9NRl:cT7IoyjXTKdlnz

Score

N/A

Malware Config

Signatures

Files

Zeip.dll
.dll windows x86

78b4b07ec49eab1076c53a1a1cf86078

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObjectEx
GetBinaryTypeW
GetModuleFileNameW
CloseHandle
GetCurrentThreadId

oleaut32

GetRecordInfoFromGuids

powrprof

ReadPwrScheme

user32

UpdateWindow
SystemParametersInfoW
ChangeDisplaySettingsW

setupapi

SetupPromptForDiskW

gdi32

SetMapperFlags

msvcrt

memset

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 476KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy