[tobys[.]dk]EnhancedAim_Cracked_CS1[.]6[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

[tobys.dk]EnhancedAim_Cracked_CS1.6.rar
Size

357KB
MD5

3de2e73f46c39fe572e8e197d54814c6
SHA1

d792680c1efd1d303b86172015834db09bda5e4f
SHA256

bd1945076f402fc099cf82088b93e36e1ff49edbe345ad684cf4018969ce948f
SHA512

16b4a6af2c5972e0f2685f9e20a5f1376ea981c45494501f75bfd9fd0b4869d2ced9ee8f9bc306b9f22413fbc34548fb8ceed02a160e770e9387305a4c444ee7
SSDEEP

6144:CtDLZyjQISxpBx+k215mHOCAW60GuuYlF1yH0Q7zUWYwFbus0:CtxyU9xvtG5mHOCAzruJ1yB7fYkA

Score

7^/10

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 1 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6.dll	acprotect

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6.dll
unpack001/EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6.exe

Files

[tobys.dk]EnhancedAim_Cracked_CS1.6.rar
.rar

Password: www.tobys.dk
EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6.dll
.dll windows:1 windows x86 arch:x86

Password: www.tobys.dk

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

#debug
Size: 360KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

log
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6.exe
.exe windows:4 windows x86 arch:x86

Password: www.tobys.dk

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 430KB - Virtual size: 429KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 75KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
EnhancedAim Cracked CS1.6/EnhancedAim_CS1.6_[cracked-#debuglog].nfo
EnhancedAim Cracked CS1.6/More Counter-Strike hacks!.url
.url
EnhancedAim Cracked CS1.6/TobysCheat.txt
EnhancedAim Cracked CS1.6/readme.txt

Sharing

General

Malware Config

Signatures

Files

Password: www.tobys.dk

Password: www.tobys.dk

Headers

DLL Characteristics

File Characteristics

Sections

#debug Size: 360KB - Virtual size: 360KB

log Size: 4KB - Virtual size: 4KB

Password: www.tobys.dk

Headers

File Characteristics

Sections

CODE Size: 430KB - Virtual size: 429KB

DATA Size: 139KB - Virtual size: 139KB

BSS Size: - Virtual size: 75KB

.idata Size: 9KB - Virtual size: 9KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 26KB - Virtual size: 26KB

.rsrc Size: 39KB - Virtual size: 39KB

#debug
Size: 360KB - Virtual size: 360KB

log
Size: 4KB - Virtual size: 4KB

CODE
Size: 430KB - Virtual size: 429KB

DATA
Size: 139KB - Virtual size: 139KB

BSS
Size: - Virtual size: 75KB

.idata
Size: 9KB - Virtual size: 9KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 26KB - Virtual size: 26KB

.rsrc
Size: 39KB - Virtual size: 39KB