Battle Duels for 1[.]2[.]8-6436-0-0-8-1706279069[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Battle Duels for 1.2.8-6436-0-0-8-1706279069.zip
Size

42KB
MD5

2d4827c2bf0124de654e5ca2946d9aca
SHA1

a9d56d13b8066fcbf626e153fdef56f9eaf2d351
SHA256

cb809f5d7b0acddc84bed344a373a981e863e6d151d8c6b213ead39281bb1c1f
SHA512

c93de2a9a96f178f74bea75a713fba1d4c6f8a7a534759406c07f813e0e792566e11b846ab64405018868ed6fc7e996865abad3245ed34ba93765330d264da52
SSDEEP

768:ZAWdQUUdeT9qS4qDhgtUMexA0zX+pT+zdtAdSpZyOhAdy6h9MdJYRGHKg+nF:ZAtW9t4uyUMb8uT+zPAGy9d2d0GqV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BattleDuels/bin/Win64_Shipping_Client/BattleDuels.dll

Files

Battle Duels for 1.2.8-6436-0-0-8-1706279069.zip
.zip
BattleDuels/SubModule.xml
.xml
BattleDuels/bin/Win64_Shipping_Client/BattleDuels.dll
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Dev\modding\BattleDuels\obj\x64\Debug\net472\BattleDuels.pdb

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BattleDuels/bin/Win64_Shipping_Client/BattleDuels.pdb
BattleDuels/config.xml
.xml