Static task
static1
General
-
Target
game.exe
-
Size
6.6MB
-
MD5
2f975ffdfe4c775552ee7a1c62fb7e0e
-
SHA1
26f8713cbd85b2a70e81b126e9187b93238a3a87
-
SHA256
c48c1445d8642800b01a116c5c762a9f2ade141b64e862def64430d9fcfe558b
-
SHA512
36d6fa92bb7cc384295107bc15a4584a555df01240b5ab821a01ea666967f440a91e3d59cfab15995d503975a05c4a3406336d1e55c9c46422ad4759907bc878
-
SSDEEP
98304:XlUzyU4SKQCIwichK3UY2R4DA7hZLLg/n+HiTvOUraf80naSY:1w4Sbxwd03UY2iDAjLsTvOUSdaS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource game.exe
Files
-
game.exe.exe windows x86
a4cf2756cd2f06c1402dfd7ddbf83cc7
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GlobalMemoryStatus
OutputDebugStringA
DebugBreak
SuspendThread
SetEvent
CreateEventA
ResetEvent
WaitForSingleObject
SetEnvironmentVariableA
CompareStringW
CompareStringA
CloseHandle
ReadFile
WriteFile
GetLastError
SetFilePointer
GetFileSize
GetCurrentDirectoryA
FindClose
CopyFileA
MoveFileA
DeleteFileA
SetFileAttributesA
CreateDirectoryA
GetFileAttributesA
CreateFileA
SetFileTime
GetModuleFileNameA
Sleep
FreeResource
LockResource
SizeofResource
LoadResource
FindResourceA
WideCharToMultiByte
GetVersionExA
MultiByteToWideChar
GetPrivateProfileStringA
WaitForMultipleObjects
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
RaiseException
InitializeCriticalSection
DeleteCriticalSection
GetProcAddress
LoadLibraryA
FreeLibrary
CreateProcessA
FindFirstChangeNotificationA
FindNextFileA
GetDateFormatA
GetFullPathNameA
GetTempFileNameA
GetTempPathA
GetTimeFormatA
FindFirstFileA
RemoveDirectoryA
GetThreadPriority
SetThreadPriority
TerminateThread
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
GetCurrentProcessId
CreateMutexA
QueryPerformanceFrequency
QueryPerformanceCounter
SetThreadAffinityMask
GetCurrentThread
GetCurrentThreadId
MulDiv
InterlockedIncrement
InterlockedDecrement
ReleaseSemaphore
GetSystemInfo
VirtualFree
DuplicateHandle
GetCurrentProcess
CreateSemaphoreA
VirtualAlloc
GetTickCount
CreateThread
RtlUnwind
ExitProcess
ExitThread
ResumeThread
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapFree
GetSystemTimeAsFileTime
HeapAlloc
HeapReAlloc
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FatalAppExitA
HeapSize
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualQuery
IsBadWritePtr
GetTimeZoneInformation
SetStdHandle
IsBadReadPtr
IsBadCodePtr
GetOEMCP
GetCPInfo
FlushFileBuffers
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
VirtualProtect
SetConsoleCtrlHandler
SetEndOfFile
GetLocaleInfoW
user32
SetWindowTextA
DrawTextA
DrawTextExA
GetDlgItemTextA
GetWindowTextA
LoadStringA
GetDlgItem
IsChild
GetFocus
MoveWindow
GetWindowRect
SystemParametersInfoA
GetClientRect
ReleaseDC
GetSystemMetrics
GetDC
TranslateMessage
IsDialogMessageA
SetDlgItemTextA
TranslateAcceleratorA
DispatchMessageA
ScreenToClient
WindowFromPoint
GetMessageA
PeekMessageA
DefWindowProcA
GetWindowLongA
SetWindowLongA
PostQuitMessage
UpdateWindow
RegisterClassExA
GetSysColorBrush
LoadCursorA
PostThreadMessageA
GetQueueStatus
MsgWaitForMultipleObjects
wvsprintfA
wsprintfA
RegisterWindowMessageA
CreateWindowExA
MessageBoxW
UnregisterClassA
FindWindowA
ShowWindow
SetForegroundWindow
LoadMenuA
LoadIconA
ShowCursor
PostMessageA
SendMessageA
IsWindow
MessageBoxA
ole32
CoTaskMemFree
OleUninitialize
OleInitialize
CoCreateInstance
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize
CoUninitialize
d3dx9_30
D3DXMatrixRotationQuaternion
D3DXQuaternionRotationMatrix
D3DXAssembleShader
dsound
ord11
dinput8
DirectInput8Create
d3d9
Direct3DCreate9
imm32
ImmAssociateContext
ImmGetContext
winmm
timeSetEvent
timeEndPeriod
timeBeginPeriod
timeKillEvent
timeGetTime
comctl32
ord17
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
gdi32
GetTextExtentPoint32A
GetTextExtentPoint32W
CreateFontA
GetStockObject
CreateDIBSection
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetTextMetricsA
DeleteDC
GetTextFaceA
SetStretchBltMode
DeleteObject
StretchDIBits
BitBlt
GetGlyphOutlineA
comdlg32
GetOpenFileNameA
GetSaveFileNameA
shell32
ShellExecuteA
SHGetDesktopFolder
ShellExecuteExA
DragQueryFileA
SHBrowseForFolderA
SHGetDataFromIDListA
SHGetPathFromIDListA
ExtractIconExA
SHGetFileInfoA
SHGetMalloc
SHFileOperationA
oleaut32
SysFreeString
SysAllocString
Sections
.text Size: 5.7MB - Virtual size: 5.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 352KB - Virtual size: 350KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 300KB - Virtual size: 76.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 12KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HATRED Size: 268KB - Virtual size: 265KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ