neverlose [.]rar

Sharing

Copy URL Twitter E-mail

General

Target

neverlose .rar
Size

2.8MB
MD5

75cec72c4ddd8f85a41dba27f7c3fb99
SHA1

7dc0e5080cfb72c5974cd55dfdd017c08cd5ea16
SHA256

219ee26275315f3a43e67c4a2a00558dec1fabbe60ead00c60fe0e40e04408d5
SHA512

507c1ac3c397c152b1603516d3b50db451bd888984ae0318fc771f0873a0256694e5cf945b17e5a70f8708297e1b0798072f2b1e929c590ea401d7b4f53d0d66
SSDEEP

49152:lKtMKCYr67xmQprDWyH4G/BSMD1AgkL2Ofw4iu8NMGl3K7vtMKCYr67xmj4ajIH1:sJiDBf5SA7Q9fTG3EvJiPajC/cJ3q

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/neverlose/neverlose/bin/Release/neverlose.exe
unpack001/neverlose/neverlose/obj/Debug/TempPE/Properties.Resources.Designer.cs.dll
unpack001/neverlose/neverlose/obj/Debug/gamesense.exe
unpack001/neverlose/neverlose/obj/Release/TempPE/Properties.Resources.Designer.cs.dll
unpack001/neverlose/neverlose/obj/Release/neverlose.exe

Files

neverlose .rar
.rar
neverlose/neverlose.psd
neverlose/neverlose.sln
neverlose/neverlose/App/App.config
neverlose/neverlose/App/app.manifest
neverlose/neverlose/App/icon.ico
neverlose/neverlose/Form1.Designer.cs
neverlose/neverlose/Form1.cs
.js
neverlose/neverlose/Form1.resx
.vbs
neverlose/neverlose/Form2.Designer.cs
neverlose/neverlose/Form2.cs
.js
neverlose/neverlose/Form2.resx
.vbs
neverlose/neverlose/Form3.Designer.cs
neverlose/neverlose/Form3.cs
.js
neverlose/neverlose/Form3.resx
.vbs
neverlose/neverlose/Misc/Injector.cs
neverlose/neverlose/Misc/Program.cs
neverlose/neverlose/Properties/AssemblyInfo.cs
neverlose/neverlose/Properties/Resources.Designer.cs
.vbs
neverlose/neverlose/Properties/Resources.resx
.vbs
neverlose/neverlose/Properties/Settings.Designer.cs
neverlose/neverlose/Properties/Settings.settings
neverlose/neverlose/auth.png
.png
neverlose/neverlose/background.png
.png
neverlose/neverlose/bin/Release/neverlose.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Admin\Desktop\neverlose\neverlose\obj\Release\neverlose.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neverlose/neverlose/bin/Release/neverlose.exe.config
neverlose/neverlose/bin/Release/neverlose.pdb
neverlose/neverlose/button-bg.png
.png
neverlose/neverlose/csgo-icon.jpg
.png
neverlose/neverlose/icon.png
.jpg
neverlose/neverlose/neverlose.csproj
neverlose/neverlose/obj/Debug/.NETFramework,Version=v4.7.2.AssemblyAttributes.cs
neverlose/neverlose/obj/Debug/DesignTimeResolveAssemblyReferences.cache
neverlose/neverlose/obj/Debug/DesignTimeResolveAssemblyReferencesInput.cache
neverlose/neverlose/obj/Debug/TempPE/Properties.Resources.Designer.cs.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neverlose/neverlose/obj/Debug/gamesense.Form1.resources
neverlose/neverlose/obj/Debug/gamesense.Form2.resources
neverlose/neverlose/obj/Debug/gamesense.Form3.resources
neverlose/neverlose/obj/Debug/gamesense.Properties.Resources.resources
neverlose/neverlose/obj/Debug/gamesense.csproj.CoreCompileInputs.cache
neverlose/neverlose/obj/Debug/gamesense.csproj.FileListAbsolute.txt
neverlose/neverlose/obj/Debug/gamesense.csproj.GenerateResource.cache
neverlose/neverlose/obj/Debug/gamesense.csprojAssemblyReference.cache
neverlose/neverlose/obj/Debug/gamesense.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Danil Grachov\Desktop\gamesense\obj\Debug\gamesense.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 677KB - Virtual size: 677KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neverlose/neverlose/obj/Debug/gamesense.pdb
neverlose/neverlose/obj/Debug/neverlose.csproj.CoreCompileInputs.cache
neverlose/neverlose/obj/Debug/neverlose.csprojAssemblyReference.cache
neverlose/neverlose/obj/Release/.NETFramework,Version=v4.7.2.AssemblyAttributes.cs
neverlose/neverlose/obj/Release/DesignTimeResolveAssemblyReferences.cache
neverlose/neverlose/obj/Release/DesignTimeResolveAssemblyReferencesInput.cache
neverlose/neverlose/obj/Release/TempPE/Properties.Resources.Designer.cs.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neverlose/neverlose/obj/Release/gamesense.Form1.resources
neverlose/neverlose/obj/Release/gamesense.Form2.resources
neverlose/neverlose/obj/Release/gamesense.Form3.resources
neverlose/neverlose/obj/Release/gamesense.csproj.CoreCompileInputs.cache
neverlose/neverlose/obj/Release/gamesense.csproj.FileListAbsolute.txt
neverlose/neverlose/obj/Release/gamesense.csproj.GenerateResource.cache
neverlose/neverlose/obj/Release/gamesense.csprojAssemblyReference.cache
neverlose/neverlose/obj/Release/neverlose.Properties.Resources.resources
neverlose/neverlose/obj/Release/neverlose.csproj.CoreCompileInputs.cache
neverlose/neverlose/obj/Release/neverlose.csproj.FileListAbsolute.txt
neverlose/neverlose/obj/Release/neverlose.csproj.GenerateResource.cache
neverlose/neverlose/obj/Release/neverlose.csprojAssemblyReference.cache
neverlose/neverlose/obj/Release/neverlose.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Admin\Desktop\neverlose\neverlose\obj\Release\neverlose.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
neverlose/neverlose/obj/Release/neverlose.pdb
readme.txt

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 269KB - Virtual size: 269KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 677KB - Virtual size: 677KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 2KB - Virtual size: 2KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mscoree

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rsrc Size: 269KB - Virtual size: 269KB

.reloc Size: 512B - Virtual size: 12B

.text
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 269KB - Virtual size: 269KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 677KB - Virtual size: 677KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 2KB - Virtual size: 2KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 1.2MB - Virtual size: 1.2MB

.rsrc
Size: 269KB - Virtual size: 269KB

.reloc
Size: 512B - Virtual size: 12B