Static task
static1
Behavioral task
behavioral1
Sample
GD_Cheat_Installer.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
GD_Cheat_Installer.exe
Resource
win10-20230703-en
General
-
Target
GD_Cheat_Installer.exe
-
Size
165KB
-
MD5
5d12fd4fbf0def4c86a934240774f922
-
SHA1
733520c5f0e2c0a2ee7914a48ad000e954166cfd
-
SHA256
a341b3bc32bc729be4702f4dc06582aaa653c8d90d238b804810230ea67d2da5
-
SHA512
b6e015b4c0eece87862325cf0fc5d3aa17c5e1d458fec0c4c25dce79a13c54d346f6ce3c634c1fd4845369fe5774b5f80d65cd14a8159d28f88c4dd05c0834aa
-
SSDEEP
3072:NFuQqryEdHOaKk1GvUD9ZorwneWmBJtONHTbg6C9cleWsZfqfY3F:3CrXuJM1BekRqtiHg6Ecd8fqg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource GD_Cheat_Installer.exe
Files
-
GD_Cheat_Installer.exe.exe windows x86
Password: ms
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 163KB - Virtual size: 162KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ