FIVEMDDOS_1-main[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

FIVEMDDOS_1-main.zip
Size

2.9MB
MD5

0cbae017d2fd0d73d762f500a95cdc20
SHA1

a665d3f434147877e62e7831f16e99d5257063cf
SHA256

8e89cd4ad298a20b971bb3d57806ea66f74300206eb97cf48e38ed648e72b869
SHA512

87f8440c22277b26acb0e1aa693d14f8252bba584c2a749bbf0cd75410c94553933aacb2ae00489fbd23654e11fdc25af1371c861ff81e10b891a3f905635bff
SSDEEP

49152:LzAIok1Q7ZOnRavoGdjpTu6Z5lrJ2tOgOyfOFkYMKozgjfr6ETi6bKcKJd4p:P9lQ4nRav31Bu69rg0nyfOCZru/0d2

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack002/Fivem DDoS/DDOS.asi
unpack002/Fivem DDoS/Fivem DDoS.exe

Files

FIVEMDDOS_1-main.zip
.zip
FIVEMDDOS_1-main/.gitignore
FIVEMDDOS_1-main/Fivem DDoS.rar
.rar
Fivem DDoS/DDOS.asi
.dll windows x64

3493fa99424d8f52b0b855ef929364b1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

scripthookv

?keyboardHandlerUnregister@@YAXP6AXKGEHHHH@Z@Z
?scriptUnregister@@YAXPEAUHINSTANCE__@@@Z
?keyboardHandlerRegister@@YAXP6AXKGEHHHH@Z@Z
?scriptWait@@YAXK@Z
?scriptRegister@@YAXPEAUHINSTANCE__@@P6AXXZ@Z

kernel32

GetCurrentProcessId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
DisableThreadLibraryCalls
DeleteFiber
CreateFiber
SwitchToFiber
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
Sleep
IsDebuggerPresent

user32

GetAsyncKeyState

vcruntime140

__C_specific_handler
__std_type_info_destroy_list
__FrameUnwindFilter
memset

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
abort
_initialize_onexit_table

mscoree

_CorDllMain

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nep
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Fivem DDoS/FIVEM.ini
Fivem DDoS/Fivem DDoS.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Fivem DDoS/Help.txt
Fivem DDoS/IP SERVER.txt
FIVEMDDOS_1-main/LICENSE
FIVEMDDOS_1-main/README.md

Sharing

General

Malware Config

Signatures

Files

3493fa99424d8f52b0b855ef929364b1

Headers

DLL Characteristics

File Characteristics

Imports

scripthookv

kernel32

user32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

mscoree

Sections

.text Size: 47KB - Virtual size: 46KB

.nep Size: 512B - Virtual size: 80B

.rdata Size: 94KB - Virtual size: 93KB

.data Size: 512B - Virtual size: 928B

.pdata Size: 512B - Virtual size: 420B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 40B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rsrc Size: 56KB - Virtual size: 56KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 47KB - Virtual size: 46KB

.nep
Size: 512B - Virtual size: 80B

.rdata
Size: 94KB - Virtual size: 93KB

.data
Size: 512B - Virtual size: 928B

.pdata
Size: 512B - Virtual size: 420B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 40B

.text
Size: 2.8MB - Virtual size: 2.8MB

.rsrc
Size: 56KB - Virtual size: 56KB

.reloc
Size: 512B - Virtual size: 12B