Valve Hammer Editor - MZ[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

Valve Hammer Editor - MZ.exe
Size

1.9MB
MD5

5c96002c2d09064e3064a32d73557c0e
SHA1

d9af9f35b9a1fd61617ce327912a428cf477e521
SHA256

9e092a7cb48a538069fd0e5ea81a393833fb5555affef948db3cbda18a849668
SHA512

3345b43c5d6c93f2704bd048448125429d4b8f24d7ed30ad1f91c61d72a7075ab6940ec61c857f20f211be10b7b5a9b88241e77095ae95100288af7052c9e358
SSDEEP

24576:0gcysVysUW7VX/LHHL1fGLP0rC9wjkrF/MmWUvuQGmPDEDOSRKi2VAoWomMmvu9G:eVU8lLHHeNJOmWxUw5V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Valve Hammer Editor - MZ.exe

Files

Valve Hammer Editor - MZ.exe
.exe windows x86

e2a50f9de306e92991377f596c89bf86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

opengl32

glShadeModel
glTexEnvi
glDeleteTextures
glTexImage2D
glTranslatef
glRotatef
glPointSize
glColor4f
glGetDoublev
glPolygonOffset
glFrontFace
glGetIntegerv
glSelectBuffer
glInitNames
glMultMatrixf
glViewport
glVertex2i
glLineWidth
glBlendFunc
glFlush
glClear
wglCreateContext
wglMakeCurrent
wglDeleteContext
glClearColor
glGetFloatv
glPopMatrix
glPopName
glRenderMode
glPushName
glMatrixMode
glPushMatrix
glLoadIdentity
glOrtho
glAlphaFunc
glGenTextures
glTexParameterf
glTexEnvf
glVertex3f
glPolygonMode
glEnable
glDepthFunc
glBindTexture
glEnd
glTexCoord2f
glColor4ub
glBegin
glColor3ub
glColor3f
glVertex3fv
glDisable
glDepthMask

glu32

gluBuild2DMipmaps
gluProject
gluUnProject
gluPickMatrix
gluPerspective

kernel32

FindClose
GetCurrentDirectoryA
FindResourceExA
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
MoveFileA
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
SetEnvironmentVariableA
SetCurrentDirectoryA
RtlUnwind
GetDriveTypeA
TerminateProcess
GetFileType
GetStartupInfoA
GetCommandLineA
RaiseException
HeapSize
HeapReAlloc
GetACP
SetEndOfFile
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
ExitProcess
GetStringTypeExA
GetFileSize
LCMapStringW
SetStdHandle
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadCodePtr
GetExitCodeProcess
CompareStringA
GetVolumeInformationA
GetShortPathNameA
CopyFileA
GetLastError
FindFirstFileA
FindNextFileA
LockFile
GlobalMemoryStatus
GetFileAttributesA
GetWindowsDirectoryA
GetModuleFileNameA
CreateDirectoryA
lstrcpynA
GetThreadLocale
UnlockFile
LCMapStringA
CompareStringW
GetProfileStringA
FlushFileBuffers
SetFilePointer
WriteFile
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
VirtualProtect
GetCurrentThread
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetTempFileNameA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalFree
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpiA
lstrcpyA
GlobalFindAtomA
GlobalDeleteAtom
LocalFree
GetModuleHandleA
GetProcAddress
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
lstrcmpA
InterlockedIncrement
lstrlenA
FormatMessageA
GetFullPathNameA
DeleteFileA
GlobalLock
CreateFileA
GlobalAlloc
GetCurrentProcess
GlobalUnlock
CreatePipe
WaitForSingleObject
DuplicateHandle
CreateProcessA
CloseHandle
PeekNamedPipe
ReadFile
IsBadWritePtr
GetVersionExA
IsBadReadPtr
HeapFree

user32

ShowOwnedPopups
GetMessageA
WindowFromPoint
DestroyCursor
LoadStringA
WaitMessage
GetWindowThreadProcessId
IsZoomed
MapDialogRect
IsRectEmpty
DeleteMenu
GetSystemMenu
GetClassNameA
GetSysColorBrush
FindWindowA
CharUpperA
InsertMenuA
GetMenuStringA
DestroyIcon
GetDCEx
LockWindowUpdate
InvertRect
GetTabbedTextExtentA
EnableMenuItem
GetNextDlgTabItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
ReuseDDElParam
UnpackDDElParam
MapWindowPoints
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
SendDlgItemMessageA
GetMessagePos
GetForegroundWindow
CheckMenuItem
SetWindowPos
GetDesktopWindow
SetMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
UnhookWindowsHookEx
GetLastActivePopup
GetClassInfoA
ChangeDisplaySettingsA
MessageBoxA
OpenClipboard
EmptyClipboard
TranslateMessage
DispatchMessageA
GetActiveWindow
SetCursorPos
ClipCursor
ShowCursor
GetUpdateRgn
LoadMenuA
GetSubMenu
ClientToScreen
GetCapture
GetFocus
GetAsyncKeyState
GetKeyState
GetCursorPos
ShowScrollBar
SetCursor
wsprintfA
ScreenToClient
KillTimer
IsWindowVisible
IsWindow
SetForegroundWindow
CopyRect
DrawFocusRect
LoadBitmapA
PostQuitMessage
CreatePopupMenu
AppendMenuA
SetTimer
GetDlgItem
GetWindow
GetWindowLongA
BringWindowToTop
PeekMessageA
LoadIconA
SetActiveWindow
RedrawWindow
SetParent
SetRect
OffsetRect
PtInRect
LoadCursorA
InvalidateRect
UpdateWindow
GetWindowRect
FillRect
InflateRect
FrameRect
ValidateRect
SendMessageA
EnableWindow
BeginPaint
GetSysColor
EndPaint
GetClientRect
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
wvsprintfA
EndDialog
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
GetDC
DestroyMenu
DefMDIChildProcA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
DrawMenuBar
IntersectRect
RemovePropA
GetMessageTime
SetWindowLongA
SetCapture
ReleaseDC
ReleaseCapture
GetParent
PostMessageA
GetUpdateRect
IsWindowEnabled
CloseClipboard
SetClipboardData
GetSystemMetrics
HideCaret
IsWindowUnicode
ShowCaret
DefDlgProcA
UnregisterClassA
CharNextA
ExcludeUpdateRgn

gdi32

CreateSolidBrush
CreateRectRgnIndirect
GetWindowOrgEx
CreateCompatibleBitmap
GetRgnBox
BitBlt
CreateRectRgn
RectVisible
TextOutA
GetStockObject
SetStretchBltMode
DescribePixelFormat
SetPixelFormat
ChoosePixelFormat
SwapBuffers
RealizePalette
CreateFontA
GetClipBox
GetTextMetricsA
GetObjectA
CreateCompatibleDC
SetPaletteEntries
CreatePalette
GetTextExtentPoint32A
GetDeviceCaps
DeleteDC
CreatePen
Rectangle
CreateBrushIndirect
Arc
Ellipse
SelectObject
GetCharWidthA
StretchDIBits
StartDocA
SelectPalette
SetBkMode
RestoreDC
SetROP2
SetMapMode
SetPolyFillMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SetWindowExtEx
IntersectClipRect
ExcludeClipRect
GetTextExtentPointA
LineTo
MoveToEx
SetTextAlign
SetTextColor
SetBkColor
GetCurrentPositionEx
CreateFontIndirectA
DeleteObject
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
ExtTextOutA
Escape
PatBlt
SetRectRgn
CombineRgn
SaveDC
DPtoLP
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
LPtoDP
EnumFontFamiliesExA
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
CreateDIBitmap
SetPixel
CreateBitmap

comdlg32

GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA
ChooseColorA
GetFileTitleA
PrintDlgA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

GetFileSecurityA
RegSetValueA
RegCreateKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey
SetFileSecurityA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

ExtractIconA
DragFinish
DragQueryFileA
SHGetPathFromIDListA
FindExecutableA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA

comctl32

ord17
ImageList_SetBkColor
ImageList_DragMove
ImageList_DragLeave
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_DragEnter
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_Destroy
DestroyPropertySheetPage
CreatePropertySheetPageA
PropertySheetA
_TrackMouseEvent

ole32

CoTaskMemFree

Sections

.text
Size: 716KB - Virtual size: 714KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 960KB - Virtual size: 959KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2a50f9de306e92991377f596c89bf86

Headers

File Characteristics

Imports

winmm

opengl32

glu32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

Sections

.text Size: 716KB - Virtual size: 714KB

.rdata Size: 120KB - Virtual size: 118KB

.data Size: 40KB - Virtual size: 223KB

.idata Size: 16KB - Virtual size: 13KB

.rsrc Size: 960KB - Virtual size: 959KB

.reloc Size: 72KB - Virtual size: 68KB

.text
Size: 716KB - Virtual size: 714KB

.rdata
Size: 120KB - Virtual size: 118KB

.data
Size: 40KB - Virtual size: 223KB

.idata
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 960KB - Virtual size: 959KB

.reloc
Size: 72KB - Virtual size: 68KB