General

  • Target

    PID.Key.Checker.zip

  • Size

    9.8MB

  • MD5

    d9ce6a2a781ad9f9a8af3ba4be5b6a97

  • SHA1

    af930244881612133104d8a717242542c739f44a

  • SHA256

    99262ab91de9e9ddcab93e1f3f67cf356cbdb11bff959a05a51abbe1562f2366

  • SHA512

    d24ec5d172528585a56f9f9fc609bd31b0d5552bf671ea6fb28a29c61caa9c4cbd94415a80cc4417672cf11425b86d15de03e038ddc5fca832cc707e6e152608

  • SSDEEP

    196608:ZurEAMcmPIaPhnCxylwa+0YAmH+BI5/kIhEHR+IfMlUBcf0+DgagAos0apc8:Zur9MIqqtH++9ex7fMlUY0+7tS8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • PID.Key.Checker.zip
    .zip
  • PID Key Checker/AutomaticUpdater.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • PID Key Checker/PID Key Checker.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • PID Key Checker/appver.dat
  • PID Key Checker/block.dat
  • PID Key Checker/client.wyc
    .zip
  • iuclient.iuc
  • s.png
    .png
  • t.png
    .png
  • PID Key Checker/data/10 Pre/10036/pkeyconfig_win10_10036-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10036/pkeyconfig_win10_10036.xrm-ms
  • PID Key Checker/data/10 Pre/10041/pkeyconfig_win10_10041-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10041/pkeyconfig_win10_10041.xrm-ms
  • PID Key Checker/data/10 Pre/10049/pkeyconfig_win10_10049-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10049/pkeyconfig_win10_10049.xrm-ms
  • PID Key Checker/data/10 Pre/10051/pkeyconfig_win10_10051-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10051/pkeyconfig_win10_10051.xrm-ms
  • PID Key Checker/data/10 Pre/10061/pkeyconfig_win10_10061-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10061/pkeyconfig_win10_10061.xrm-ms
  • PID Key Checker/data/10 Pre/10074/pkeyconfig_win10_10074-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10074/pkeyconfig_win10_10074.xrm-ms
  • PID Key Checker/data/10 Pre/10122/pkeyconfig_win10_10122-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10122/pkeyconfig_win10_10122.xrm-ms
  • PID Key Checker/data/10 Pre/10130/pkeyconfig_win10_10130-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10130/pkeyconfig_win10_10130.xrm-ms
  • PID Key Checker/data/10 Pre/10135/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10135/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/10135/pkeyconfig_win10_10135-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10135/pkeyconfig_win10_10135.xrm-ms
  • PID Key Checker/data/10 Pre/10147/pkeyconfig_win10_10147-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10147/pkeyconfig_win10_10147.xrm-ms
  • PID Key Checker/data/10 Pre/10151/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10151/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/10151/pkeyconfig_win10_10151-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10151/pkeyconfig_win10_10151.xrm-ms
  • PID Key Checker/data/10 Pre/10158/pkeyconfig_win10_10158-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10158/pkeyconfig_win10_10158.xrm-ms.xrm-ms
  • PID Key Checker/data/10 Pre/10159/pkeyconfig_win10_10159-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10159/pkeyconfig_win10_10159.xrm-ms
  • PID Key Checker/data/10 Pre/10162/pkeyconfig_win10_10162-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10162/pkeyconfig_win10_10162.xrm-ms
  • PID Key Checker/data/10 Pre/10166/pkeyconfig_win10_10166 by Hoaibao.xrm-ms
  • PID Key Checker/data/10 Pre/10166/pkeyconfig_win10_10166-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10166/pkeyconfig_win10_10166.xrm-ms
  • PID Key Checker/data/10 Pre/10176/pkeyconfig_win10_10176-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/10176/pkeyconfig_win10_10176.xrm-ms
  • PID Key Checker/data/10 Pre/10Pre.txt
  • PID Key Checker/data/10 Pre/14352/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/14352/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/10 Pre/14352/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/14361/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/14361/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/10 Pre/14361/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/14383/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/14383/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/14383/product.ini
  • PID Key Checker/data/10 Pre/14385/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/14385/pkeyconfig.xrm-ms
  • PID Key Checker/data/10 Pre/9841/pkeyconfig_win10_9841-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/9841/pkeyconfig_win10_9841.xrm-ms
  • PID Key Checker/data/10 Pre/9860/pkeyconfig_win10_9860-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/9860/pkeyconfig_win10_9860.xrm-ms
  • PID Key Checker/data/10 Pre/9879/pkeyconfig_win10_9879-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/9879/pkeyconfig_win10_9879.xrm-ms
  • PID Key Checker/data/10 Pre/9926/pkeyconfig_win10_9926-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/9926/pkeyconfig_win10_9926.xrm-ms
  • PID Key Checker/data/10 Pre/pkconfig_winNext-csvlk.xrm-ms
  • PID Key Checker/data/10 Pre/pkconfig_winNext.xrm-ms
  • PID Key Checker/data/10 RTM/10240/pkeyconfig_win10_10240-csvlk.xrm-ms
  • PID Key Checker/data/10 RTM/10240/pkeyconfig_win10_10240.xrm-ms
  • PID Key Checker/data/10 RTM/10586/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/10 RTM/10586/pkeyconfig_win10_10586-csvlk.xrm-ms
  • PID Key Checker/data/10 RTM/10586/pkeyconfig_win10_10586.xrm-ms
  • PID Key Checker/data/10 RTM/15063/win10 15063 CSLVK.xrm-ms
  • PID Key Checker/data/10 RTM/15063/win10 15063.xrm-ms
  • PID Key Checker/data/10 RTM/17134/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/10 RTM/17134/pkeyconfig_win10_17134-csvlk.xrm-ms
  • PID Key Checker/data/10 RTM/17134/pkeyconfig_win10_17134.xrm-ms
  • PID Key Checker/data/7.0/pkconfig_win7.xrm-ms
  • PID Key Checker/data/7.0/pkconfig_win7x.xrm-ms
  • PID Key Checker/data/8 CP/pkeyconfig_win8CP-csvlk.xrm-ms
  • PID Key Checker/data/8 CP/pkeyconfig_win8CP.xrm-ms
  • PID Key Checker/data/8 DP/pkeyconfig_win8DP-csvlk.xrm-ms
  • PID Key Checker/data/8 DP/pkeyconfig_win8DP.xrm-ms
  • PID Key Checker/data/8.0/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/8.0/pkeyconfig.xrm-ms
  • PID Key Checker/data/8.1 Pre/pkeyconfig_win8.1_9431-csvlk.xrm-ms
  • PID Key Checker/data/8.1 Pre/pkeyconfig_win8.1_9431.xrm-ms
  • PID Key Checker/data/8.1/pkconfig_win8.1-csvlk.xrm-ms
  • PID Key Checker/data/8.1/pkconfig_win8.1.xrm-ms
  • PID Key Checker/data/8.1/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/8.1/pkeyconfig.xrm-ms
  • PID Key Checker/data/DCS/CrmPKConfig_dynamics_crm_server_2011.xml
  • PID Key Checker/data/DCS/CrmRtm6PKConfig_dynamics_crm_server_2013.xml
  • PID Key Checker/data/DCS/CrmRtm7PKConfig_dynamics_crm_server_2015.xml
  • PID Key Checker/data/DCS/path.txt
  • PID Key Checker/data/Emb 8/pkconfig_winemb8.xrm-ms
  • PID Key Checker/data/Emb 8/pkeyconfig_Windows_Embedded_8_Standard.xrm-ms
  • PID Key Checker/data/Emb 8/pkeyconfig_Windows_Embedded_8_Standard_Toolkit.xrm-ms
  • PID Key Checker/data/Emb_Stan7/pkeyconfig_emb-sta.xrm-ms
  • PID Key Checker/data/Exchange Server/ProductKeyConfig_exchange server 2010.xml
  • PID Key Checker/data/Exchange Server/ProductKeyConfig_exchange server 2013.xml
  • PID Key Checker/data/Exchange Server/Productkeyconfig_exchanger server 2016.xml
  • PID Key Checker/data/Exchange Server/productkeyconfig2013.xml
  • PID Key Checker/data/Forefront 2010/PKConfigTMG.xml
  • PID Key Checker/data/Forefront 2010/PKeyConfigExchange.xml
  • PID Key Checker/data/Forefront 2010/PKeyConfigSharepoint.xml
  • PID Key Checker/data/PosReady7/pkconfig_winPosReady7.xrm-ms
  • PID Key Checker/data/S2013Ex/productkeyconfig.xml
  • PID Key Checker/data/SQL/pkeyconfig-sql2012.xrm-ms
  • PID Key Checker/data/SQL/pkeyconfig-sql2014.xrm-ms
  • PID Key Checker/data/SQL/pkeyconfig-sql2016.xml
  • PID Key Checker/data/SQL/pkeyconfig-sql2017.xml
  • PID Key Checker/data/Settings.ini
  • PID Key Checker/data/Sharepoint-Project-Office Web Svr/pkeyconfig_project-sharepoint-office web apps svr 2010.xrm-ms
  • PID Key Checker/data/Sharepoint-Project-Office Web Svr/pkeyconfig_project-sharepoint-office web apps svr 2013.xrm-ms
  • PID Key Checker/data/Sharepoint-Project-Office Web Svr/sharepoint2016.xrm-ms
  • PID Key Checker/data/System Center/PKConfig_system_center_2012.xml
  • PID Key Checker/data/System Center/PkConfig_system_center_DPM_2010.xml
  • PID Key Checker/data/System Center/VMMPKConfig_Essentials_2010.xml
  • PID Key Checker/data/ThinPC/pkconfig_winThinPC.xrm-ms
  • PID Key Checker/data/VS/vs2010.xrm-ms
  • PID Key Checker/data/VS/vs2012.xrm-ms
  • PID Key Checker/data/VS/vs2013.xrm-ms
  • PID Key Checker/data/VS/vs2015.xrm-ms
  • PID Key Checker/data/VS/vs2015rc.xrm-ms
  • PID Key Checker/data/VS/vs2017.xrm-ms
  • PID Key Checker/data/Vista/pkconfig_vista _6.0.6002.18005.xrm-ms
  • PID Key Checker/data/Vista/pkconfig_vista.xrm-ms
  • PID Key Checker/data/Vista/pkeyconfig_6.0.6000.16386.xrm-ms
  • PID Key Checker/data/Vista/pkeyconfig_6.0.6001.18000.xrm-ms
  • PID Key Checker/data/WinServer/2022/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/WinServer/2022/pkeyconfig.xrm-ms
  • PID Key Checker/data/Windows 11/pkeyconfig-csvlk.xrm-ms
  • PID Key Checker/data/Windows 11/pkeyconfig-downlevel.xrm-ms
  • PID Key Checker/data/Windows 11/pkeyconfig.xrm-ms
  • PID Key Checker/data/base.dat
    .rar
  • PID Key Checker/data/base.xml
  • PID Key Checker/data/o14-15-16-19-21/officeonline2016.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkconfig_Office15Client.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkconfig_Office15KMSHost.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkconfig_office14.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkconfig_office15.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkeyconfig-Office16KMSHost.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkeyconfig-office-kmshost.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkeyconfig-office16Client.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkeyconfig-office19.xrm-ms
  • PID Key Checker/data/o14-15-16-19-21/pkeyconfig-office21.xrm-ms
  • PID Key Checker/data/other/smallbussines2011.xrm-ms
  • PID Key Checker/pidgenx.dll
    .dll windows:10 windows x86 arch:x86

    78d536feebf237b943e2f96ef0d4495a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PID Key Checker/wyUpdate.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Code Sign

    Headers

    Imports

    Sections