0153aca88f541060e2517824721713570a7c7b1fc6286ddbb0a792f329dfcfd8

Sharing

Copy URL Twitter E-mail

General

Target

0153aca88f541060e2517824721713570a7c7b1fc6286ddbb0a792f329dfcfd8
Size

352KB
MD5

ffe4ef4619e6b076caa160caae932df3
SHA1

c827d8377c4c23785588212dc34b2d79a06f704f
SHA256

0153aca88f541060e2517824721713570a7c7b1fc6286ddbb0a792f329dfcfd8
SHA512

78d83056e10e8b6c9dcaaf3fc13f950ae5a7effd1c93e160c771932e59b35ceff86566d2b3c603d4e06b7a958008bc7055c7ff4f5239eb2ef7eb11479e4e0232
SSDEEP

6144:EkDb0tShqgDjMaoRIVZHDsYf0rwKlJYEUyIMBMCnWewGkeHYcPOwjhHxpI4KcG5s:EULo0xobUyZDnWedkeHvmKRpI+KR4i1G

Score

N/A

Malware Config

Signatures

Files

0153aca88f541060e2517824721713570a7c7b1fc6286ddbb0a792f329dfcfd8
.7z
三国志Ⅱ--霸王的大陆1.0/说明.txt
三国志Ⅱ--霸王的大陆1.0/霸王的大陆.exe
.exe windows x86

ce2b49c5b0a80ce1efc21342644d634f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
WritePrivateProfileStructA
ReleaseMutex
FreeLibrary
GetPrivateProfileStructA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetModuleFileNameA
GetCurrentThreadId
GetLocalTime
SizeofResource
QueryPerformanceFrequency
CreateFileA
GetFileInformationByHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
CloseHandle
CreateEventA
CreateMutexA
GetLastError
SetEvent
HeapAlloc
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
ReadFile
GetProcAddress
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetOEMCP
GetACP
GetCPInfo
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
HeapFree
RaiseException
CreateThread
RtlUnwind
LeaveCriticalSection
DeleteCriticalSection
InterlockedExchange
InitializeCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
LoadLibraryA
LockResource
LoadResource
FindResourceA
Sleep
SetEndOfFile
WriteFile
SetThreadPriority
CreateDirectoryA
WaitForSingleObject
ResetEvent

user32

LoadIconA
SendDlgItemMessageA
GetWindowPlacement
EndDialog
LoadStringA
CreateDialogParamA
DestroyWindow
PostQuitMessage
DrawMenuBar
SendMessageA
IsDlgButtonChecked
DestroyMenu
GetWindowRect
CallNextHookEx
SetDlgItemTextA
DialogBoxParamA
UnhookWindowsHookEx
SetWindowsHookExA
IsDialogMessageA
FindWindowA
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
DeleteMenu
InsertMenuA
GetDlgItemInt
CheckRadioButton
GetMenuState
EnableMenuItem
GetMenuStringA
ModifyMenuA
SetWindowPlacement
SetForegroundWindow
RedrawWindow
SetCursor
wsprintfA
BeginPaint
EndPaint
GetMenuItemCount
GetMenuItemID
GetDlgItem
GetWindowLongA
SetMenu
GetMenu
CheckMenuItem
IsWindow
LoadCursorA
RegisterClassExA
CreateWindowExA
GetCursorPos
ClientToScreen
SetRect
MessageBoxA
GetDC
ReleaseDC
SetWindowTextA
InvalidateRect
GetWindowTextA
ShowWindow
SetWindowLongA
GetParent
KillTimer
SetTimer
DefWindowProcA
GetDlgItemTextA
ScreenToClient
TrackPopupMenu
GetClientRect
PostMessageA
SetWindowPos
CheckDlgButton
GetSystemMetrics
EnableWindow
LoadMenuA
GetSubMenu

gdi32

StretchDIBits
ExtTextOutA
SetBkColor
CreatePalette
GetSystemPaletteEntries
DeleteObject
RealizePalette
SelectPalette
AnimatePalette

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteA
DragAcceptFiles

ole32

CoInitialize
CoUninitialize
CoCreateInstance

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

comctl32

ImageList_LoadImageA
ImageList_Destroy
ord17

imm32

ImmAssociateContext

wsock32

setsockopt
accept
recv
send
socket
htonl
htons
bind
closesocket
WSAAsyncSelect
listen
ioctlsocket
inet_ntoa
connect
WSAGetLastError
WSAStartup
WSACleanup

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 807KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 564KB - Virtual size: 560KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce2b49c5b0a80ce1efc21342644d634f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

ole32

winmm

comctl32

imm32

wsock32

Sections

.text Size: 260KB - Virtual size: 259KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 44KB - Virtual size: 807KB

.rsrc Size: 564KB - Virtual size: 560KB

.text
Size: 260KB - Virtual size: 259KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 44KB - Virtual size: 807KB

.rsrc
Size: 564KB - Virtual size: 560KB