Project64k[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Project64k.exe
Size

544KB
MD5

3c14bc5d970b6a908a1d44be44dfd334
SHA1

0e6ee1aebc341b05de134fa8da83b1dad3c2e97e
SHA256

83f3decb3d6e52f99bf1f27e1ebed5c626f82549b2f0d861b63c5153d215271d
SHA512

99718abc4e63714e0bfc5981d2fec70b9e1fcf218ff4229bc505897b76aec779fddbabdb375bb92edc38401b86512b488e4895b22a124bd8847bda81046e4bbb
SSDEEP

12288:2OyCLAt5VYrXiMjydmYXqXl1Sg4dWmwpdBGa:2oLAt3YryMjydmYaXlSdWmq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Project64k.exe

Files

Project64k.exe
.exe windows:4 windows x86

768cdad2a07f2a432efa0f4367a52861

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeGetDevCaps
timeEndPeriod
timeGetTime

comctl32

PropertySheetA
InitCommonControlsEx
ord17
ord6

kernel32

CloseHandle
VirtualFree
WriteFile
SetFilePointer
CreateFileA
ReadFile
lstrcmpiA
FindClose
FindNextFileA
FindFirstFileA
GetProcAddress
LoadLibraryA
CreateDirectoryA
GetLastError
LocalFree
VirtualProtect
TerminateThread
GetExitCodeThread
PulseEvent
SuspendThread
ReleaseMutex
WaitForSingleObject
VirtualAlloc
ResumeThread
QueryPerformanceCounter
CreateEventA
GetFileSize
SetThreadPriority
GetCurrentThread
FreeLibrary
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStringTypeW
GetPrivateProfileSectionNamesA
MultiByteToWideChar
GetFileType
GetStdHandle
SetHandleCount
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapCreate
HeapDestroy
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapReAlloc
RtlUnwind
HeapAlloc
HeapFree
GetEnvironmentStringsW
LCMapStringA
GetEnvironmentStrings
LCMapStringW
SetStdHandle
ExitThread
CreateThread
Sleep
CreateMutexA
QueryPerformanceFrequency
lstrcpyA
DeleteFileA
SetEndOfFile
FormatMessageA
GetModuleFileNameA
GetStringTypeA

user32

ModifyMenuA
PeekMessageA
MsgWaitForMultipleObjects
GetDlgItemInt
CreateMenu
FillRect
DrawTextA
IsWindow
GetSystemMetrics
DeleteMenu
IsMenu
SetWindowTextA
IsWindowVisible
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
InsertMenuItemA
RegisterClassA
ValidateRect
IsIconic
GetWindowRect
PostQuitMessage
DestroyWindow
DefWindowProcA
ShowCursor
GetMenuItemInfoA
SetMenuItemInfoA
GetSubMenu
DrawMenuBar
SetActiveWindow
SetRect
GetMenu
AdjustWindowRectEx
MoveWindow
EnableWindow
BeginPaint
EndPaint
EnableMenuItem
GetMenuState
CheckMenuItem
InvalidateRect
ShowWindow
GetClientRect
GetWindowPlacement
CreateDialogParamA
SetWindowPos
SetForegroundWindow
CreateWindowExA
GetWindowLongA
SetWindowLongA
GetMessagePos
MapWindowPoints
DialogBoxParamA
MessageBoxA
SetFocus
SendDlgItemMessageA
PostMessageA
EndDialog
GetDlgItem
SendMessageA
GetDlgItemTextA
SetDlgItemTextA
LoadIconA

gdi32

CreateSolidBrush
CreateFontIndirectA
SetBkMode
GetStockObject
TextOutA
SetTextColor
SelectObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHChangeNotify
ShellExecuteA
SHBrowseForFolderA

config/netplay

_kailleraEndGame@0
_kailleraSelectServerDialog@4
_kailleraSetInfos@4
_kailleraShutdown@0
_kailleraInit@0
_kailleraModifyPlayValues@8
_kailleraChatSend@4

Sections

.text
Size: 380KB - Virtual size: 377KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

768cdad2a07f2a432efa0f4367a52861

Headers

File Characteristics

Imports

winmm

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

config/netplay

Sections

.text Size: 380KB - Virtual size: 377KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 40KB - Virtual size: 350KB

.rsrc Size: 108KB - Virtual size: 107KB

.text
Size: 380KB - Virtual size: 377KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 40KB - Virtual size: 350KB

.rsrc
Size: 108KB - Virtual size: 107KB