DLLInjector_[unknowncheats[.]me]_[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

DLLInjector_[unknowncheats.me]_.exe
Size

105KB
MD5

1211c7b9748cb76ef8011035c331d402
SHA1

df25881d7bde05559cdeea614def1b7ec97a0d4c
SHA256

a5aa8580c67f7a9b05262326be0ce0ac8317ca262a28145e4f174280dfdf60dc
SHA512

33447450f6a6a9b0217c4d81437240763350e809003dff5e9bb3b581b07d1c8642064309891ae636e8dc16074078aa9da18c3acc34d4d00121e4232d67c75929
SSDEEP

384:ROhi7+JknRW2h1wjMUN/j1WFaNWcc99Sjvb99Sjvba:uiyanRW66/TMb9Sbh9Sb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DLLInjector_[unknowncheats.me]_.exe

Files

DLLInjector_[unknowncheats.me]_.exe
.exe windows:6 windows x86 arch:x86

fe0de40a2d25af3784319263567b1b09

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\DLLInjector\DLLInjector\Release\DLLInjector.pdb

Imports

kernel32

OpenProcess
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
CloseHandle
LoadLibraryW
VirtualAllocEx
CreateRemoteThread
VirtualFreeEx
GetStartupInfoW
WaitForSingleObject
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleW
IsDebuggerPresent
WriteProcessMemory

user32

LoadCursorW
DefWindowProcW
MessageBoxW
LoadIconW
TranslateMessage
DispatchMessageW
ShowWindow
RegisterClassExW
SetWindowTextW
SendMessageW
UpdateWindow
GetWindowTextW
CreateWindowExW
PostQuitMessage
GetMessageW

comdlg32

GetOpenFileNameW

vcruntime140

__current_exception
__current_exception_context
memset
_except_handler4_common

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_initialize_narrow_environment
_controlfp_s
terminate
_crt_atexit
_register_onexit_function
_set_app_type
_configure_narrow_argv
_register_thread_local_exe_atexit_callback
_seh_filter_exe
_c_exit
_cexit
_get_narrow_winmain_command_line
_exit
exit
_initterm_e
_initterm

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

_set_new_mode

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe0de40a2d25af3784319263567b1b09

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

comdlg32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 988B

.rsrc Size: 92KB - Virtual size: 92KB

.reloc Size: 1024B - Virtual size: 576B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 988B

.rsrc
Size: 92KB - Virtual size: 92KB

.reloc
Size: 1024B - Virtual size: 576B