not-virus_Joke[.]Win32[.]Badgame[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

not-virus_Joke.Win32.Badgame.exe
Size

61KB
MD5

ebfbd478a8cfc0fb645b8559973690cb
SHA1

88ec8dff51b53beed128582bcaf86ea81f684a0f
SHA256

62c99ea25fea9d3e5917114ada0406a333b1506697bd2bc28e9d676655232a59
SHA512

30c5dbaf97d3b43edca2e0c9f98fe3e45a2b508880021ce624145549b295c46f4468118c2f5051be402d4eeb3d9791a5eb27f1cc242b3a639b8318be49315f82
SSDEEP

768:kzyBMAbosR/s5ri95UcRLv0m9mPk9CyI45INeIJgCH1oJVtU+xQqUhsPJZjpBpwE:0yutxKXv9Ck9J5IgIJgooLf3heVbiX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
not-virus_Joke.Win32.Badgame.exe

Files

not-virus_Joke.Win32.Badgame.exe
.exe windows:1 windows x86 arch:x86

1a7a0385bb795e661196f2d332222b13

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
mciSendStringA

kernel32

FindClose
FindFirstFileA
FindNextFileA
GetCommandLineA
GetModuleHandleA
CloseHandle
GetSystemDirectoryA
GetTempFileNameA
GetTempPathA
CreateFileA
RtlUnwind
WriteFile
DeleteFileA

user32

DialogBoxParamA
EndDialog
SendDlgItemMessageA
LoadIconA
SetTimer
KillTimer
RegisterClassA
MessageBoxA
SetCursor
GetMessageA
DispatchMessageA
wsprintfA
PostMessageA
PostQuitMessage
ShowWindow
CreateWindowExA
DestroyWindow
DefWindowProcA

gdi32

GetStockObject

comctl32

InitCommonControls

crtdll

__GetMainArgs
exit
memset
raise
signal
strchr

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 88B - Virtual size: 88B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE