CoD v1[.]1 Cvar Unlocker_[unknowncheats[.]me]_[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

CoD v1.1 Cvar Unlocker_[unknowncheats.me]_.zip
Size

717KB
MD5

5f2b8a045cd189cfd9b2d50008519db1
SHA1

2836778758383d26383a1819c231766ba3d52daf
SHA256

5fb23a5a096552e3b669fab30c808a9bfe3afe0f29940ebb19c3e86cc9c5d004
SHA512

a8668f0f78a7b1e9abc89e593eb498548170b007ba84a81c4d6fd19335e7796c1981ea02df8faf9068dbbb36014cbe8c277da5683057d22cd10a41241f0146d1
SSDEEP

12288:LVPt9fDV1dgENWLgRFEmjsYUTjFzAX/0yklYOUpMQktctR1ULlWB16OC4S9tPDe0:L9fnXR3s3vFM/xeLEn1pC19RDL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CoDMP.exe

Files

CoD v1.1 Cvar Unlocker_[unknowncheats.me]_.zip
.zip
CoDMP.exe
.exe windows:4 windows x86 arch:x86

9e32267ef06c971fe2c290f755552518

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\trees\mk\game\CoDMP.pdb

Imports

winmm

midiInGetNumDevs
midiInOpen
joyGetDevCapsA
midiInStart
midiInGetDevCapsA
joyGetPosEx
midiInClose
timeEndPeriod
timeGetTime
timeBeginPeriod
joyGetNumDevs

wsock32

send
closesocket
socket
bind
recv
WSACleanup
sendto
setsockopt
htons
WSAGetLastError
ioctlsocket
ntohl
recvfrom
WSAStartup
connect
gethostname
inet_ntoa
gethostbyname

mss32

_AIL_start_3D_sample@4
_AIL_end_sample@4
_AIL_enumerate_3D_providers@12
_AIL_set_sample_adpcm_block_size@8
_AIL_set_3D_position@16
_AIL_allocate_3D_sample_handle@4
_AIL_set_3D_sample_offset@8
_AIL_open_stream@12
_AIL_set_3D_sample_playback_rate@8
_AIL_end_3D_sample@4
_AIL_set_3D_sample_volume@8
_AIL_stop_3D_sample@4
_AIL_set_stream_ms_position@8
_AIL_open_3D_provider@4
_AIL_resume_3D_sample@4
_AIL_3D_position@16
_AIL_stream_status@4
_AIL_sample_playback_rate@4
_AIL_load_sample_buffer@16
_AIL_sample_volume_pan@12
_AIL_minimum_sample_buffer_size@12
_AIL_set_sample_ms_position@8
_AIL_release_sample_handle@4
_AIL_set_DirectSound_HWND@8
_AIL_3D_sample_length@4
_AIL_set_redist_directory@4
_AIL_sample_buffer_ready@4
_AIL_3D_sample_playback_rate@4
_AIL_close_3D_provider@4
_AIL_stream_playback_rate@4
_AIL_set_file_callbacks@16
_AIL_start_stream@4
_AIL_stream_volume_pan@12
_AIL_set_sample_type@12
_AIL_last_error@0
_AIL_set_stream_volume_pan@12
_AIL_set_3D_distance_factor@8
_AIL_3D_sample_volume@4
_AIL_pause_stream@8
_AIL_set_sample_address@12
_AIL_set_3D_sample_info@8
_AIL_start_sample@4
_AIL_process_digital_audio@24
_AIL_WAV_info@8
_AIL_set_preference@8
_AIL_set_stream_loop_count@8
_AIL_set_sample_playback_rate@8
_AIL_set_sample_loop_count@8
_AIL_set_3D_room_type@8
_AIL_stream_ms_position@12
_AIL_stop_sample@4
_AIL_init_sample@4
_AIL_allocate_sample_handle@4
_AIL_3D_sample_status@4
_AIL_resume_sample@4
_AIL_set_sample_reverb_levels@12
_AIL_3D_sample_offset@4
_AIL_shutdown@0
_AIL_set_sample_volume_pan@12
_AIL_close_stream@4
_AIL_set_3D_sample_loop_count@8
_AIL_3D_provider_attribute@12
_AIL_set_stream_playback_rate@8
_AIL_sample_status@4
_AIL_size_processed_digital_audio@16
_AIL_set_stream_reverb_levels@12
_AIL_set_3D_sample_distances@12
_AIL_open_digital_driver@16
_AIL_startup@0
_AIL_digital_CPU_percent@4
_AIL_set_3D_sample_effects_level@8
_AIL_set_digital_master_room_type@8
_AIL_sample_position@4
_AIL_sample_ms_position@12

ddraw

DirectDrawEnumerateExA
DirectDrawCreateEx

kernel32

CompareStringA
VirtualQuery
GetSystemInfo
VirtualProtect
GetOEMCP
GetACP
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCPInfo
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
RaiseException
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
RtlUnwind
GetTimeZoneInformation
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
FlushFileBuffers
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
CompareStringW
FatalAppExitA
SetEnvironmentVariableA
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
TlsAlloc
GetCurrentThread
TlsGetValue
TlsSetValue
GetCurrentThreadId
SetLastError
TlsFree
GetCommandLineA
GetStartupInfoA
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
TerminateProcess
ExitProcess
GetFullPathNameA
CreateDirectoryA
FindNextFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
MoveFileA
GetSystemDirectoryA
CloseHandle
GetVersionExA
InitializeCriticalSection
SetEnvironmentVariableW
SetStdHandle
GetTickCount
SetEndOfFile
GetLocaleInfoW
SetConsoleCtrlHandler
GetCurrentProcessId
GetTempPathA
DeleteFileA
MulDiv
HeapDestroy
Module32Next
CreateToolhelp32Snapshot
GetCurrentDirectoryA
GetModuleFileNameA
GetTempFileNameA
CopyFileA
SetUnhandledExceptionFilter
DeleteCriticalSection
IsBadCodePtr
GetFileAttributesA
SetFileAttributesA
GlobalMemoryStatus
FreeLibrary
QueryPerformanceCounter
Sleep
GetProcAddress
LoadLibraryA
GetModuleHandleA
QueryPerformanceFrequency
CreateFileA
SetErrorMode
GlobalSize
GlobalLock
WaitForSingleObject
SetThreadExecutionState
IsBadReadPtr
FormatMessageA
WriteFile
GetDriveTypeA
OpenProcess
CreateProcessA
ReadFile
GlobalUnlock
Module32First
GetLastError

user32

MapVirtualKeyA
RegisterWindowMessageA
GetWindowLongA
SystemParametersInfoA
MoveWindow
ChangeDisplaySettingsA
EnumDisplaySettingsA
SetForegroundWindow
UnregisterHotKey
CreateWindowExA
MessageBoxA
GetDC
DestroyWindow
GetSystemMetrics
ReleaseCapture
ClipCursor
GetCursorPos
SetCursorPos
ShowCursor
SetCapture
GetWindowRect
OpenClipboard
DispatchMessageA
ShowWindow
PeekMessageA
GetClipboardData
GetForegroundWindow
TranslateMessage
SetFocus
wsprintfA
CloseClipboard
GetMessageA
RegisterClassA
LoadCursorA
UpdateWindow
LoadImageA
SetWindowPos
DefWindowProcA
SendMessageA
LoadIconA
AdjustWindowRect
CallWindowProcA
CloseWindow
SetWindowTextA
GetDesktopWindow
ReleaseDC
InvalidateRect
SetWindowLongA
GetWindowTextA
PostQuitMessage
SetTimer
RegisterHotKey

gdi32

SwapBuffers
ChoosePixelFormat
DeleteDC
DescribePixelFormat
CreateSolidBrush
SetBkColor
GetDeviceCaps
CreateFontA
SetTextColor
GetDeviceGammaRamp
SetDeviceGammaRamp
SetPixelFormat

advapi32

GetUserNameA

shell32

ShellExecuteA

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 204KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 20.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ReadMe.txt

Sharing

General

Malware Config

Signatures

Files

9e32267ef06c971fe2c290f755552518

Headers

File Characteristics

PDB Paths

Imports

winmm

wsock32

mss32

ddraw

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 204KB - Virtual size: 201KB

.data Size: 52KB - Virtual size: 20.3MB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 204KB - Virtual size: 201KB

.data
Size: 52KB - Virtual size: 20.3MB

.rsrc
Size: 4KB - Virtual size: 2KB