0778870fedca1ef169b031ad3d1ee111[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

0778870fedca1ef169b031ad3d1ee111.rar
Size

16.5MB
MD5

389c20312ccada9c81ed77633d1f1a33
SHA1

2aa9d5065622ee04500bd96930e487a3ac5389d4
SHA256

4bd1e6fcebf7471a0becd6be9990f05831c10c8845176794404448fc5af8213b
SHA512

51c188ea56bcdd2836fcd0a2fda6e31711ebfbea762058ba4c0c48dc67011f23eb5eb3d48d8c2418b686a87f8c05e26b55eefd9255066535497184e98ec73c48
SSDEEP

393216:tZJtDyqPfezMnUJRJPXOpjKcT5qsbt8NHiasz/pYDrWPdwxH0+J9aeR/:XnIz8UJfPepjKcNHKHia65PdwxHV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Virtual.Circuit.Boardv1.0-P2P/vcb.exe

Files

0778870fedca1ef169b031ad3d1ee111.rar
.rar

Password: 404
Virtual.Circuit.Boardv1.0-P2P/LICENSE.txt
Virtual.Circuit.Boardv1.0-P2P/vcb.exe
.exe windows:6 windows x64 arch:x64

Password: 404

f7e06c50c786c5953923f669cf04a85e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

G:\reverie_foundry\project_vcb\godot_custom\godot_vcb\bin\godot.windows.opt.64.pdb

Imports

winmm

midiInOpen
midiInStart
midiInClose
midiInGetErrorTextA
midiInGetNumDevs
midiInGetID
midiInStop
midiInGetDevCapsA
timeBeginPeriod
timeEndPeriod

opengl32

wglGetProcAddress
wglDeleteContext
wglMakeCurrent
wglCreateContext

kernel32

GetLastError
AttachConsole
GetCurrentThread
QueryPerformanceFrequency
CloseHandle
GetNativeSystemInfo
GetSystemInfo
LoadLibraryW
GetLocalTime
GetProcAddress
GlobalLock
GetCurrentProcessId
SystemTimeToFileTime
CreateProcessW
FreeLibrary
GetSystemTime
QueryPerformanceCounter
GlobalUnlock
LoadLibraryExW
GetExitCodeProcess
LoadLibraryA
GetSystemPowerStatus
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
GetConsoleOutputCP
FlushFileBuffers
GetTimeZoneInformation
GetFileSizeEx
ReadConsoleW
GetConsoleMode
SetFilePointerEx
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCommandLineA
WriteFile
RemoveDirectoryW
MoveFileExW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
ExitProcess
GetModuleHandleExW
FormatMessageW
ExitThread
CreateThread
GetFileType
SetStdHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
RaiseException
RtlPcToFileHeader
RtlUnwindEx
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
ResetEvent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
LCMapStringEx
DecodePointer
EncodePointer
GetModuleHandleW
Sleep
MultiByteToWideChar
LCIDToLocaleName
GetModuleHandleA
WaitForSingleObject
GetEnvironmentVariableW
CreatePipe
SetThreadPriority
GetUserDefaultUILanguage
GetLocaleInfoEx
SetEnvironmentVariableW
GetModuleFileNameW
TerminateProcess
OutputDebugStringA
GetStdHandle
GetCurrentProcess
SetPriorityClass
GetSystemTimeAsFileTime
SetLastError
SetHandleInformation
SetConsoleCtrlHandler
ReadFile
WideCharToMultiByte
HeapSize
LocalFree
GlobalAlloc
GetCommandLineW
GetFullPathNameW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeLibraryAndExitThread
WriteConsoleW
SetEndOfFile
SleepConditionVariableSRW
SleepConditionVariableCS
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
FindNextFileW
FindClose
CreateSemaphoreA
CreateEventA
VirtualFree
CreateMutexA
ReleaseMutex
HeapFree
GetTickCount64
HeapAlloc
GetProcessHeap
ReleaseSemaphore
SetEvent
TryEnterCriticalSection
ReplaceFileW
CreateDirectoryW
GetVolumeInformationW
GetLogicalDrives
FindFirstFileExW
GetFileAttributesW
DeleteFileW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetTempFileNameW
GetDiskFreeSpaceExA
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
GetCurrentThreadId
WaitForSingleObjectEx
SwitchToThread
GetExitCodeThread
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable

ole32

CoCreateInstance
PropVariantClear
CoInitialize
CoTaskMemFree

user32

GetDC
GetRawInputDeviceInfoA
GetRawInputDeviceList
DefWindowProcW
AdjustWindowRectEx
GetKeyState
GetMessageExtraInfo
AllowSetForegroundWindow
CallWindowProcW
MonitorFromPoint
CloseTouchInputHandle
GetTouchInputInfo
GetWindowRect
LoadCursorA
SetWindowPos
MessageBoxW
MonitorFromWindow
SetWindowRgn
EnumDisplayMonitors
CreateWindowExW
GetKeyboardLayoutNameA
ScreenToClient
GetSystemMetrics
SetWindowTextW
RegisterClassExW
ShowWindow
OpenClipboard
DispatchMessageW
SetTimer
DestroyIcon
RegisterTouchWindow
GetMonitorInfoW
CreateIconIndirect
GetCursorPos
CloseClipboard
EmptyClipboard
PeekMessageW
GetKeyboardLayoutList
GetRawInputData
TrackMouseEvent
GetKeyboardLayout
CreateIconFromResource
MessageBoxA
MoveWindow
SetFocus
RegisterRawInputDevices
TranslateMessage
GetClipboardData
ClipCursor
SendMessageA
SetCapture
SetClipboardData
SetCursor
LoadIconA
FlashWindowEx
SystemParametersInfoA
GetClientRect
IsClipboardFormatAvailable
GetWindowLongPtrA
ActivateKeyboardLayout
KillTimer
EnumDisplaySettingsW
MapVirtualKeyExA
SetWindowLongPtrA
ReleaseCapture
SetForegroundWindow
IsIconic
SetCursorPos
ReleaseDC
ClientToScreen

gdi32

CreateBitmap
GetObjectA
ChoosePixelFormat
SwapBuffers
DeleteObject
SetBkColor
SetPixelFormat
BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
CreatePolygonRgn
GetDeviceCaps
CreateRectRgn
DeleteDC
SetTextColor

shell32

CommandLineToArgvW
DragQueryFileW
ShellExecuteW
SHGetKnownFolderPath
SHFileOperationW
DragAcceptFiles

advapi32

RegOpenKeyExW
GetCurrentHwProfileA
RegCloseKey
RegQueryValueExW

dinput8

DirectInput8Create

imm32

ImmReleaseContext
ImmGetContext
ImmSetCompositionWindow
ImmAssociateContext

avrt

AvSetMmThreadPriority
AvSetMmThreadCharacteristicsA

dwmapi

DwmEnableBlurBehindWindow
DwmFlush
DwmIsCompositionEnabled

iphlpapi

GetBestInterfaceEx
GetAdaptersAddresses

shlwapi

PathFileExistsW

wsock32

accept
sendto
__WSAFDIsSet
htons
ntohs
closesocket
send
getsockname
htonl
ntohl
WSAGetLastError
setsockopt
connect
socket
listen
ioctlsocket
bind
recv
select
inet_ntoa
recvfrom
WSAStartup
WSACleanup

ws2_32

getnameinfo
freeaddrinfo
WSAConnect
inet_pton
getaddrinfo

bcrypt

BCryptGenRandom

Exports

Exports

?_main@@YAHXZ
?widechar_main@@YAHHPEAPEA_W@Z
AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
main

Sections

.text
Size: 31.0MB - Virtual size: 31.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7.1MB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 490KB - Virtual size: 563KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 848KB - Virtual size: 847KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

pck
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Virtual.Circuit.Boardv1.0-P2P/vcb.pck
g4u.to - games 4 you.url
.url

Sharing

General

Malware Config

Signatures

Files

Password: 404

Password: 404

f7e06c50c786c5953923f669cf04a85e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

opengl32

kernel32

ole32

user32

gdi32

shell32

advapi32

dinput8

imm32

avrt

dwmapi

iphlpapi

shlwapi

wsock32

ws2_32

bcrypt

Exports

Exports

Sections

.text Size: 31.0MB - Virtual size: 31.0MB

.rdata Size: 7.1MB - Virtual size: 7.1MB

.data Size: 490KB - Virtual size: 563KB

.pdata Size: 848KB - Virtual size: 847KB

_RDATA Size: 512B - Virtual size: 252B

pck Size: 512B - Virtual size: 8B

.rsrc Size: 363KB - Virtual size: 362KB

.reloc Size: 188KB - Virtual size: 188KB

.text
Size: 31.0MB - Virtual size: 31.0MB

.rdata
Size: 7.1MB - Virtual size: 7.1MB

.data
Size: 490KB - Virtual size: 563KB

.pdata
Size: 848KB - Virtual size: 847KB

_RDATA
Size: 512B - Virtual size: 252B

pck
Size: 512B - Virtual size: 8B

.rsrc
Size: 363KB - Virtual size: 362KB

.reloc
Size: 188KB - Virtual size: 188KB