656464fd71de953dd1d64ec8e605d3c068da97c5e30a2527968604338e380239

Sharing

Copy URL Twitter E-mail

General

Target

656464fd71de953dd1d64ec8e605d3c068da97c5e30a2527968604338e380239
Size

5.0MB
MD5

3644dca6f8d7497ee18c0446c1f49fd2
SHA1

8b5667d4ee7f2ff32d5fdabbe7b95b083a7a05f9
SHA256

656464fd71de953dd1d64ec8e605d3c068da97c5e30a2527968604338e380239
SHA512

0d5dae83707a8c2368bbfe3af5dffb3050eeecd5bd0daf21c7f57afcfa012fce8aba5fd123f1c9c688df8305f815a92b4b4e6ff8b84cd1e37226ca693e3925d1
SSDEEP

98304:Rztjul/VThW7fmOrN27pyrHzVwLAM6xf053Uq0ccMgvPbki:Rzi/VThWSOgpyrTVwLAMLh0ccM/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack002/MV Cheat.exe
unpack002/RPGMV/ClipLoger.exe

Files

656464fd71de953dd1d64ec8e605d3c068da97c5e30a2527968604338e380239
.rar
704378_MV_Cheat_1.9.2.zip
.zip
MV Cheat.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 569KB - Virtual size: 569KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MVConfig.ini
RPGMV/ClipLoger.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 175B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RPGMV/Clipboard_llule.js
.js
RPGMV/fontawesome/css/all.min.css
RPGMV/fontawesome/webfonts/fa-brands-400.eot
RPGMV/fontawesome/webfonts/fa-brands-400.svg
.xml
RPGMV/fontawesome/webfonts/fa-brands-400.ttf
RPGMV/fontawesome/webfonts/fa-brands-400.woff
RPGMV/fontawesome/webfonts/fa-brands-400.woff2
RPGMV/fontawesome/webfonts/fa-light-300.eot
RPGMV/fontawesome/webfonts/fa-light-300.svg
.xml
RPGMV/fontawesome/webfonts/fa-light-300.ttf
RPGMV/fontawesome/webfonts/fa-light-300.woff
RPGMV/fontawesome/webfonts/fa-light-300.woff2
RPGMV/fontawesome/webfonts/fa-regular-400.eot
RPGMV/fontawesome/webfonts/fa-regular-400.svg
.xml
RPGMV/fontawesome/webfonts/fa-regular-400.ttf
RPGMV/fontawesome/webfonts/fa-regular-400.woff
RPGMV/fontawesome/webfonts/fa-regular-400.woff2
RPGMV/fontawesome/webfonts/fa-solid-900.eot
RPGMV/fontawesome/webfonts/fa-solid-900.svg
.xml
RPGMV/fontawesome/webfonts/fa-solid-900.ttf
RPGMV/fontawesome/webfonts/fa-solid-900.woff
RPGMV/fontawesome/webfonts/fa-solid-900.woff2
[RPGM] - [Completed] - Captured by Dark Elves- Arachna’s Return [Final Edition] [Darktoz] - F95zone.url
www/data/Actors.json
www/data/Animations.json
www/data/Armors.json
www/data/BattleHUD.json
www/data/Classes.json
www/data/CommonEvents.json
www/data/DataEX.json
www/data/Enemies.json
www/data/Items.json
www/data/Map001.json
www/data/Map002.json
www/data/Map003.json
www/data/Map004.json
www/data/Map005.json
www/data/Map006.json
www/data/Map007.json
www/data/Map008.json
www/data/Map009.json
www/data/Map010.json
www/data/Map011.json
www/data/Map012.json
www/data/Map013.json
www/data/Map014.json
www/data/Map015.json
www/data/Map016.json
www/data/Map017.json
www/data/Map018.json
www/data/Map019.json
www/data/Map020.json
www/data/Map021.json
www/data/Map022.json
www/data/Map023.json
www/data/Map024.json
www/data/Map025.json
www/data/Map026.json
www/data/Map027.json
www/data/Map028.json
www/data/Map029.json
www/data/Map030.json
www/data/Map031.json
www/data/Map032.json
www/data/Map033.json
www/data/Map034.json
www/data/Map035.json
www/data/Map036.json
www/data/Map037.json
www/data/Map038.json
www/data/Map039.json
www/data/Map040.json
www/data/Map041.json
www/data/Map042.json
www/data/Map043.json
www/data/Map044.json
www/data/Map045.json
www/data/Map046.json
www/data/Map047.json
www/data/Map048.json
www/data/Map049.json
www/data/Map050.json
www/data/Map051.json
www/data/Map052.json
www/data/Map053.json
www/data/Map054.json
www/data/Map055.json
www/data/Map056.json
www/data/Map057.json
www/data/Map058.json
www/data/Map059.json
www/data/Map060.json
www/data/Map061.json
www/data/Map062.json
www/data/Map063.json
www/data/Map064.json
www/data/Map065.json
www/data/Map066.json
www/data/Map067.json
www/data/Map068.json
www/data/Map069.json
www/data/Map070.json
www/data/Map071.json
www/data/MapHUD.json
www/data/MapInfos.json
www/data/Notes.json
www/data/Skills.json
www/data/States.json
www/data/System.json
www/data/Tilesets.json
www/data/Troops.json
www/data/Weapons.json
www/data/Windows.json

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 569KB - Virtual size: 569KB

.rsrc Size: 130KB - Virtual size: 130KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 112KB - Virtual size: 111KB

.sdata Size: 512B - Virtual size: 175B

.rsrc Size: 100KB - Virtual size: 99KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 569KB - Virtual size: 569KB

.rsrc
Size: 130KB - Virtual size: 130KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 112KB - Virtual size: 111KB

.sdata
Size: 512B - Virtual size: 175B

.rsrc
Size: 100KB - Virtual size: 99KB

.reloc
Size: 512B - Virtual size: 12B