gtasawallhack[.]asi

Sharing

Copy URL

Twitter E-mail

General

Target

gtasawallhack.asi
Size

467KB
MD5

53fd07c554a352d6a5b34c251506a3cc
SHA1

a2bda4ea0159118d4dae265eca89a0cd0869d8da
SHA256

eb14c6a2b0207e62fb7256311f3c6d5198d58f23a680143326edb5eb4ba48c3c
SHA512

76424386221268f6222028cbc83a936bf1e2408187b958b81453802340e78e1c8f2cbc5bc8bcc451a0956584c120ea9e5f2bafaf76500c7da9d61d5f847a8443
SSDEEP

3072:TxAFG+ak2oNFciURLT9Z+7D/3I8azVewo9ZfINen9gbf4dBDMGg2mpswHQJ+EfYt:u0w2B+l9gBsBVeQRORMsZ6DYZx0A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
gtasawallhack.asi

Files

gtasawallhack.asi
.dll windows:6 windows x86

74d1f915efeaf21520a94df956f20e04

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetSystemInfo
GetSystemTimeAsFileTime
GetLastError
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
GetProcAddress
LoadLibraryA
DisableThreadLibraryCalls
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
ResetEvent
GetModuleHandleA
VirtualQuery
FlushInstructionCache
GetCurrentProcess
Sleep
OutputDebugStringA
MultiByteToWideChar
VirtualProtect
CloseHandle
InitializeSListHead
GetModuleFileNameA
TerminateProcess
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter

user32

FillRect
GetAsyncKeyState
CallWindowProcA
MapVirtualKeyA
GetForegroundWindow
SetWindowLongA

gdi32

ExtTextOutA
CreateDIBSection
SetTextAlign
SetTextColor
SetMapMode
SetBkMode
SelectObject
GetTextExtentPoint32A
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush
CreateFontA
CreateCompatibleDC

shell32

ShellExecuteA

msvcp140

?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z

vcruntime140

memcmp
memcpy
__std_exception_destroy
__std_type_info_destroy_list
memmove
__CxxFrameHandler3
_except_handler4_common
__std_exception_copy
__current_exception_context
__current_exception
__std_terminate
strrchr
__RTDynamicCast
_purecall
memset
_CxxThrowException

api-ms-win-crt-runtime-l1-1-0

_seh_filter_dll
_initialize_onexit_table
_configure_narrow_argv
_initialize_narrow_environment
terminate
_register_onexit_function
_execute_onexit_table
_crt_atexit
_initterm_e
_initterm
_cexit
_errno
_invalid_parameter_noinfo_noreturn

api-ms-win-crt-convert-l1-1-0

strtol
atoi

api-ms-win-crt-utility-l1-1-0

rand

api-ms-win-crt-stdio-l1-1-0

fclose
__stdio_common_vsprintf
__stdio_common_vsnprintf_s
__stdio_common_vsprintf_s
fopen
_get_osfhandle
fread

api-ms-win-crt-heap-l1-1-0

free
malloc
_callnewh
realloc

api-ms-win-crt-string-l1-1-0

_stricmp
strncpy_s
strncmp
strncpy

api-ms-win-crt-math-l1-1-0

_fdclass

Exports

Exports

roundf

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 947KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d3d9_sh
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74d1f915efeaf21520a94df956f20e04

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msvcp140

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 165KB - Virtual size: 164KB

.rdata Size: 78KB - Virtual size: 77KB

.data Size: 188KB - Virtual size: 947KB

.d3d9_sh Size: 512B - Virtual size: 4B

_RDATA Size: 10KB - Virtual size: 9KB

.reloc Size: 24KB - Virtual size: 23KB

.text
Size: 165KB - Virtual size: 164KB

.rdata
Size: 78KB - Virtual size: 77KB

.data
Size: 188KB - Virtual size: 947KB

.d3d9_sh
Size: 512B - Virtual size: 4B

_RDATA
Size: 10KB - Virtual size: 9KB

.reloc
Size: 24KB - Virtual size: 23KB