Bayonetta[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Bayonetta.exe
Size

11.6MB
MD5

32fb9111364d521f092ab64a1bf17c32
SHA1

26825a3ff1b96767ecd7f43e39f11e5541aee2fa
SHA256

45aae9ee2319bd88ac6bcc8850c2f9a6086d59e3f751d06bf7f955c3bb811eb1
SHA512

387c325e5ba8bc81bcd3dd21e5b87b01c7a07be8a44ee397d825780d8a8866827a6a4d6c010b7c6f9892f14fd1228f4056043e60f0c37a90cb04852f14b1af66
SSDEEP

98304:bFSP2ryPscd1RK6Dfqx8F8ZrnfbIhv2e2oar:S2rWjfbcfssr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Bayonetta.exe

Files

Bayonetta.exe
.exe windows:5 windows x86 arch:x86

e476b30fab5d4a6bcc06e456bebe369c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

d3dx9_43

D3DXMatrixRotationX
D3DXMatrixTranspose
D3DXMatrixScaling
D3DXMatrixRotationAxis
D3DXMatrixInverse
D3DXMatrixTranslation
D3DXMatrixMultiply
D3DXMatrixRotationY
D3DXVec3Normalize
D3DXQuaternionSlerp
D3DXPlaneTransform
D3DXVec3TransformNormal
D3DXMatrixRotationZ
D3DXVec3TransformCoord
D3DXFloat32To16Array
D3DXMatrixRotationQuaternion
D3DXQuaternionRotationAxis
D3DXQuaternionNormalize
D3DXCreateEffectPool
D3DXVec3Project
D3DXCreateCubeTexture
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXCreateTextureFromFileInMemoryEx
D3DXCreateTexture
D3DXCompileShader
D3DXGetShaderConstantTable
D3DXSaveTextureToFileA
D3DXQuaternionMultiply

d3d9

Direct3DCreate9Ex
D3DPERF_BeginEvent
D3DPERF_EndEvent

dinput8

DirectInput8Create

xinput1_3

ord2
ord3

winmm

timeGetTime
timeEndPeriod
timeBeginPeriod

imm32

ImmGetContext
ImmReleaseContext
ImmNotifyIME

user32

DestroyWindow
SendMessageA
FindWindowA
GetDesktopWindow
ShowWindow
CreateWindowExA
AdjustWindowRect
GetSystemMetrics
UnregisterClassA
GetMonitorInfoA
SetForegroundWindow
UpdateWindow
EnumDisplayDevicesA
SetWindowLongA
GetWindowRect
SetCursorPos
ClientToScreen
GetClientRect
DispatchMessageA
TranslateMessage
PeekMessageA
DefWindowProcA
PostQuitMessage
ClipCursor
GetCursorPos
SetCursor
ShowCursor
GetFocus
SetWindowPos
ScreenToClient
RegisterClassExA
LoadCursorA
LoadIconA
SetClassLongA
LoadCursorFromFileA
SetFocus
GetDC
BeginPaint
EndPaint
GetKeyboardLayout
MapVirtualKeyExA
GetKeyNameTextW
GetKeyNameTextA
IsIconic
MessageBoxW
DialogBoxParamA
EndDialog
GetWindowTextA
GetDlgItem
SetWindowTextA
SendDlgItemMessageA

gdi32

GetDeviceCaps
GetObjectA

ole32

CoInitializeEx
CoUninitialize
OleUninitialize
CreateStreamOnHGlobal
OleInitialize
CoTaskMemFree
CoCreateInstance

olepro32

ord251

kernel32

HeapSetInformation
InterlockedCompareExchange
DecodePointer
EncodePointer
GetStartupInfoW
EnterCriticalSection
GetExitCodeThread
GetSystemInfo
SetEndOfFile
IsProcessorFeaturePresent
SetFilePointer
FlushFileBuffers
GetFileAttributesA
CreateEventA
SetEvent
ResetEvent
InterlockedExchange
SetThreadAffinityMask
GetCurrentThread
SetUnhandledExceptionFilter
GetCurrentProcessId
GetThreadPriority
GetCurrentProcess
GetProcessAffinityMask
RaiseException
GetTickCount
DeleteFileA
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
MoveFileA
CreateDirectoryA
GetOverlappedResult
GetLastError
GetFileSize
GlobalAlloc
GlobalSize
ReadFile
GlobalFree
FindNextFileA
FindClose
ReleaseSemaphore
CreateSemaphoreA
GetLocalTime
QueryPerformanceFrequency
QueryPerformanceCounter
HeapFree
HeapAlloc
HeapDestroy
HeapCreate
LoadLibraryExA
InterlockedExchangeAdd
SetThreadPriority
SetThreadPriorityBoost
TerminateThread
WaitForSingleObject
SuspendThread
OpenThread
ResumeThread
GetCurrentThreadId
Sleep
WriteFile
CreateFileA
DeleteCriticalSection
InitializeCriticalSection
SetCriticalSectionSpinCount
GetModuleFileNameA
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
SleepEx
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
SetCurrentDirectoryA
GetCurrentDirectoryA
lstrlenA
CreateProcessA
GetExitCodeProcess
CloseHandle
LeaveCriticalSection
FindFirstFileA

shell32

SHGetSpecialFolderPathA

steam_api

SteamInternal_CreateInterface
SteamAPI_GetHSteamPipe
SteamAPI_RegisterCallResult
SteamAPI_UnregisterCallResult
SteamAPI_Shutdown
SteamAPI_RestartAppIfNecessary
SteamAPI_Init
SteamAPI_RegisterCallback
SteamAPI_UnregisterCallback
SteamAPI_RunCallbacks
SteamAPI_GetHSteamUser

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ

msvcr100

strtod
isspace
__libm_sse2_cosf
_stricmp
_CxxThrowException
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
strstr
_strlwr_s
strrchr
__libm_sse2_acosf
__libm_sse2_sinf
strtol
strtoul
sprintf
strncmp
memcpy
ceil
__libm_sse2_atan2
strcpy_s
memset
sprintf_s
_purecall
_CIpow
strcat_s
strncpy_s
strtok
isxdigit
vsprintf_s
__libm_sse2_powf
_CIfmod
div
__libm_sse2_cos
__libm_sse2_asinf
wcscpy_s
__CxxFrameHandler3
_splitpath_s
strchr
_endthreadex
_beginthreadex
__libm_sse2_log10f
_strnicmp
vswprintf_s
wcstombs
_endthread
_beginthread
_findclose
_findfirst64i32
__libm_sse2_pow
strcmp
strlen
memcmp
sqrt
log10
pow
rand
srand
log
atan2
exp
acos
cos
sin
tan
strncat_s
memcpy_s
atoi
_CIcos
__libm_sse2_tanf
_unlock
__dllonexit
_lock
_onexit
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
_crt_debugger_hook
??0exception@std@@QAE@ABV01@@Z

Sections

.text
Size: 9.4MB - Virtual size: 9.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 78.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e476b30fab5d4a6bcc06e456bebe369c

Headers

DLL Characteristics

File Characteristics

Imports

d3dx9_43

d3d9

dinput8

xinput1_3

winmm

imm32

user32

gdi32

ole32

olepro32

kernel32

shell32

steam_api

msvcp100

msvcr100

Sections

.text Size: 9.4MB - Virtual size: 9.4MB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 1.0MB - Virtual size: 78.8MB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 9.4MB - Virtual size: 9.4MB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 1.0MB - Virtual size: 78.8MB

.rsrc
Size: 18KB - Virtual size: 18KB