General
-
Target
f8d567126e9e6c970f77943601cdcddf1109d34abce95779c20d391f923f53b0.zip.zip
-
Size
3.6MB
-
MD5
0fead731d802961eb547ab48a4e369f9
-
SHA1
cb919cfc5ce1416452052aa36aa589bc0fd65d5a
-
SHA256
1b04c0671c3e22fa7b0e9146669088f8cf104bf0bf8b66426aae1d7e10b46a9f
-
SHA512
3118d024283310e052bd4e0f455647623ae389ba0391eed2187a8d48755b1678ce79eca4ed79048232ea9abd5604612b7c3faf4d37e834aaaafb6ab123689f46
-
SSDEEP
98304:SBOCcj9AtFBFzaSJ9Pal3Y5wpaoEfAhyVgn20CX:SBOrJAtLFOG9PqoWpkqye4
Score
7/10
Malware Config
Signatures
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
f8d567126e9e6c970f77943601cdcddf1109d34abce95779c20d391f923f53b0.zip.zip
Password: infected
-
f8d567126e9e6c970f77943601cdcddf1109d34abce95779c20d391f923f53b0.zip
-
anims/barret.poa
-
anims/bezbroni.poa
-
anims/biega.poa
-
anims/biegaranny.poa
-
anims/biegatyl.poa
-
anims/bije.poa
-
anims/celuje.poa
-
anims/celujeodrzut.poa
-
anims/change.poa
-
anims/chat.poa
-
anims/cieszy.poa
-
anims/cigar.poa
-
anims/clipin.poa
-
anims/clipout.poa
-
anims/firemode.poa
-
anims/gora.poa
-
anims/goraodrzut.poa
-
anims/kolba.poa
-
anims/krocze.poa
-
anims/kuca.poa
-
anims/kucaidzie.poa
-
anims/kucaidzietyl.poa
-
anims/laduje.poa
-
anims/lezy.poa
-
anims/lezyidzie.poa
-
anims/match.poa
-
anims/odrzut.poa
-
anims/odrzut2.poa
-
anims/pistolet.poa
-
anims/rucha.poa
-
anims/rzuca.poa
-
anims/samo.poa
-
anims/samo2.poa
-
anims/shotgun.poa
-
anims/skok.poa
-
anims/skokdolobrot.poa
-
anims/skokdolobrottyl.poa
-
anims/skokwbok.poa
-
anims/slideback.poa
-
anims/smoke.poa
-
anims/spada.poa
-
anims/stoi.poa
-
anims/strzala.poa
-
anims/stunt.poa
-
anims/szcza.poa
-
anims/takeoff.poa
-
anims/template.poa
-
anims/wipe.poa
-
anims/wstaje.poa
-
anims/wyrzuca.poa
-
anims/zmienbron.poa
-
bots/Admiral.bot
-
bots/Billy.bot
-
bots/Blain.bot
-
bots/Boogie Man.bot
-
bots/Commando.bot
-
bots/D Dave.bot
-
bots/Danko.bot
-
bots/Dutch.bot
-
bots/John.bot
-
bots/Kruger.bot
-
bots/Poncho.bot
-
bots/Roach.bot
-
bots/Sgt. Mac.bot
-
bots/Sniper.bot
-
bots/Stevie.bot
-
bots/Terminator.bot
-
changelog.txt
-
lobby_servers.txt
-
maps/Aero.PMS
-
maps/Airpirates.PMS
-
maps/Arena.PMS
-
maps/Arena2.PMS
-
maps/Arena3.PMS
-
maps/Bigfalls.PMS
-
maps/Blox.PMS
-
maps/Bridge.PMS
-
maps/Bunker.PMS
-
maps/Cambodia.PMS
-
maps/CrackedBoot.PMS
-
maps/Daybreak.PMS
-
maps/DesertWind.PMS
-
maps/Factory.PMS
-
maps/Flashback.PMS
-
maps/HH.PMS
-
maps/Island2k5.PMS
-
maps/Jungle.PMS
-
maps/Krab.PMS
-
maps/Lagrange.PMS
-
maps/Leaf.PMS
-
maps/MrSnowman.PMS
-
maps/RatCave.PMS
-
maps/Rok.PMS
-
maps/Shau.PMS
-
maps/Tigran.PMS
-
maps/Tropiccave.PMS
-
maps/Unlim.PMS
-
maps/Veoto.PMS
-
maps/changelog.txt
-
maps/ctf_Ash.PMS
-
maps/ctf_B2b.PMS
-
maps/ctf_Blade.PMS
-
maps/ctf_Campeche.PMS
-
maps/ctf_Cobra.PMS
-
maps/ctf_Death.PMS
-
maps/ctf_Division.PMS
-
maps/ctf_Dropdown.PMS
-
maps/ctf_Equinox.PMS
-
maps/ctf_Guardian.PMS
-
maps/ctf_Hormone.PMS
-
maps/ctf_IceBeam.PMS
-
maps/ctf_Kampf.PMS
-
maps/ctf_Lanubya.PMS
-
maps/ctf_Laos.PMS
-
maps/ctf_MFM.PMS
-
maps/ctf_Maya.PMS
-
maps/ctf_Mayapan.PMS
-
maps/ctf_Nuubia.PMS
-
maps/ctf_Raspberry.PMS
-
maps/ctf_Rotten.PMS
-
maps/ctf_Ruins.PMS
-
maps/ctf_Run.PMS
-
maps/ctf_Scorpion.PMS
-
maps/ctf_Snakebite.PMS
-
maps/ctf_Steel.PMS
-
maps/ctf_Triumph.PMS
-
maps/ctf_Viet.PMS
-
maps/ctf_Voland.PMS
-
maps/ctf_X.PMS
-
maps/htf_Arch.PMS
-
maps/htf_Baire.PMS
-
maps/htf_Boxed.PMS
-
maps/htf_Desert.PMS
-
maps/htf_Dorothy.PMS
-
maps/htf_Dusk.PMS
-
maps/htf_Erbium.PMS
-
maps/htf_Feast.PMS
-
maps/htf_Mossy.PMS
-
maps/htf_Muygen.PMS
-
maps/htf_Niall.PMS
-
maps/htf_Nuclear.PMS
-
maps/htf_Prison.PMS
-
maps/htf_Rubik.PMS
-
maps/htf_Star.PMS
-
maps/htf_Tower.PMS
-
maps/htf_Void.PMS
-
maps/htf_Vortex.PMS
-
maps/htf_Zajacz.PMS
-
maps/inf_Abel.PMS
-
maps/inf_April.PMS
-
maps/inf_Argy.PMS
-
maps/inf_Belltower.PMS
-
maps/inf_Biologic.PMS
-
maps/inf_Changeling.PMS
-
maps/inf_Flute.PMS
-
maps/inf_Fortress.PMS
-
maps/inf_Industrial.PMS
-
maps/inf_Messner.PMS
-
maps/inf_Moonshine.PMS
-
maps/inf_Motheaten.PMS
-
maps/inf_Outpost.PMS
-
maps/inf_Rescue.PMS
-
maps/inf_Rise.PMS
-
maps/inf_Warehouse.PMS
-
maps/inf_Warlock.PMS
-
mapslist.txt
-
objects/flag.po
-
objects/gostek.po
-
objects/karabin.po
-
objects/kit.po
-
objects/para.po
-
objects/stat.po
-
readme.txt
-
remote.txt
-
scripts/README.txt
-
scripts/default/AdminCore.pas
-
scripts/default/Core.pas
-
scripts/default/Includes.txt
-
scripts/default/NetworkCore.pas
-
scripts/default/SocketCore.pas
-
server.ini
-
soldat.ini
-
soldatserver
-
soldatserver.exe
Headers
Sections
-
out.upx
Headers
Sections
-
weapons.ini
-
weapons_realistic.ini