D:\a\deno\deno\target\release\deps\deno.pdb
Static task
static1
1 signatures
General
-
Target
EsqueleSoftware.zip
-
Size
15.5MB
-
MD5
638964cb33f400a8aac30c1a0492a694
-
SHA1
60f4fea32bda0830ca899e56d8c3281514c0962d
-
SHA256
6a457e998d0dfc0cbbd719f95ca5b1118d624a58699b20204805d9458a14f947
-
SHA512
7c7449fe193f6d093a57590c26f8d6ca055dc3ba0aa809012f269a3bbbdfb789af516239a347c97353a921b67343a5db0451edd7cd89c5d3b0cedd19891ca2aa
-
SSDEEP
393216:awYgxbcwUWbQZBkgifRqnlmvihBwxHoTSSqXnj77RwN1iB6VUJT:nLI84BkgifRqE0Bwm+Bnj5waB4WT
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/EsqueleSoftware/EsqueleSoftware.exe
Files
-
EsqueleSoftware.zip.zip
-
EsqueleSoftware/EsqueleSoftware.exe.exe windows:6 windows x64 arch:x64
46a89ffc9a24d216df7631d2c7df5401
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
powrprof
CallNtPowerInformation
iphlpapi
GetAdaptersAddresses
ntdll
NtCancelIoFileEx
RtlPcToFileHeader
RtlUnwindEx
RtlNtStatusToDosError
RtlCaptureStackBackTrace
RtlDeleteFunctionTable
RtlAddFunctionTable
VerSetConditionMask
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
NtCreateFile
NtDeviceIoControlFile
RtlUnwind
bcrypt
BCryptGenRandom
advapi32
SystemFunction036
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
dbghelp
SymGetModuleBase64
SymSetOptions
SymGetLineFromAddr64
SymFromAddr
SymInitialize
SymFunctionTableAccess64
StackWalk64
SymSetSearchPathW
SymGetSearchPathW
kernel32
GetOEMCP
GetACP
IsValidCodePage
MultiByteToWideChar
SetStdHandle
HeapSize
GetFileSizeEx
GetConsoleOutputCP
EnumSystemLocalesW
GetUserDefaultLCID
FindFirstFileExW
SetEndOfFile
GetStringTypeW
MoveFileExW
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetCommandLineA
GetCPInfo
FreeLibraryAndExitThread
ExitThread
SwitchToThread
SetConsoleMode
LeaveCriticalSection
CloseHandle
SetConsoleCursorPosition
lstrlenW
WaitForSingleObject
GetLastError
GetExitCodeProcess
GetCurrentProcessId
GetCommandLineW
GetProcessHeap
HeapFree
AddVectoredExceptionHandler
HeapAlloc
HeapReAlloc
GetStdHandle
GetFileInformationByHandleEx
GetConsoleMode
EnterCriticalSection
Sleep
CreateHardLinkW
DeviceIoControl
ReadFile
TerminateProcess
FreeLibrary
RegisterWaitForSingleObject
SetEnvironmentVariableW
SetErrorMode
SetThreadErrorMode
LoadLibraryW
GetProcAddress
GetEnvironmentStringsW
FreeEnvironmentStringsW
OpenProcess
SetCurrentDirectoryW
GetProcessId
GetConsoleScreenBufferInfo
CreateToolhelp32Snapshot
Process32First
Process32Next
SetFileTime
GetOverlappedResult
WriteFile
CancelIoEx
SetFileCompletionNotificationModes
CreateIoCompletionPort
GetQueuedCompletionStatusEx
PostQueuedCompletionStatus
CreateFileW
CreateSemaphoreW
WaitForSingleObjectEx
ReadDirectoryChangesW
ReleaseSemaphore
CancelIo
GetSystemInfo
GetModuleHandleA
SetFileInformationByHandle
SetHandleInformation
GetConsoleCursorInfo
SetConsoleCursorInfo
ReadConsoleInputW
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
GetFileInformationByHandle
TlsGetValue
TlsSetValue
InitializeCriticalSection
DeleteCriticalSection
GetModuleHandleW
SetLastError
GetEnvironmentVariableW
WriteConsoleW
GetCurrentProcess
GetCurrentThread
ReleaseMutex
GetCurrentDirectoryW
LoadLibraryA
CreateMutexA
TlsAlloc
FormatMessageW
GetTempPathW
GetModuleFileNameW
FlushFileBuffers
DuplicateHandle
SetFilePointerEx
FindNextFileW
CreateDirectoryW
ReadConsoleW
TryEnterCriticalSection
FindFirstFileW
CreateProcessW
CreateNamedPipeW
CreateEventW
WaitForMultipleObjects
ExitProcess
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTimeAsFileTime
FindClose
DeleteFileW
SetEvent
RemoveDirectoryW
SetFileAttributesW
CopyFileExW
CreateThread
GetFinalPathNameByHandleW
UnregisterWaitEx
SetConsoleTextAttribute
GetSystemTimes
GlobalMemoryStatusEx
GetVersionExA
GetTimeZoneInformation
WideCharToMultiByte
GetThreadTimes
GetCurrentThreadId
DeleteFileA
GetTempPathA
GetTempFileNameA
GetFileType
OutputDebugStringA
VerifyVersionInfoW
VirtualAlloc
VirtualFree
IsDebuggerPresent
TlsFree
QueryThreadCycleTime
GetThreadPriority
SetThreadPriority
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
TryAcquireSRWLockExclusive
AcquireSRWLockShared
ReleaseSRWLockShared
VirtualProtect
LoadLibraryExW
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableSRW
InitOnceExecuteOnce
SetUnhandledExceptionFilter
GetNativeSystemInfo
InitializeConditionVariable
OpenThread
SuspendThread
GetThreadContext
ResumeThread
CreateSemaphoreA
ResetEvent
GetModuleHandleExW
EncodePointer
RaiseException
IsProcessorFeaturePresent
GetStartupInfoW
UnhandledExceptionFilter
InitializeSListHead
InitializeCriticalSectionAndSpinCount
ole32
CoTaskMemFree
shell32
SHGetKnownFolderPath
ws2_32
getaddrinfo
freeaddrinfo
WSAStartup
WSACleanup
recvfrom
setsockopt
recv
send
shutdown
WSASend
sendto
getpeername
WSASocketW
getsockname
getsockopt
connect
accept
ioctlsocket
socket
WSAIoctl
WSAGetLastError
listen
bind
closesocket
winmm
timeGetTime
Exports
Exports
CrashForExceptionInNonABICompliantCodeRange
Sections
.text Size: 22.3MB - Virtual size: 22.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 10.5MB - Virtual size: 10.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 80KB - Virtual size: 187KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 882KB - Virtual size: 881KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 131KB - Virtual size: 130KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
EsqueleSoftware/File.txt
-
EsqueleSoftware/Social.txt
-
EsqueleSoftware/a2lja2VhZDBf-free.ico