ExploIT[.]zip | Triage

Resubmissions

11-06-2024 16:12

240611-tnxghssgpg 3

11-06-2024 16:11

240611-tm84xssgnb 3

Sharing

General

Target

ExploIT.zip
Size

230KB
MD5

4900da18fb65404a5ce3ebb874901f83
SHA1

2cdfed96f73e570bf37ec708b29f532a2442818e
SHA256

127104c95a73b5c9f6a3ca00ad1dcd237773e5f5fb287d29a3051af3f5745c7c
SHA512

2d7d654db38cef4132ae64e848aa9d85d0b6954c361aa7e20f9dbdae1d1d9c2459cc28733b38ffca1a48800311d96fa40a1620c18dce3466efade468b8092603
SSDEEP

6144:6NfY4ogsy8mSlY3kRe6VlWTTeT4ffJd3we1U3+vG1ZxJY:6Ng49HtSlekRPVleqT4fbjgqG15Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/SpecialProgramCHEATS.exe

Files

ExploIT.zip
.zip
Lunar.dll
Monaco/FasterW.ahk
Monaco/Incognito.dll
Monaco/Lunar.dll
Monaco/S1File.txt
Monaco/WorkSpace.dll
Opengl32.dll
RobloxAPI/Internet.ahk
RobloxAPI/World.zip
SpecialProgramCHEATS.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 463KB - Virtual size: 463KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scripts/Kick me.txt
workspace/KavoConfig.JSON
workspace/discordlibinfo.txt