Sketches characters[.]rar

Sharing

Copy URL

Twitter E-mail

General

Target

Sketches characters.rar
Size

2.7MB
MD5

afee1b67854c6b4c31680c08d05bb663
SHA1

122f853e53f32ac56bc697d8bcba72f4ee52d787
SHA256

2d1122f001cf4d85e5bb23a9ccaecd2abd658b472e78ce1cd70ffeef970a9c81
SHA512

b488afca7177493c418fb7debf6f3f5ed81732e6c968441715b728697cd6293df2ea253758f3320208fce5c90bfca18ee01a548aa128031ffb43b71d019f134d
SSDEEP

49152:UVthL/508oXLrEf6l4mOgW++3EcT65XUzXbrJ2LPaRv+HbMsPRDSVKS9xn+sn:IthZ6sf6l4mk/6yzLrcoiM0p4dxnd

Score

N/A

Malware Config

Signatures

Files

Sketches characters.rar
.rar
Sketches characters/dark_knight.jpg
.jpg
Sketches characters/high_elf.jpg
Sketches characters/host_of_heaven.jpg
.jpg
Sketches characters/lich.jpg
.jpg
Sketches characters/nymph.jpg
Sketches characters/paladin.jpg
Sketches characters/sun_elf.jpg
Sketches characters/troll.jpg
Sketches characters/werewolf.jpg
Sketches characters/whiterow.pif
.exe windows x86

f8a06c977f16a564b547b150a2daf066

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetConsoleWindow
GetLastError
GetModuleHandleW
GetProcAddress
GetStartupInfoA
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualAlloc
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

__getmainargs
__initenv
__lconv_init
__mb_cur_max
__p__acmdln
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
atoi
calloc
exit
fprintf
fputc
free
fwrite
localeconv
malloc
memcpy
memset
setlocale
signal
strchr
strerror
strlen
strncmp
vfprintf
wcslen

user32

ShowWindow

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Sketches characters/wraith.jpg
.jpg

Sharing

General

Malware Config

Signatures

Files

f8a06c977f16a564b547b150a2daf066

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 34KB - Virtual size: 33KB

.data Size: 92KB - Virtual size: 91KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: - Virtual size: 2KB

.idata Size: 2KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 8B

.rsrc Size: 111KB - Virtual size: 110KB

.text
Size: 34KB - Virtual size: 33KB

.data
Size: 92KB - Virtual size: 91KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 2KB

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 8B

.rsrc
Size: 111KB - Virtual size: 110KB