K:\Cryptn new 6.5\Cryptn new 6.5\obj\Release\Zeip.pdb
Static task
static1
Behavioral task
behavioral1
Sample
Zeip.exe
Resource
win10-20240404-en
General
-
Target
Zeip.zip
-
Size
6.6MB
-
MD5
5fbd57eca185a1eeff3085861b147318
-
SHA1
4cff5bde98000d4e1979b65310126218407946c0
-
SHA256
0e4c544fb92fdbcbf68f2985161e83e9ce1a5d8b5b91f7e536255503acc33384
-
SHA512
011797517f8be711054a6de3d5149c7cec4f95ed096412337caec652c0ba35501fc289f2d73901e9d8938e173fb4b733106f2bef76c591f077a7af24335c11e8
-
SSDEEP
196608:m7cQfTJp9+T3Qxh838DAGCNJiwtzk+cWf/5E:t4cafDAGUtzGe/5E
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/Zeip.malz
Files
-
Zeip.zip.zip
-
Zeip.malz.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
mscoree
_CorExeMain
Sections
.text Size: 307.9MB - Virtual size: 307.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ