731371c881b740ac[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

731371c881b740ac.exe
Size

22.2MB
MD5

35fe3cfe56ba09fbcfbcd1418902f5cf
SHA1

0eb12c2a6dfc9bd3da8f617e3ba78255f0545f13
SHA256

77b0de497f91f24864c112f164c0a93f989e14480997873fea1754059453c6ea
SHA512

8a59bcc6253bc4400cc75684fc4c6bf5acb15e25a71fa9b007f83942f4afacdbc4f53f0acf9a272979625b07b0fc59738e4338071ebd6bc43f15629e1bd63f87
SSDEEP

393216:/Xt7h3UhGSwA1GOpa+r2vsi94i76iNIDM88QnoWrUs+pm7CvsylyDmFS8:l7h3AxoOs+r29pPeMDQo9s+pmUsL8

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
sample	themida

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
731371c881b740ac.exe

Files

731371c881b740ac.exe
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

Java_abc_def_addon_Addon__00024jnicLoader
Java_abc_def_addon_Category__00024jnicLoader
Java_abc_def_addon_impl_c_aml__00024jnicLoader
Java_abc_def_addon_impl_c_azl__00024jnicLoader
Java_abc_def_addon_impl_c_bom__00024jnicLoader
Java_abc_def_addon_impl_c_cik__00024jnicLoader
Java_abc_def_addon_impl_c_cnc__00024jnicLoader
Java_abc_def_addon_impl_c_fjs__00024jnicLoader
Java_abc_def_addon_impl_c_jkl__00024jnicLoader
Java_abc_def_addon_impl_c_lda__00024jnicLoader
Java_abc_def_addon_impl_c_olg__00024jnicLoader
Java_abc_def_addon_impl_c_udf__00024jnicLoader
Java_abc_def_addon_impl_c_udp__00024jnicLoader
Java_abc_def_addon_impl_c_vmg__00024jnicLoader
Java_abc_def_addon_impl_c_vmn__00024jnicLoader
Java_abc_def_addon_impl_c_vnf__00024jnicLoader
Java_abc_def_addon_impl_c_vvp__00024jnicLoader
Java_abc_def_addon_impl_c_xvx__00024jnicLoader
Java_abc_def_addon_impl_c_yfc__00024jnicLoader
Java_abc_def_addon_impl_cr_I__00024jnicLoader
Java_abc_def_addon_impl_cr_a__00024jnicLoader
Java_abc_def_addon_impl_cr_f__00024jnicLoader
Java_abc_def_addon_impl_cr_tcp__00024jnicLoader
Java_abc_def_addon_impl_cr_v__00024jnicLoader
Java_abc_def_addon_impl_cr_x__00024jnicLoader
Java_abc_def_addon_impl_cr_xlc__00024jnicLoader
Java_abc_def_addon_impl_cr_xyl__00024jnicLoader
Java_abc_def_addon_impl_m_cvs__00024jnicLoader
Java_abc_def_addon_impl_m_dax__00024jnicLoader
Java_abc_def_addon_impl_m_lma__00024jnicLoader
Java_abc_def_addon_impl_m_plm__00024jnicLoader
Java_abc_def_addon_impl_m_qfd__00024jnicLoader
Java_abc_def_addon_impl_m_qmv__00024jnicLoader
Java_abc_def_addon_impl_m_swg__00024jnicLoader
Java_abc_def_addon_impl_m_vdm__00024jnicLoader
Java_abc_def_addon_impl_m_vnd__00024jnicLoader
Java_abc_def_addon_impl_p_abl__00024jnicLoader
Java_abc_def_addon_impl_p_alm__00024jnicLoader
Java_abc_def_addon_impl_p_asd__00024jnicLoader
Java_abc_def_addon_impl_p_clf__00024jnicLoader
Java_abc_def_addon_impl_p_cwl__00024jnicLoader
Java_abc_def_addon_impl_p_das__00024jnicLoader
Java_abc_def_addon_impl_p_jvj__00024jnicLoader
Java_abc_def_addon_impl_p_mnd__00024jnicLoader
Java_abc_def_addon_impl_p_neo__00024jnicLoader
Java_abc_def_addon_impl_p_opa__00024jnicLoader
Java_abc_def_addon_impl_p_plv__00024jnicLoader
Java_abc_def_addon_impl_p_pzd__00024jnicLoader
Java_abc_def_addon_impl_p_qss__00024jnicLoader
Java_abc_def_addon_impl_p_rod__00024jnicLoader
Java_abc_def_addon_impl_p_sud__00024jnicLoader
Java_abc_def_addon_impl_p_vkc__00024jnicLoader
Java_abc_def_addon_impl_p_xal__00024jnicLoader
Java_abc_def_addon_impl_p_xas__00024jnicLoader
Java_abc_def_addon_impl_r_ale__00024jnicLoader
Java_abc_def_addon_impl_r_bdf__00024jnicLoader
Java_abc_def_addon_impl_r_bol__00024jnicLoader
Java_abc_def_addon_impl_r_fal__00024jnicLoader
Java_abc_def_addon_impl_r_kas__00024jnicLoader
Java_abc_def_addon_impl_r_kla_000241__00024jnicLoader
Java_abc_def_addon_impl_r_kla__00024jnicLoader
Java_abc_def_addon_impl_r_lun__00024jnicLoader
Java_abc_def_addon_impl_r_pop__00024jnicLoader
Java_abc_def_addon_impl_r_qwe__00024jnicLoader
Java_abc_def_addon_impl_r_roc__00024jnicLoader
Java_abc_def_addon_impl_r_xma__00024jnicLoader
Java_abc_def_addon_k_NotificationManager__00024jnicLoader
Java_abc_def_addon_k_NotificationType__00024jnicLoader
Java_abc_def_addon_k_Notification_000241__00024jnicLoader
Java_abc_def_addon_k_Notification__00024jnicLoader
Java_abc_def_addon_r_Menu__00024jnicLoader
Java_abc_def_addon_r_S_C__00024jnicLoader
Java_abc_def_addon_r_S_S_G__00024jnicLoader
Java_abc_def_addon_r_S_S_M__00024jnicLoader
Java_abc_def_addon_r_S_S_l__00024jnicLoader
Java_abc_def_addon_r_S_S_w__00024jnicLoader
Java_abc_def_addon_r_S_V_B__00024jnicLoader
Java_abc_def_addon_r_S_Z__00024jnicLoader
Java_abc_def_addon_r_S_a_X__00024jnicLoader
Java_abc_def_addon_r_S_e_B__00024jnicLoader
Java_abc_def_addon_r_S_e_m_U__00024jnicLoader
Java_abc_def_addon_r_S_e_m_c__00024jnicLoader
Java_abc_def_addon_r_S_e_m_f__00024jnicLoader
Java_abc_def_addon_r_S_e_m_o__00024jnicLoader
Java_abc_def_addon_r_S_h_R_C__00024jnicLoader
Java_abc_def_addon_r_S_h_R_D__00024jnicLoader
Java_abc_def_addon_r_S_h_R_L__00024jnicLoader
Java_abc_def_addon_r_S_h_R_R__00024jnicLoader
Java_abc_def_addon_r_S_h_R_Y__00024jnicLoader
Java_abc_def_addon_r_S_h_R_h__00024jnicLoader
Java_abc_def_addon_r_S_h_R_i__00024jnicLoader
Java_abc_def_addon_r_S_h_R_k__00024jnicLoader
Java_abc_def_addon_r_S_h_R_m__00024jnicLoader
Java_abc_def_addon_r_S_h_R_o__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_L__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_M__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_V__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_W__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_q__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_s__00024jnicLoader
Java_abc_def_addon_r_S_h_R_r_x__00024jnicLoader
Java_abc_def_addon_r_S_h_R_y__00024jnicLoader
Java_abc_def_addon_r_S_h_h__00024jnicLoader
Java_abc_def_addon_r_S_t__00024jnicLoader
Java_abc_def_addon_r_UIScreen__00024jnicLoader
Java_abc_def_addon_r_m_ThemeManager__00024jnicLoader
Java_abc_def_addon_r_m_Theme_00024ThemeBuilder__00024jnicLoader
Java_abc_def_addon_r_m_Theme__00024jnicLoader
Java_abc_def_addon_r_s_H__00024jnicLoader
Java_abc_def_addon_r_s_O__00024jnicLoader
Java_abc_def_addon_r_s_g__00024jnicLoader
Java_abc_def_addon_settings_BooleanSetting__00024jnicLoader
Java_abc_def_addon_settings_ColorSetting__00024jnicLoader
Java_abc_def_addon_settings_ItemsSetting__00024jnicLoader
Java_abc_def_addon_settings_KeybindSetting__00024jnicLoader
Java_abc_def_addon_settings_ModeSetting__00024jnicLoader
Java_abc_def_addon_settings_NumberSetting__00024jnicLoader
Java_abc_def_addon_settings_RangeNumberSetting__00024jnicLoader
Java_abc_def_addon_settings_Setting__00024jnicLoader
Java_abc_def_addon_settings_TextSetting__00024jnicLoader
Java_abc_def_config_ConfigManager__00024jnicLoader
Java_abc_def_config_Config__00024jnicLoader
Java_abc_def_event_Data__00024jnicLoader
Java_abc_def_event_EventManager__00024jnicLoader
Java_abc_def_event_Event__00024jnicLoader
Java_abc_def_event_impl_entity_EntityAddedEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityAttackEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityDamageEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityEffectTickEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityHealEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityPushEvent__00024jnicLoader
Java_abc_def_event_impl_entity_EntityRemovedEvent__00024jnicLoader
Java_abc_def_event_impl_entity_LivingEntityJumpEvent__00024jnicLoader
Java_abc_def_event_impl_entity_PlayerMoveEvent__00024jnicLoader
Java_abc_def_event_impl_game_ChatEvent__00024jnicLoader
Java_abc_def_event_impl_game_OpenScreenEvent__00024jnicLoader
Java_abc_def_event_impl_game_PacketEvent_00024Receive__00024jnicLoader
Java_abc_def_event_impl_game_PacketEvent__00024jnicLoader
Java_abc_def_event_impl_game_TickEvent_00024Pre__00024jnicLoader
Java_abc_def_event_impl_game_TickEvent__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024Enter__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024Focus__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024FramebufferResize__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024Move__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024NameChanged__00024jnicLoader
Java_abc_def_event_impl_game_WindowEvent_00024Resize__00024jnicLoader
Java_abc_def_event_impl_input_KeyMappingClickedEvent__00024jnicLoader
Java_abc_def_event_impl_input_KeyboardEvent__00024jnicLoader
Java_abc_def_event_impl_input_MouseEvent__00024jnicLoader
Java_abc_def_event_impl_render_RenderHandEvent__00024jnicLoader
Java_abc_def_event_impl_render_RenderOverlayEvent_00024Post__00024jnicLoader
Java_abc_def_event_impl_render_RenderOverlayEvent_00024Pre__00024jnicLoader
Java_abc_def_event_impl_render_RenderOverlayEvent__00024jnicLoader
Java_abc_def_event_impl_render_RenderPlayerLabelEvent__00024jnicLoader
Java_abc_def_f_CmdManager__00024jnicLoader
Java_abc_def_f_Command__00024jnicLoader
Java_abc_def_f_p_ConfigCmd__00024jnicLoader
Java_abc_def_f_p_FriendCmd__00024jnicLoader
Java_abc_def_f_p_HClipCmd__00024jnicLoader
Java_abc_def_f_p_VClipCmd__00024jnicLoader
Java_abc_def_utils_AntiDump__00024jnicLoader
Java_abc_def_utils_BindingUtils__00024jnicLoader
Java_abc_def_utils_BlockUtils__00024jnicLoader
Java_abc_def_utils_ColorUtils__00024jnicLoader
Java_abc_def_utils_DamageUtils_000241__00024jnicLoader
Java_abc_def_utils_DamageUtils__00024jnicLoader
Java_abc_def_utils_EntityUtils__00024jnicLoader
Java_abc_def_utils_FileTransferable__00024jnicLoader
Java_abc_def_utils_GameUtils_00024Client__00024jnicLoader
Java_abc_def_utils_GameUtils__00024jnicLoader
Java_abc_def_utils_GifDecoder__00024jnicLoader
Java_abc_def_utils_HttpUtils__00024jnicLoader
Java_abc_def_utils_InventoryUtils_000241__00024jnicLoader
Java_abc_def_utils_InventoryUtils__00024jnicLoader
Java_abc_def_utils_ItemUtils__00024jnicLoader
Java_abc_def_utils_KeyUtils__00024jnicLoader
Java_abc_def_utils_LevelUtils__00024jnicLoader
Java_abc_def_utils_MenuUtils__00024jnicLoader
Java_abc_def_utils_Mth__00024jnicLoader
Java_abc_def_utils_RandomUtils__00024jnicLoader
Java_abc_def_utils_RotationUtils__00024jnicLoader
Java_abc_def_utils_Rotation__00024jnicLoader
Java_abc_def_utils_TaskUtil__00024jnicLoader
Java_abc_def_utils_cosmetics_AnimatedCape__00024jnicLoader
Java_abc_def_utils_cosmetics_CapeManager__00024jnicLoader
Java_abc_def_utils_cosmetics_Cape__00024jnicLoader
Java_abc_def_utils_cosmetics_StaticCape__00024jnicLoader
Java_abc_def_utils_cosmetics_renderer_CapeRenderer__00024jnicLoader
Java_abc_def_utils_friends_FriendManager__00024jnicLoader
Java_abc_def_utils_friends_Friend__00024jnicLoader
Java_abc_def_utils_o_U__00024jnicLoader
Java_abc_def_utils_render_impl_Renderer3D_00024HeartType__00024jnicLoader
Java_abc_def_utils_render_impl_Renderer3D__00024jnicLoader
Java_abc_def_utils_render_y_FontRenderer_000241__00024jnicLoader
Java_abc_def_utils_render_y_FontRenderer_00024DrawEntry__00024jnicLoader
Java_abc_def_utils_render_y_GlyphMap__00024jnicLoader
Java_abc_def_utils_render_y_GlyphPageRenderer__00024jnicLoader
Java_abc_def_utils_render_y_Glyph__00024jnicLoader
Java_abc_def_utils_render_y_IFont__00024jnicLoader

Sections

Size: 786KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 132KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.edata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.themida
Size: - Virtual size: 31.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 21.3MB - Virtual size: 21.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

Exports

Exports

Sections

Size: 786KB - Virtual size: 3.0MB

Size: 132KB - Virtual size: 322KB

Size: 512B - Virtual size: 36KB

Size: 16KB - Virtual size: 24KB

Size: 512B - Virtual size: 16B

Size: 2KB - Virtual size: 9KB

.edata Size: 12KB - Virtual size: 12KB

.idata Size: 1024B - Virtual size: 4KB

.tls Size: 512B - Virtual size: 4KB

.themida Size: - Virtual size: 31.1MB

.boot Size: 21.3MB - Virtual size: 21.3MB

.reloc Size: 16B - Virtual size: 4KB

.edata
Size: 12KB - Virtual size: 12KB

.idata
Size: 1024B - Virtual size: 4KB

.tls
Size: 512B - Virtual size: 4KB

.themida
Size: - Virtual size: 31.1MB

.boot
Size: 21.3MB - Virtual size: 21.3MB

.reloc
Size: 16B - Virtual size: 4KB