minecraft-c-h-eat-new-world-v102_739453[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

minecraft-c-h-eat-new-world-v102_739453.zip
Size

16.7MB
MD5

ebf659001dfd03a6a38983490113eed3
SHA1

16ba4af06fa9d11d4441f7050a94e1b6304b1031
SHA256

fe460ec86b937252883e0e4a23af9d8b9ad06ea989de9759bc4ccbdc14f4de33
SHA512

b25ede122e4461ede8d25e21a33a77499aa0e21a78afefbf0b8a275d7a5931ef5307cfaa2ee66bd1098ed2cc2254b55ce2a92eb90c3bcd63500595448654446c
SSDEEP

393216:Jevn3TlBxwMN13bGMx5eZbVNEGwDpExudVET4:JqD1GAmepBDE8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/StartSetup_20221.exe

Files

minecraft-c-h-eat-new-world-v102_739453.zip
.zip

Password: 3891
StartSetup_20221.exe
.exe windows:6 windows x86

Password: 3891

19d798cf07fa5059330ffb06e6e76a5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

winspool.drv

DocumentPropertiesW
EnumPrintersW
ClosePrinter
OpenPrinterW
GetDefaultPrinterW

comctl32

ImageList_Create
ImageList_SetOverlayImage
_TrackMouseEvent
ImageList_Destroy
ImageList_DrawIndirect
ImageList_EndDrag
ImageList_SetIconSize
ImageList_BeginDrag
ImageList_DragMove
ImageList_SetImageCount
ImageList_ReplaceIcon
FlatSB_SetScrollInfo
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_GetIcon
FlatSB_SetScrollProp
ImageList_Read
ImageList_LoadImageW
ImageList_DragShowNolock
ImageList_Write
FlatSB_GetScrollPos
ImageList_Add
ImageList_Replace
ImageList_Draw
FlatSB_GetScrollInfo
ImageList_GetImageInfo
ImageList_Copy
ImageList_DragLeave
FlatSB_SetScrollPos
ImageList_DrawEx
ImageList_GetImageCount
InitializeFlatSB
ImageList_Remove
ImageList_DragEnter
ImageList_SetBkColor
ImageList_GetDragImage

shell32

SHAppBarMessage
SHGetFolderPathW
Shell_NotifyIconW
ShellExecuteW
ShellExecuteExW

user32

GetSysColor
DeleteMenu
LoadBitmapW
DrawIcon
GetMessageExtraInfo
SetScrollRange
MsgWaitForMultipleObjects
OffsetRect
SwitchToThisWindow
GetDlgCtrlID
DefFrameProcW
TrackPopupMenu
SetClassLongW
CharUpperBuffW
IsChild
EnumDisplayMonitors
CreatePopupMenu
CreateMenu
GetKeyState
UpdateWindow
ScrollWindow
GetDCEx
ShowOwnedPopups
ShowCaret
GetMonitorInfoW
LoadCursorW
GetCursor
GetIconInfo
GetKeyboardLayoutNameW
TranslateMessage
CharNextW
TranslateMDISysAccel
RedrawWindow
GetClassInfoExW
InvalidateRect
RegisterClassW
EnumChildWindows
PeekMessageA
UnhookWindowsHookEx
SetWindowRgn
DestroyCursor
LoadStringW
IsWindowVisible
AdjustWindowRectEx
MsgWaitForMultipleObjectsEx
DestroyIcon
SetWindowsHookExW
PtInRect
GetDC
GetMenuItemCount
IsRectEmpty
GetSystemMenu
GetKeyNameTextW
GetSubMenu
GetClassNameW
SetCapture
GetClassInfoW
SetActiveWindow
EnumWindows
RemovePropW
GetComboBoxInfo
SetMenuItemInfoW
InflateRect
GetMenuItemInfoW
FillRect
MessageBeep
SetWindowPlacement
GetMessagePos
RegisterWindowMessageW
SetRect
MonitorFromWindow
DrawFrameControl
DrawTextExW
DispatchMessageW
HideCaret
CharLowerW
CreateWindowExW
GetClientRect
MessageBoxW
EnumThreadWindows
GetFocus
GetDesktopWindow
SetClipboardData
DrawEdge
EndPaint
GetMenuState
ValidateRect
FindWindowW
LoadKeyboardLayoutW
DestroyMenu
EnableMenuItem
CallNextHookEx
GetParent
CheckMenuItem
SetPropW
CreateIcon
DestroyWindow
MonitorFromRect
CopyImage
GetLastActivePopup
DrawFocusRect
ReleaseDC
IsDialogMessageA
GetTopWindow
GetMenuItemRect
RemoveMenu
SendMessageW
UnregisterClassW
GetUpdateRect
DefMDIChildProcW
GetWindow
GetCapture
GetScrollRange
IsIconic
GetMenu
CharLowerBuffW
BeginPaint
IsZoomed
MapVirtualKeyW
SetFocus
GetScrollInfo
GetSystemMetrics
DefWindowProcW
InsertMenuItemW
SetWindowLongW
CloseClipboard
GetClipboardData
IsWindowEnabled
SetMenu
SendMessageA
GetClassLongW
SetParent
SetWindowTextW
DrawTextW
GetMenuItemID
CreateIconIndirect
CreateAcceleratorTableW
WindowFromPoint
GetWindowRect
CopyIcon
GetDlgItem
GetForegroundWindow
ShowWindow
IsDialogMessageW
KillTimer
EnumClipboardFormats
GetActiveWindow
InsertMenuW
LoadIconW
EnableWindow
IsClipboardFormatAvailable
DrawIconEx
GetWindowLongW
ClientToScreen
PeekMessageW
EmptyClipboard
SetForegroundWindow
RegisterClipboardFormatW
SystemParametersInfoW
GetCursorPos
OpenClipboard
EndMenu
SetCursor
SetScrollInfo
CharUpperW
MonitorFromPoint
DrawMenuBar
GetWindowPlacement
SetScrollPos
ReleaseCapture
GetKeyboardLayout
GetScrollPos
GetKeyboardState
PostMessageW
GetWindowThreadProcessId
WaitMessage
FindWindowExW
FrameRect
SetCursorPos
PostQuitMessage
GetWindowDC
GetPropW
GetSysColorBrush
MapWindowPoints
CallWindowProcW
DispatchMessageA
ScreenToClient
ShowScrollBar
GetKeyboardLayoutList
EnableScrollBar
SetWindowPos
GetWindowTextW
SetTimer
GetMenuStringW
ActivateKeyboardLayout
IsWindowUnicode
IsWindow

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

oleaut32

SafeArrayPtrOfIndex
VariantCopy
VariantClear
VariantInit
GetErrorInfo
SafeArrayGetUBound
SysAllocStringLen
SafeArrayCreate
SafeArrayGetLBound
VariantChangeType
SysFreeString
SysReAllocStringLen

advapi32

RegQueryValueExW
RegLoadKeyW
RegConnectRegistryW
RegRestoreKeyW
OpenProcessToken
RegCreateKeyExW
GetUserNameW
LookupPrivilegeValueW
RegEnumKeyExW
RegCloseKey
RegFlushKey
RegEnumValueW
RegDeleteValueW
OpenServiceW
RegSaveKeyW
RegReplaceKeyW
RegUnLoadKeyW
RegQueryInfoKeyW
QueryServiceStatus
RegSetValueExW
RegDeleteKeyW
AdjustTokenPrivileges
RegOpenKeyExW
OpenSCManagerA

msvcrt

memset
memcpy

winhttp

WinHttpOpen
WinHttpConnect
WinHttpCloseHandle
WinHttpQueryHeaders
WinHttpQueryDataAvailable
WinHttpAddRequestHeaders
WinHttpQueryAuthSchemes
WinHttpSetStatusCallback
WinHttpSendRequest
WinHttpReadData
WinHttpQueryOption
WinHttpOpenRequest
WinHttpSetTimeouts
WinHttpSetCredentials
WinHttpSetOption
WinHttpGetProxyForUrl
WinHttpReceiveResponse
WinHttpWriteData
WinHttpGetIEProxyConfigForCurrentUser

kernel32

InitializeCriticalSection
CloseHandle
GetThreadPriority
SetErrorMode
WaitForMultipleObjectsEx
GetCurrentThread
EnterCriticalSection
ResumeThread
HeapAlloc
HeapFree
RtlUnwind
LoadResource
GetThreadLocale
SizeofResource
GlobalHandle
VirtualAlloc
LockResource
GlobalAddAtomW
FindClose
GetDateFormatW
GetVersion
SwitchToThread
RaiseException
ReadFile
GlobalFindAtomW
GetVersionExW
Sleep
CreateDirectoryW
ResetEvent
GetUserDefaultUILanguage
UnhandledExceptionFilter
ExitProcess
TryEnterCriticalSection
GetProcAddress
QueryPerformanceCounter
SetThreadPriority
GetCommandLineW
GetCPInfo
GlobalSize
LeaveCriticalSection
MulDiv
VerifyVersionInfoW
TerminateThread
GetDriveTypeW
HeapDestroy
GetLocalTime
FindNextFileW
GetSystemDefaultUILanguage
GetFullPathNameW
GetFileAttributesW
GetCurrentProcessId
FormatMessageW
EnumResourceNamesW
WriteFile
LoadLibraryW
TlsGetValue
GetModuleFileNameW
QueryPerformanceFrequency
FindResourceW
MultiByteToWideChar
FreeLibrary
GetTickCount
VirtualQueryEx
WaitForSingleObject
K32EnumProcessModulesEx
GlobalLock
GlobalDeleteAtom
CreateThread
GlobalUnlock
CreateMutexW
GetTimeZoneInformation
GetDiskFreeSpaceW
LocalFree
GetFileSizeEx
MoveFileW
GetStdHandle
WideCharToMultiByte
DeviceIoControl
CompareStringW
DeleteCriticalSection
EnumSystemLocalesW
GetCurrentProcess
GlobalAlloc
TlsSetValue
GetStartupInfoW
VerSetConditionMask
SuspendThread
IsValidLocale
GetProcessHeap
GetLastError
VirtualQuery
GetSystemInfo
SetEndOfFile
GetModuleHandleW
GetACP
LCMapStringW
CreateFileW
GetCurrentThreadId
GetCPInfoExW
SetFilePointer
LoadLibraryA
ExitThread
lstrlenW
FindFirstFileW
GlobalFree
FreeResource
GetLocaleInfoW
SetThreadLocale
IsDebuggerPresent
GetExitCodeThread
EnumCalendarInfoW
FileTimeToSystemTime
HeapCreate
LocalAlloc
SetEvent
LoadLibraryExW
VirtualFree
CreateEventW
SetLastError
CreateProcessW

ole32

OleInitialize
CoTaskMemAlloc
CoInitialize
CoCreateInstance
OleUninitialize
IsEqualGUID
CoUninitialize
CoTaskMemFree

gdi32

SetWindowOrgEx
ArcTo
CreateFontIndirectW
Pie
GetTextMetricsW
GetViewportOrgEx
CreateDIBSection
SetStretchBltMode
SetBkMode
EndDoc
UnrealizeObject
GetClipBox
DeleteObject
PolyBezier
MaskBlt
CreateBitmap
SetDCPenColor
SetGraphicsMode
CreateCompatibleDC
GetNearestPaletteIndex
SetDIBits
GetEnhMetaFileBits
GetCurrentObject
CreateSolidBrush
ExtFloodFill
GetBkMode
PlayEnhMetaFile
SetWorldTransform
AbortDoc
StartDocW
CreateBrushIndirect
GetEnhMetaFileDescriptionW
CreatePenIndirect
EndPage
AngleArc
RealizePalette
StretchBlt
CreateRectRgn
CreateHalftonePalette
RestoreDC
CopyEnhMetaFileW
SetViewportOrgEx
ExcludeClipRect
SelectObject
GetWindowOrgEx
Ellipse
GetObjectW
CreateDIBitmap
RoundRect
SetDIBColorTable
Polygon
SaveDC
GetTextColor
PolyBezierTo
GetEnhMetaFilePaletteEntries
GetCurrentPositionEx
GetRgnBox
LineTo
GetDIBColorTable
GetDeviceCaps
Arc
CreateDCW
SetBkColor
EnumFontFamiliesExW
GetBitmapBits
BitBlt
GetStretchBltMode
SetBrushOrgEx
GetEnhMetaFileHeader
GdiFlush
DeleteEnhMetaFile
GetTextExtentPointW
GetPaletteEntries
ExtTextOutW
Chord
FrameRgn
MoveToEx
GetDIBits
Polyline
GetSystemPaletteEntries
GetPixel
GetStockObject
CreateICW
EnumFontsW
ExtCreateRegion
SetTextColor
CreateRoundRectRgn
SetRectRgn
SetWinMetaFileBits
CreatePalette
IntersectClipRect
SetAbortProc
SetROP2
StretchDIBits
SetPixel
DeleteDC
GetBrushOrgEx
StartPage
PatBlt
RectVisible
GetTextExtentPoint32W
GetWinMetaFileBits
SelectPalette
SetEnhMetaFileBits
CreateCompatibleBitmap
CombineRgn
Rectangle

Exports

Exports

__dbk_fcall_wrapper
dbkFCallWrapperAddr

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 105KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 92B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 227KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: 3891

Password: 3891

19d798cf07fa5059330ffb06e6e76a5c

Headers

DLL Characteristics

File Characteristics

Imports

winmm

winspool.drv

comctl32

shell32

user32

version

oleaut32

advapi32

msvcrt

winhttp

kernel32

ole32

gdi32

Exports

Exports

Sections

.text Size: 3.0MB - Virtual size: 3.0MB

.itext Size: 10KB - Virtual size: 9KB

.data Size: 500KB - Virtual size: 500KB

.bss Size: - Virtual size: 105KB

.idata Size: 14KB - Virtual size: 14KB

.didata Size: 4KB - Virtual size: 3KB

.edata Size: 512B - Virtual size: 112B

.tls Size: - Virtual size: 92B

.rdata Size: 512B - Virtual size: 93B

.reloc Size: 262KB - Virtual size: 261KB

.rsrc Size: 227KB - Virtual size: 227KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.itext
Size: 10KB - Virtual size: 9KB

.data
Size: 500KB - Virtual size: 500KB

.bss
Size: - Virtual size: 105KB

.idata
Size: 14KB - Virtual size: 14KB

.didata
Size: 4KB - Virtual size: 3KB

.edata
Size: 512B - Virtual size: 112B

.tls
Size: - Virtual size: 92B

.rdata
Size: 512B - Virtual size: 93B

.reloc
Size: 262KB - Virtual size: 261KB

.rsrc
Size: 227KB - Virtual size: 227KB