623133a76c1c525b1cf083e3340d2a46

Sharing

Copy URL

Twitter E-mail

General

Target

623133a76c1c525b1cf083e3340d2a46
Size

105KB
MD5

623133a76c1c525b1cf083e3340d2a46
SHA1

986fda14dea470c8b140294b6fe6194d3be44a94
SHA256

6d740c4dcfdcb219dc012c5190e221c0f10ae816d719fc55e9daf4b0fac9a920
SHA512

657bbcfb6ef740f4aa5b311c7caa5395846ba0ff7ff9cec72b4ba5d044006a3a1eec02749fe3bc3368c8823b27573a8ad3e0b6bbb8b2ef73e23c0962fb9d9e95
SSDEEP

1536:TDc4yN6V8PeKgwPfqVFPMFTzfA5O4XUOerm7TARQkOYMXYt+ogD2oicpwg7c0r:fcfwKgwPBFHHm7c/gKoic6g7c0r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/kopx hilesi/Yuzay2MiniBotV1856.exe

Files

623133a76c1c525b1cf083e3340d2a46
.rar
knight Hilelerimiz.html
kopx hilesi/Config/Gm/GmList.txt
kopx hilesi/Config/Items/Belts.txt
kopx hilesi/Config/Items/Bows.txt
kopx hilesi/Config/Items/Coin.txt
kopx hilesi/Config/Items/Crossbows.txt
kopx hilesi/Config/Items/Daggers.txt
kopx hilesi/Config/Items/Earrings.txt
kopx hilesi/Config/Items/Image Change Scroll.txt
kopx hilesi/Config/Items/Lune Item.txt
kopx hilesi/Config/Items/Magician Armor.txt
kopx hilesi/Config/Items/Necklaces and Pendants.txt
kopx hilesi/Config/Items/One-handed Axe.txt
kopx hilesi/Config/Items/One-handed Clup.txt
kopx hilesi/Config/Items/One-handed Spear.txt
kopx hilesi/Config/Items/One-handed Sword.txt
kopx hilesi/Config/Items/Priest Armor.txt
kopx hilesi/Config/Items/Priest Mace.txt
kopx hilesi/Config/Items/Rings.txt
kopx hilesi/Config/Items/Rogue Armor.txt
kopx hilesi/Config/Items/Scroll.txt
kopx hilesi/Config/Items/Shields.txt
kopx hilesi/Config/Items/Staffs.txt
kopx hilesi/Config/Items/Sundries.txt
kopx hilesi/Config/Items/Twon-handed Axe.txt
kopx hilesi/Config/Items/Twon-handed Club.txt
kopx hilesi/Config/Items/Twon-handed Spear.txt
kopx hilesi/Config/Items/Twon-handed Sword.txt
kopx hilesi/Config/Items/Warrior Armor.txt
kopx hilesi/Config/Offsets.ini
kopx hilesi/Config/Path.ini
kopx hilesi/Config/Skils/Mage/MageFlameSkils.txt
kopx hilesi/Config/Skils/Mage/MageIceSkils.txt
kopx hilesi/Config/Skils/Mage/MageLightingSkils.txt
kopx hilesi/Config/Skils/Mage/MageOtherSkills.txt
kopx hilesi/Config/Skils/Mage/MageTimedSkils.txt
kopx hilesi/Config/Skils/Mage/SpecialSkils.txt
kopx hilesi/Config/Skils/Ortak/TsID.txt
kopx hilesi/Config/Skils/Rogue/RogueAtackSkilsArcher.txt
kopx hilesi/Config/Skils/Rogue/RogueAtackSkilsAssasian.txt
kopx hilesi/Config/Skils/Rogue/RogueBasicSkilss.txt
kopx hilesi/Config/Skils/Rogue/RogueTimedSkils.txt
kopx hilesi/Config/Skils/Warrior/WarriorAtackSkils.txt
kopx hilesi/Config/Skils/Warrior/WarriorTimedSkils.txt
kopx hilesi/Yuzay2MiniBotV1856.exe
.exe windows:4 windows x86 arch:x86

4799c2ff86933fdcb09047b7ef650a0a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord690
MethCallEngine
ord516
ord660
ord593
ord300
ord594
ord301
ord595
ord598
ord306
ord520
ord307
ord631
ord632
EVENT_SINK_AddRef
ord528
ord529
DllFunctionCall
ord564
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord606
ord607
ord608
ord531
ord717
ProcCallEngine
ord537
ord645
ord571
ord572
ord573
ord681
ord100
ord689
ord612
ord616
ord617
ord619
ord581

Sections

.text
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
okuyunuz.txt

Sharing

General

Malware Config

Signatures

Files

4799c2ff86933fdcb09047b7ef650a0a

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 268KB - Virtual size: 267KB

.data Size: - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 268KB - Virtual size: 267KB

.data
Size: - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 2KB