test[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

test.zip
Size

18.9MB
MD5

2472f8cb9b10a033b8e73489717b1792
SHA1

bc242e30028c8bf96ad332d682a358653ec01f68
SHA256

c734631a9addf7d5ac92bc9d41664f1b2bef8ab0bbd98cadf3e35c05485e5d1e
SHA512

ff223c1f568bdbad312e1fdb13302cb9e329078974d801073984724d14fc6c6a82daf98f45bbe6a46be465714cdc78ef981e9c430912dc919993445b6589fa8c
SSDEEP

393216:J+vnJRvls0ucSVqEWi67SoXhBJPix3RIdFOhKbEILf864ZqpHK:o/vmLGIrcFOM5z8Z4HK

Score

N/A

Malware Config

Signatures

Files

test.zip
.zip
test/game.exe
.exe windows x86

4e4a6627de7e9ca137cc2b5458a93ad8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
strncpy
fread
fclose
ftell
fseek
memcpy
log10
fopen
_stricmp
strlen
strcpy
sprintf
strcmp
strncmp
_errno
realloc
malloc
free
calloc
floor
toupper
memmove
perror
_CIatan
fprintf
_CIlog
ldexp
_CIpow
qsort
_CIexp
ceil
_CIsqrt
_CIcos
_CIsin
exit
frexp
_CIacos
memchr
abs
sin
fabs
tan
cos
_filbuf
atan
pow
sqrt
__CxxFrameHandler

kernel32

GetModuleHandleA
HeapCreate
GetTickCount
HeapDestroy
ExitProcess
GetModuleFileNameA
HeapFree
HeapAlloc
LoadLibraryA
GetProcAddress
Sleep
CreateThread
CloseHandle
FreeLibrary
CreateFileA
GetFileSize
ReadFile
GetCurrentThreadId
GetCurrentProcessId
InitializeCriticalSection
GetCommandLineA
QueryPerformanceFrequency
QueryPerformanceCounter
SetLastError
WriteFile
SetFilePointer
HeapReAlloc

comctl32

InitCommonControls
InitCommonControlsEx

user32

GetSystemMetrics
GetFocus
MessageBoxA
GetWindowThreadProcessId
IsWindowVisible
IsWindowEnabled
GetForegroundWindow
EnableWindow
EnumWindows
ClipCursor
ShowCursor
GetWindowRect
SetCursorPos
SetMenu
DestroyMenu
GetPropA
GetMenu
CallWindowProcA
CreateMenu
SetWindowLongA
SetPropA
AppendMenuA
SetRect
GetClientRect
SetWindowPos
GetDC
ReleaseDC
CreateWindowExA
FillRect
InvalidateRect
ShowWindow
DestroyWindow
BeginPaint
EndPaint
DefWindowProcA
LoadIconA
RegisterClassExA
SendMessageA
GetWindowTextLengthA
SetWindowTextA
GetWindowTextA
GetWindowLongA
PeekMessageA
TranslateMessage
DispatchMessageA
RemovePropA
GetParent
GetWindow
SetActiveWindow
UnregisterClassA
DestroyAcceleratorTable
LoadCursorA
RegisterClassA
AdjustWindowRect
GetActiveWindow
CreateAcceleratorTableA
RedrawWindow
MsgWaitForMultipleObjects
GetMessageA
TranslateAcceleratorA
LoadImageA
SetCursor
MapWindowPoints
MoveWindow
SystemParametersInfoA
GetKeyState
SetCapture
PostMessageA
GetCursorPos
ReleaseCapture
EnumChildWindows
DefFrameProcA
SetFocus
IsChild
GetClassNameA

gdi32

GetDeviceCaps
GetStockObject
DeleteObject
CreateSolidBrush
CreatePen
SelectObject
DeleteDC
SetTextAlign
SetTextColor
SetPixelV
Rectangle
SetBkColor
SetROP2
SetBkMode

ole32

CoInitialize
RevokeDragDrop
CoCreateInstance

winmm

timeEndPeriod

Sections

.code
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 159KB - Virtual size: 595KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
test/game.pak

Sharing

General

Malware Config

Signatures

Files

4e4a6627de7e9ca137cc2b5458a93ad8

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

user32

gdi32

ole32

winmm

Sections

.code Size: 82KB - Virtual size: 82KB

.text Size: 173KB - Virtual size: 173KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 159KB - Virtual size: 595KB

.rsrc Size: 7KB - Virtual size: 6KB

.code
Size: 82KB - Virtual size: 82KB

.text
Size: 173KB - Virtual size: 173KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 159KB - Virtual size: 595KB

.rsrc
Size: 7KB - Virtual size: 6KB