ut-genocideasgore[.]zip

Resubmissions

20/04/2023, 00:08

230420-afbejagb4x 3

20/04/2023, 00:04

230420-acmcmaeb48 7

19/04/2023, 23:50

230419-3vj97sea89 3

Sharing

Copy URL Twitter E-mail

General

Target

ut-genocideasgore.zip
Size

76.0MB
MD5

bcd1069ebbc0a8f5ad110160795ab681
SHA1

19665f397e301485b6fdc4ddd71c6351df4c4008
SHA256

d4b2b0520c456e030941995dfd60c6ee05c0cb7744f4fd25c23efb87526f6b20
SHA512

82eaef79c7e1ad9a46abf326aaba1b5c48698a9267fef384d3cecfc61d447643d4cacd7fdb4184f565c2856c1bbea085ec0a6a995566569a4a0b26007a211676
SSDEEP

1572864:KFf26R05qYZvRpLP9pqHSWjCbWmZ7UZRYJ3SAQYjJ1lrpHdSf+IHJM:KhW3LlpqtM7UfYJOYj/lrbSfW

Score

1^/10

Malware Config

Signatures

Files

ut-genocideasgore.zip
.zip
asgoreMANDO.ogg
bergentruckunghousingMANDO.ogg
bwoar.ogg
data.win
mus_bluezenith.ogg
mus_dogsong.ogg
mus_f_wind.ogg
mus_gameover.ogg
mus_lunatic.ogg
mus_prebattle1.ogg
mus_vsasgore.ogg
mus_yourbestfriend_3.ogg
options.ini
splash.png
.png
ut_genocideasgore.exe
.exe windows x86

c298e71af4ca56123bb72a70382e517b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetReadFile
InternetWriteFile
HttpOpenRequestA
InternetCloseHandle
InternetCrackUrlA
HttpEndRequestW
HttpQueryInfoA
InternetConnectA
InternetOpenA
InternetCanonicalizeUrlA
HttpSendRequestA
InternetGetConnectedState

d3d11

D3D11CreateDevice

dbghelp

MiniDumpWriteDump
SymFromAddr
SymInitialize

winmm

mciSendStringA
mciGetErrorStringA
joyGetPos
timeGetDevCaps
timeBeginPeriod
timeEndPeriod
joyGetPosEx

ws2_32

gethostname
WSACleanup
setsockopt
sendto
send
recvfrom
recv
listen
inet_ntoa
inet_addr
getsockopt
ioctlsocket
connect
closesocket
bind
accept
getpeername
select
__WSAFDIsSet
ntohs
ntohl
htons
htonl
WSAStartup
WSAGetLastError
WSAAddressToStringA
getaddrinfo
freeaddrinfo
socket

gdiplus

GdiplusStartup
GdiplusShutdown

comctl32

InitCommonControlsEx

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

rpcrt4

UuidToStringW
UuidCreate

dxgi

CreateDXGIFactory1

kernel32

SetCurrentDirectoryW
HeapReAlloc
GetTimeZoneInformation
SetStdHandle
ReadConsoleW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
SetConsoleCtrlHandler
DecodePointer
WriteFile
GetStdHandle
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindFirstFileExW
ReadFile
MoveFileExW
SetFileAttributesW
GetFileAttributesExW
GetModuleHandleExW
HeapWalk
HeapValidate
EncodePointer
LoadLibraryExW
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
InitializeSListHead
RaiseException
GetACP
GetOEMCP
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
UnhandledExceptionFilter
FreeLibraryWhenCallbackReturns
GetSystemTimeAsFileTime
GetCurrentProcessorNumber
IsProcessorFeaturePresent
CreateSymbolicLinkW
GetProcAddress
LoadLibraryW
WideCharToMultiByte
GetLastError
LoadLibraryA
MultiByteToWideChar
CloseHandle
WaitForSingleObjectEx
CreateEventExW
OutputDebugStringA
GetConsoleWindow
GetCurrentDirectoryW
DeleteFileW
GetFullPathNameW
SetLastError
CreateThread
GetExitCodeThread
GetModuleHandleW
LocalFree
FormatMessageW
SetCurrentDirectoryA
GetCPInfo
FreeLibrary
GetEnvironmentVariableW
CreateDirectoryW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
RemoveDirectoryW
Sleep
GetExitCodeProcess
CreateProcessW
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObject
SetWaitableTimer
CreateWaitableTimerW
GetTickCount64
GetCurrentProcess
GetCurrentThread
SetThreadPriority
SetPriorityClass
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalMemoryStatusEx
GetSystemInfo
GetVersionExW
GetLocaleInfoW
GetUserDefaultLCID
VerSetConditionMask
VerifyVersionInfoW
ExitProcess
lstrlenA
GetCommandLineW
ExpandEnvironmentStringsW
CreateFileW
GetFinalPathNameByHandleW
SetUnhandledExceptionFilter
SetErrorMode
GetCurrentProcessId
GetCurrentThreadId
GetModuleFileNameW
MoveFileA
FlushProcessWriteBuffers
CreateSemaphoreExW
InitOnceExecuteOnce
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
SetFileInformationByHandle
FormatMessageA
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
TryEnterCriticalSection
InitializeCriticalSectionEx
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RtlCaptureStackBackTrace
SubmitThreadpoolWork
CloseThreadpoolWork
CreateThreadpoolTimer
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
CloseThreadpoolWait
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
OutputDebugStringW
GetStringTypeW
SetEndOfFile
IsValidCodePage
HeapSize
GetCurrentDirectoryA
WriteConsoleW
GetFileInformationByHandleEx
CreateThreadpoolWork

user32

PeekMessageW
IsDialogMessageW
SetProcessDPIAware
GetForegroundWindow
UpdateWindow
SetWindowLongW
EnumDisplaySettingsW
MonitorFromWindow
GetMonitorInfoW
SetClipboardData
DispatchMessageW
OpenClipboard
keybd_event
GetAsyncKeyState
wsprintfW
GetCursorPos
GetActiveWindow
MapWindowPoints
ClientToScreen
SetCursorPos
MoveWindow
TranslateMessage
SetDlgItemTextA
CloseClipboard
ScreenToClient
SetWindowTextW
ReleaseDC
GetDC
GetFocus
GetDlgItemTextW
SetDlgItemTextW
GetDlgItem
EndDialog
DialogBoxParamW
CreateDialogParamW
LoadImageW
LoadCursorW
CallNextHookEx
SetCursor
AdjustWindowRectEx
GetWindowRect
GetClientRect
SetForegroundWindow
GetSystemMetrics
ReleaseCapture
SetCapture
GetKeyState
SetFocus
BringWindowToTop
SetWindowPos
ShowWindow
DestroyWindow
CreateWindowExW
RegisterClassExW
DefWindowProcW
PostMessageW
SendMessageW
MessageBoxW
GetRawInputDeviceList
GetRawInputDeviceInfoA
IsClipboardFormatAvailable
MessageBoxA
EmptyClipboard
DrawTextW
GetClipboardData

gdi32

SelectObject
GetStockObject
GetDeviceCaps

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

shell32

ShellExecuteW
SHGetFolderPathW

ole32

CoCreateInstance
CoCreateFreeThreadedMarshaler
CoTaskMemFree
CoInitialize

dwmapi

DwmGetCompositionTimingInfo

Sections

.text
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 989KB - Virtual size: 989KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 538KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

minATL
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mydata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

c298e71af4ca56123bb72a70382e517b

Headers

DLL Characteristics

File Characteristics

Imports

wininet

d3d11

dbghelp

winmm

ws2_32

gdiplus

comctl32

version

rpcrt4

dxgi

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

dwmapi

Sections

.text Size: 3.2MB - Virtual size: 3.2MB

.rdata Size: 989KB - Virtual size: 989KB

.data Size: 538KB - Virtual size: 2.8MB

minATL Size: 512B - Virtual size: 12B

.mydata Size: 512B - Virtual size: 8B

.rsrc Size: 105KB - Virtual size: 104KB

.text
Size: 3.2MB - Virtual size: 3.2MB

.rdata
Size: 989KB - Virtual size: 989KB

.data
Size: 538KB - Virtual size: 2.8MB

minATL
Size: 512B - Virtual size: 12B

.mydata
Size: 512B - Virtual size: 8B

.rsrc
Size: 105KB - Virtual size: 104KB