General

  • Target

    RiotCracker_by_B60.zip

  • Size

    513KB

  • MD5

    ce3b33b69933861d8faca5dc5e279325

  • SHA1

    74800ff245bd2a5b693342494acbf1aa26628bdb

  • SHA256

    b99206182eb58236a3a7de278803a6a7c1a5d331d62bcbfb9374bba9702db188

  • SHA512

    2162be320f1dbc872b04bd473e91c2b2553737698007a57416b5cde7cf72723b810588b6f7544096666fdf5a8efa48bedc9b9515e27a6ba882960688a4a3d23a

  • SSDEEP

    12288:vSdbIvli/pQf+2bkGpLiwbPjp+H1eimOysr:vS5Iv0twkIv+1RPysr

Score
7/10

Malware Config

Signatures

  • Obfuscated with Agile.Net obfuscator 1 IoCs

    Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

Files

  • RiotCracker_by_B60.zip
    .zip
  • Colorful.Console.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Riot Cracker.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • TrinitySeal.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • WThreads.dll
    .dll windows x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections