Wave[.]JohnPrlx[.]cracked[.]rar | Triage

Sharing

General

Target

Wave.JohnPrlx.cracked.rar
Size

10.3MB
MD5

a502e43649c31bd6007912d68b37cad1
SHA1

9076425d466c78f4cf458ab9913fb0880fecf7d0
SHA256

6d5ff2230c713e9372d23989c3ea247d814ffc6f19380be86f7bccf3c0b6ff91
SHA512

cebdaf98e4406fcb95c3086c976c16313230c2630c610d542c61e1c8a655c28a4a6555d9c40a8faed760827d24613acc624547390d66e59f1a77ef7e45ff7ca0
SSDEEP

196608:3xLL5xzen4Pdl4KmMJpgkGTSLv+gaiPBgy/fxKKXWK22Ddd:hPKn4PYhT4ai/xPGQdd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/WaveWindowsCracked.exe

Files

Wave.JohnPrlx.cracked.rar
.rar

Password: wavecracked
CefSharp.Core.Runtime.dll
WaveWindowsCracked.exe
.exe windows:4 windows x86 arch:x86

Password: wavecracked

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 7.6MB - Virtual size: 7.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/Background.mp4
bin/lz4.dll
bin/wolfssl.dll
bin/xxhash.dll
bin/zlib1.dll
bin/zstd.dll
cracked by JohnPrlx.txt
d3dcompiler_47.dll