e730c7-Enhanced Native Trainer Update 51[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

e730c7-Enhanced Native Trainer Update 51.zip
Size

7.9MB
MD5

06bbed8e21206b74261d4d3ebc1e1fbe
SHA1

db9a02093f68eba0ddf177be62bf89232f075257
SHA256

ba56d38094d573c89e14ab184cf496aa3e7243daad9afe0d136ac22b55dc0dff
SHA512

42c3c7788a295b40fb34b8f8c1aab36fc00d3b9f92d6d30a23fb640d9185027e12844b5e2c2cc8bfe31344fc1d623ffcf5075ffa9555315de03e2900538b78cf
SSDEEP

196608:mejEifD/9FtV25dpxRDRXygFm1ueYi6r0PZDpoMcffZbCi++b:mbsD/LL25dpxSKcB6UZDdyfgUb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/EnhancedNativeTrainer.asi

Files

e730c7-Enhanced Native Trainer Update 51.zip
.zip
ENT_Readme.rtf
.rtf
Enhanced Native Trainer/ENT_vehicle_previews.ytd
Enhanced Native Trainer/ent-config.xml
.xml
Enhanced Native Trainer/ent_customization.ini
EnhancedNativeTrainer.asi
.dll windows x64

a491762c3a095b28216d3c3e2b5fbf69

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

scripthookv

?getGlobalPtr@@YAPEA_KH@Z
?worldGetAllObjects@@YAHPEAHH@Z
?drawTexture@@YAXHHHHMMMMMMMMMMMM@Z
?scriptRegister@@YAXPEAUHINSTANCE__@@P6AXXZ@Z
?keyboardHandlerRegister@@YAXP6AXKGEHHHH@Z@Z
?keyboardHandlerUnregister@@YAXP6AXKGEHHHH@Z@Z
?scriptUnregister@@YAXP6AXXZ@Z
?getGameVersion@@YA?AW4eGameVersion@@XZ
?worldGetAllPeds@@YAHPEAHH@Z
?worldGetAllVehicles@@YAHPEAHH@Z
?scriptWait@@YAXK@Z
?nativePush64@@YAX_K@Z
?nativeCall@@YAPEA_KXZ
?nativeInit@@YAX_K@Z

kernel32

ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetTimeFormatW
GetTickCount
CloseHandle
CreateThread
GetCurrentProcess
GetModuleHandleA
K32GetModuleInformation
WritePrivateProfileStringA
GetPrivateProfileIntA
Sleep
AreFileApisANSI
ReadFile
TryEnterCriticalSection
HeapCreate
HeapFree
EnterCriticalSection
GetFullPathNameW
WriteFile
GetDiskFreeSpaceW
OutputDebugStringA
LockFile
LeaveCriticalSection
InitializeCriticalSection
SetFilePointer
GetFullPathNameA
SetEndOfFile
UnlockFileEx
GetTempPathW
CreateMutexW
WaitForSingleObject
CreateFileW
GetFileAttributesW
GetCurrentThreadId
UnmapViewOfFile
HeapValidate
HeapSize
MultiByteToWideChar
GetTempPathA
FormatMessageW
GetDiskFreeSpaceA
GetCurrentDirectoryW
GetFileAttributesA
GetFileAttributesExW
OutputDebugStringW
FlushViewOfFile
CreateFileA
LoadLibraryA
WaitForSingleObjectEx
DeleteFileA
DeleteFileW
HeapReAlloc
GetSystemInfo
LoadLibraryW
HeapAlloc
HeapCompact
HeapDestroy
UnlockFile
GetProcAddress
CreateFileMappingA
LocalFree
LockFileEx
GetFileSize
DeleteCriticalSection
GetCurrentProcessId
GetProcessHeap
SystemTimeToFileTime
FreeLibrary
WideCharToMultiByte
GetSystemTimeAsFileTime
GetSystemTime
FormatMessageA
CreateFileMappingW
MapViewOfFile
QueryPerformanceCounter
FlushFileBuffers
CreateDirectoryW
CreateDirectoryA
VirtualProtect
GetModuleFileNameA
GetModuleHandleExW
GetFileSizeEx
SetFilePointerEx
GetDateFormatW
GetStdHandle
WriteConsoleW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetModuleFileNameW
GetEnvironmentStringsW
GetCommandLineW
SetStdHandle
GetLastError
RtlUnwind
ExitProcess
FileTimeToSystemTime
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
FreeLibraryAndExitThread
ExitThread
QueryPerformanceFrequency
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
CreateEventW
GetModuleHandleW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
InitializeCriticalSectionEx
EncodePointer
DecodePointer
LCMapStringEx
GetLocaleInfoEx
GetStringTypeW
CompareStringEx
GetCPInfo
RtlUnwindEx
RtlPcToFileHeader
RaiseException
InterlockedFlushSList
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
FindClose

user32

GetWindowTextA
GetKeyState
GetAsyncKeyState
EnumWindows
GetWindowThreadProcessId
GetClassNameA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

shell32

SHGetKnownFolderPath

ole32

CoUninitialize
CoCreateInstance
OleRun
CoTaskMemFree
CoInitialize

oleaut32

SysAllocStringLen
VariantChangeType
VariantInit
SysFreeString
SysAllocString
VariantClear
GetErrorInfo

shlwapi

PathCombineW

Sections

.text
Size: 10.0MB - Virtual size: 10.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 761KB - Virtual size: 761KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 391KB - Virtual size: 632KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a491762c3a095b28216d3c3e2b5fbf69

Headers

DLL Characteristics

File Characteristics

Imports

scripthookv

kernel32

user32

comdlg32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 10.0MB - Virtual size: 10.0MB

.rdata Size: 761KB - Virtual size: 761KB

.data Size: 391KB - Virtual size: 632KB

.pdata Size: 142KB - Virtual size: 141KB

_RDATA Size: 9KB - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 10.0MB - Virtual size: 10.0MB

.rdata
Size: 761KB - Virtual size: 761KB

.data
Size: 391KB - Virtual size: 632KB

.pdata
Size: 142KB - Virtual size: 141KB

_RDATA
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 18KB - Virtual size: 18KB