CreateGameClient
Static task
static1
1 signatures
General
-
Target
SayNOtoEAC.zip
-
Size
7KB
-
MD5
282da954f345742a9b7c4914be9f5d0a
-
SHA1
987411ee538c76dae63da2eaa7f11c85cfc72511
-
SHA256
bc7d0e0e75881f8d511b436be24755ec481a7bbeaef42b26e14246a5199a4d4c
-
SHA512
a118c6883b264820610b36b4635c885caca950d6c8d875df0293fdd94bac041feb407cc41669e273b745c0428e86ddcdab04a87efa851b336bec0c15c9fdf731
-
SSDEEP
96:Gmwvk1hwAjB3QEWb1I3eVJSKWcGw56ivvWKq/oA8+aXcyBiCaDbw/ME0pxxI710u:GG1hyEWP9WcG66osgAj2taPw/4xW0B9q
Score
3/10
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack001/EasyAntiCheat_x64.dll unpack001/EasyAntiCheat_x86.dll
Files
-
SayNOtoEAC.zip.zip
-
EasyAntiCheat_x64.dll.dll windows:6 windows x64 arch:x64
8d5b14a72142ec699383ccadcd0cbc6e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
kernel32
OutputDebugStringA
DisableThreadLibraryCalls
Exports
Exports
Sections
.text Size: 512B - Virtual size: 224B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 560B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 600B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 96B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 132B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
EasyAntiCheat_x86.dll.dll windows:4 windows x86 arch:x86
50441c201a47ed07604900beed632149
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
DisableThreadLibraryCalls
ExitProcess
OutputDebugStringA
CreateProcessW
Exports
Exports
CreateGameLauncher
Sections
.text Size: 512B - Virtual size: 120B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 267B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 138B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 46B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
[source]EasyAntiCheat_x64.zip.zip
-
EasyAntiCheat_x64.asm
-
EasyAntiCheat_x64.def
-
EasyAntiCheat_x64.inc
-
EasyAntiCheat_x64.rap
-
EasyAntiCheat_x64.xml.xml
-
[source]EasyAntiCheat_x86.zip.zip
-
EasyAntiCheat_x86.asm
-
EasyAntiCheat_x86.def
-
EasyAntiCheat_x86.inc
-
EasyAntiCheat_x86.rap