01e6bc6780c177221921e690cdbca3b6a0d03db13346482ad93606e7f14bf9a9

General

Target

01e6bc6780c177221921e690cdbca3b6a0d03db13346482ad93606e7f14bf9a9
Size

2.6MB
MD5

09c4080318f8ddd38a2bbfb5b50c5141
SHA1

dc3e7cf64b802cf378e30e692845d2ce4a7a8727
SHA256

01e6bc6780c177221921e690cdbca3b6a0d03db13346482ad93606e7f14bf9a9
SHA512

be4e9c50a6ff53b2dbf7289d9e5aa0ab19ea644039ab0ea1fb5fa7844ae27d6603942f050b31652cc74436870813d306a6dd162e1d2a97e1aa89fe2341152533
SSDEEP

49152:ax9+uxrrRX7j9FztHK/FZRsIPnyLEgOYpGi4HqvivUTwFTvDU:axbfRrj9tFAXRHnyLE555KaBU

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BepInEx/plugins/DaXiaTrainer/DaXiaTrainer.dll
unpack001/BepInEx/plugins/DaXiaTrainer/UniverseLib.IL2CPP.dll

Files

01e6bc6780c177221921e690cdbca3b6a0d03db13346482ad93606e7f14bf9a9
.zip
BepInEx/plugins/DaXiaTrainer/DaXiaTrainer.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 892B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BepInEx/plugins/DaXiaTrainer/UniverseLib.IL2CPP.dll
.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 53KB - Virtual size: 52KB

.rsrc Size: 1024B - Virtual size: 892B

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rsrc Size: 1024B - Virtual size: 924B

.reloc Size: 512B - Virtual size: 12B

.text
Size: 53KB - Virtual size: 52KB

.rsrc
Size: 1024B - Virtual size: 892B

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 2.7MB - Virtual size: 2.7MB

.rsrc
Size: 1024B - Virtual size: 924B

.reloc
Size: 512B - Virtual size: 12B