Static task
static1
General
-
Target
ArchiveFix.rar
-
Size
902KB
-
MD5
6dd05ce95756fb0cf96fcc8c70e7ab12
-
SHA1
ec64deb843a3923ffee01b56603dfe7c76d40553
-
SHA256
dc3109369e13cf6a977cbb95bda8299e7c87bf6af8ed744145b46e1f0577c7f6
-
SHA512
3c308196b0ae627648758d500ff2d2ba4a98f2bdf56b065eb04759a4b0e5ce26185532195949b9ce19be4d6eb3618f2cbe91dfa1afef4f907d18ec19e208ea4b
-
SSDEEP
24576:k2BKwYm7DHTZ1z8eqEZddwjbQOMvbBTtOiZ3ihR1rIy:k2BKwYCPX8EXajbQLjBTzFCtIy
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/ArchiveFix.exe
Files
-
ArchiveFix.rar.rar
-
ArchiveFix.exe.exe windows x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 302KB - Virtual size: 302KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 363KB - Virtual size: 363KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
gtav_aes_key.dat
-
gtav_hash_lut.dat
-
gtav_ng_decrypt_tables.dat
-
gtav_ng_encrypt_luts.dat
-
gtav_ng_encrypt_tables.dat
-
gtav_ng_key.dat