modest-menu_v0[.]9[.]4_[kiddionsmodmenu[.]com]_[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

modest-menu_v0.9.4_[kiddionsmodmenu.com]_.zip
Size

13.6MB
MD5

697406d817dcae75aefe7d321bf1e413
SHA1

07a60548d0ee6e29d64900aea3532969e19e373c
SHA256

2f35cbcd005ecc42b6fb456138c1cc637cb60a8897b6311900e7f66ebf9f0d43
SHA512

3894ab53b90c5206ce1a36118d256ae78695a29e187b973879115ad7fe8735403810f404b125b7524dd56adadb62ca1ba482c545f4fd5f60b9ecfd8e9ee9f6e5
SSDEEP

393216:4g7dZkJzJeS2psP+g81zrlTfPRQVvHr5mP1+tP:RZasOWNf5SL5kCP

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/modest-menu_v0.9.4/modest-menu_protected.exe	themida

Files

modest-menu_v0.9.4_[kiddionsmodmenu.com]_.zip
.zip
modest-menu_v0.9.4/config.json
modest-menu_v0.9.4/modest-menu_protected.exe
.exe windows x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 833KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 68KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 448B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 23KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.imports
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 19.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 12.7MB - Virtual size: 12.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
modest-menu_v0.9.4/scripts/Readme.api
modest-menu_v0.9.4/scripts/demo.lua
modest-menu_v0.9.4/scripts/sirius.lua.example
modest-menu_v0.9.4/scripts/vehicle.lua
modest-menu_v0.9.4/scripts/weapon.lua
modest-menu_v0.9.4/themes.json

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Sections

Size: 833KB - Virtual size: 1.6MB

Size: 68KB - Virtual size: 160KB

Size: 448B - Virtual size: 16KB

Size: 23KB - Virtual size: 34KB

Size: 1KB - Virtual size: 7KB

.imports Size: 1KB - Virtual size: 4KB

.rsrc Size: 34KB - Virtual size: 34KB

.themida Size: - Virtual size: 19.5MB

.boot Size: 12.7MB - Virtual size: 12.7MB

.imports
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 34KB - Virtual size: 34KB

.themida
Size: - Virtual size: 19.5MB

.boot
Size: 12.7MB - Virtual size: 12.7MB