General

  • Target

    eee.zip

  • Size

    6.2MB

  • MD5

    19a38ed890050f09ecba52bfc333c4e7

  • SHA1

    93cc87629b30839b9015648f32006163a9706690

  • SHA256

    bb034789e31ce1271fe7e9beb5a70096705dee3a3b12fc56711932be7693887f

  • SHA512

    958bacf37ddc725318ed30104a04bffa04df860bb66c3d26750b6cf73e53e038f741a38996362a3fe10f0e9876be9a977416204c01464bb07ccd4f192dc24d3d

  • SSDEEP

    98304:G+kEsLgvPQFJpQ9LwUwDAicSByhBo/Udv46IDtv41BVcPFc0WoywL4rrPNQ:GbEssXQF09LwUX3hm/UNID21rI4u

Score
7/10

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • eee.zip
    .zip
  • Guna.UI.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Onyx Free Crypter.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections