Yu-Gi-Oh! Chaos Reborn Ver 2[.]0[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

Yu-Gi-Oh! Chaos Reborn Ver 2.0.rar
Size

186.1MB
MD5

013881eefc32f73e4ad0af4e6a84e72c
SHA1

849f14d1457b463a2d39a772bea4408606af8628
SHA256

5e2d4b633ee3f25ecf737f08a748b71d8c36cd89014c763dc024278be236d889
SHA512

8f9977fcbc28e100e312f63e89571d274440aa92c98d283787b390d46aa6e33828d18aad1a48811ff444f09e5c27987a056f40e17a25eae3d30cea937678483f
SSDEEP

3145728:WGVfA5UFfNq95LhR0IUwoxoB2pZMuzjvQdLruQIWOfLuXhVwzC/BDh6dHBEZPrbP:jbfYf0GUlvvAG1jc8zOhM+ZH5W5tA

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Yu-Gi-Oh! Chaos Reborn Ver 2.0/All Cards.exe
unpack001/Yu-Gi-Oh! Chaos Reborn Ver 2.0/Exporter.exe
unpack001/Yu-Gi-Oh! Chaos Reborn Ver 2.0/Yu-Gi-Oh! Chaos Reborn.exe

Files

Yu-Gi-Oh! Chaos Reborn Ver 2.0.rar
.rar
Yu-Gi-Oh! Chaos Reborn Ver 2.0/All Cards.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 242KB - Virtual size: 242KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Data.dat
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Exporter.exe
.exe windows x86

5b096958ec3c36cf2bbc19cd35eee00a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
SizeofResource
FindResourceA
FindClose
FindNextFileA
CopyFileA
FindFirstFileA
WriteFile
GetFileSize
CreateDirectoryA
LockResource
LCMapStringW
LCMapStringA
GetLocaleInfoW
LoadLibraryA
GetProcAddress
GetOEMCP
CreateFileA
ReadFile
CloseHandle
GetLastError
WideCharToMultiByte
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
RaiseException
HeapFree
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
HeapSize
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
MultiByteToWideChar
IsBadReadPtr
IsBadCodePtr
GetACP

user32

DialogBoxParamA
GetWindowLongA
GetDlgItemTextA
MessageBoxA
LoadIconA
SendMessageA
SetWindowTextA
SetDlgItemTextA
EndDialog

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Region.dat
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Save/system.dat
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Thumbs.db
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Voice.dat
Yu-Gi-Oh! Chaos Reborn Ver 2.0/Yu-Gi-Oh! Chaos Reborn.exe
.exe windows x86

73f4fd99b779a9c0fd608044a8c83822

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempFileNameA
GetTempPathA
GetCurrentDirectoryA
lstrcatA
lstrlenA
WriteFile
lstrcmpA
lstrcpyA
GetModuleHandleA
lstrcpynA
LocalFree
LocalUnlock
LocalLock
CreateMutexA
ReleaseMutex
GetModuleFileNameA
FindResourceA
CompareStringW
CompareStringA
SetEndOfFile
GetLocaleInfoW
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetStringTypeW
GetStringTypeA
IsBadWritePtr
DeleteFileA
VirtualFree
HeapCreate
HeapDestroy
SetUnhandledExceptionFilter
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
LCMapStringW
LCMapStringA
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
TlsGetValue
SetLastError
TlsAlloc
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
ExitThread
TlsSetValue
CreateThread
ResumeThread
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
HeapFree
RaiseException
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
FindFirstFileA
FindNextFileA
FindClose
GetCurrentThreadId
CreateFileA
GetFileSize
ReadFile
SetFilePointer
GlobalFree
GlobalAlloc
GlobalSize
GlobalReAlloc
GetLastError
CreateEventA
InitializeCriticalSection
WaitForSingleObject
CloseHandle
SetEvent
GetProcAddress
FreeLibrary
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MulDiv
CreateDirectoryA
GetTickCount
Sleep
WideCharToMultiByte
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
VirtualAlloc
SetEnvironmentVariableA

user32

ToAscii
CheckMenuItem
GetMenu
GetMenuState
DrawMenuBar
GetActiveWindow
SendMessageA
GetMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
PostMessageA
MapVirtualKeyA
wvsprintfA
ReleaseDC
GetDC
AdjustWindowRect
GetCursorPos
EndPaint
BeginPaint
OffsetRect
ClientToScreen
GetWindow
GetWindowRect
GetTopWindow
ScreenToClient
EnumWindows
GetKeyboardLayout
GetKeyboardState
SetRect
CallWindowProcA
wsprintfA
MessageBoxA
PostQuitMessage
GetWindowLongA
DefWindowProcA
ShowCursor
SetMenu
GetSystemMetrics
SetFocus
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
SetWindowLongA
DestroyWindow
SetWindowPos
IntersectRect
SetCursorPos
GetClientRect
WINNLSEnableIME
GetWindowThreadProcessId
ShowWindow
SetForegroundWindow

gdi32

GetSystemPaletteEntries
SetDIBitsToDevice
GetStockObject
GetTextExtentPoint32W
CreateFontA
SetBkMode
SetTextColor
GetDeviceCaps
DeleteDC
DeleteObject
CreateDIBSection
CreateCompatibleDC
SelectObject
TextOutW
SetBkColor

advapi32

GetUserNameA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CreateStreamOnHGlobal

oleaut32

OleLoadPicture

winmm

timeEndPeriod
timeBeginPeriod
timeGetDevCaps
joyGetPosEx
joyGetNumDevs
joyGetDevCapsA
joyGetPos
timeGetTime

msacm32

acmStreamClose
acmStreamPrepareHeader
acmStreamConvert
acmStreamUnprepareHeader
acmFormatSuggest
acmStreamOpen
acmStreamSize

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Yu-Gi-Oh! Chaos Reborn Ver 2.0/seven.dat

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

CODE Size: 349KB - Virtual size: 349KB

DATA Size: 5KB - Virtual size: 4KB

BSS Size: - Virtual size: 3KB

.idata Size: 9KB - Virtual size: 8KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.reloc Size: 25KB - Virtual size: 25KB

.rsrc Size: 242KB - Virtual size: 242KB

5b096958ec3c36cf2bbc19cd35eee00a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 6KB

.rsrc Size: 8KB - Virtual size: 5KB

73f4fd99b779a9c0fd608044a8c83822

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

winmm

msacm32

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 68KB - Virtual size: 64KB

.data Size: 32KB - Virtual size: 4.4MB

.rsrc Size: 148KB - Virtual size: 144KB

CODE
Size: 349KB - Virtual size: 349KB

DATA
Size: 5KB - Virtual size: 4KB

BSS
Size: - Virtual size: 3KB

.idata
Size: 9KB - Virtual size: 8KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.reloc
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 242KB - Virtual size: 242KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 8KB - Virtual size: 5KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 68KB - Virtual size: 64KB

.data
Size: 32KB - Virtual size: 4.4MB

.rsrc
Size: 148KB - Virtual size: 144KB