VIP Inject File 1510 2024[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

VIP Inject File 1510 2024.zip
Size

482KB
MD5

9b8aae8c94913c66eb0e7aeda0f2e491
SHA1

8125cd270b6a99947933e6b1721e6998764c4328
SHA256

17b2f85fc6da0b93125b5f1f2bc5f7523919b652e280a8ca5a12f2f4254ff32d
SHA512

554714681234b4182ae3239b58142c56aae1749a0ac549c59a1c704ba6204d519848bc088dfc918decc456c29c42d443ecf7d416af8c2110509788335bb8e598
SSDEEP

6144:W5q0g25yjBVL8DwOjDs2GNqKBCchRxwqaZ8VVeDCdFtiuTM2N4mFGYpfeYbzbTmi:kaWAoMQD5KB/xw7Z8VFtIgjFGyb7MUEu

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AppXor.exe
unpack001/Bunifu_UI_v1.52.dll
unpack001/mscoore.dll

Files

VIP Inject File 1510 2024.zip
.zip
AppXor.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 623KB - Virtual size: 622KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Bunifu_UI_v1.52.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 218KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mscoore.dll
.dll windows:6 windows x86 arch:x86

1968aa52fd534f7b0e071aebfa112108

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\10\Downloads\LoadLibray-Injector-VAC-Bypass-main-main\LoadLibray-Injector-VAC-Bypass-main-main\Injector\Release\SamarindaCheat.pdb

Imports

kernel32

Thread32First
GetVolumeInformationA
WaitForSingleObject
GetModuleHandleA
CreateToolhelp32Snapshot
Sleep
TerminateThread
CloseHandle
K32GetModuleInformation
CreateThread
AddVectoredExceptionHandler
GetProcAddress
ExitProcess
FlushInstructionCache
IsBadReadPtr
Thread32Next
GetTickCount
VirtualQuery
OpenThread
GetComputerNameA
SetPriorityClass
DeviceIoControl
GetLastError
CreateFileA
GetVersionExA
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentProcess
VirtualProtect
GetModuleFileNameA
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
SetLastError

user32

GetCursorPos
ScreenToClient
GetForegroundWindow
MessageBoxA

advapi32

GetUserNameA

msvcp140

_Query_perf_counter
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xinvalid_argument@std@@YAXPBD@Z
_Query_perf_frequency

ws2_32

connect
inet_addr
htons

vcruntime140

_except_handler4_common
_CxxThrowException
__std_type_info_destroy_list
__std_exception_destroy
__CxxFrameHandler3
memcpy
memmove
memset
strchr
strstr
__std_exception_copy

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free

api-ms-win-crt-convert-l1-1-0

strtof

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__stdio_common_vsprintf_s

api-ms-win-crt-runtime-l1-1-0

_crt_atexit
_cexit
_initterm
_initterm_e
_execute_onexit_table
_register_onexit_function
_errno
_invalid_parameter_noinfo_noreturn
_initialize_onexit_table
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment

api-ms-win-crt-string-l1-1-0

isspace
_strdup
strncpy
tolower
isprint
isalnum

api-ms-win-crt-math-l1-1-0

_libm_sse2_sqrt_precise

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 31.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 623KB - Virtual size: 622KB

.rsrc Size: 31KB - Virtual size: 30KB

.reloc Size: 512B - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 218KB - Virtual size: 217KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

1968aa52fd534f7b0e071aebfa112108

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

advapi32

msvcp140

ws2_32

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-math-l1-1-0

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 1KB - Virtual size: 31.2MB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 623KB - Virtual size: 622KB

.rsrc
Size: 31KB - Virtual size: 30KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 218KB - Virtual size: 217KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 1KB - Virtual size: 31.2MB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 9KB - Virtual size: 9KB