Static task
static1
General
-
Target
Virtual Villagers 3 - The Secret City.rar
-
Size
45.0MB
-
MD5
ae511280e13e11ae69c4bd2789537994
-
SHA1
f7b31a0ad730b1635512a933998c70b0eff72309
-
SHA256
104e82174ad29c9ea683b2b47563cf562edf5f842b913d9cb3323463f704528e
-
SHA512
3fe7aa208435b510e572daa4511749f21a1195f14c57a179c4f9430b78e0628752f3ca7438e935ad229df3b33c951ddea1a0d30d6aad38593d12287333821e50
-
SSDEEP
786432:kn1kTSXRD7PwxhrZjKamVzX4cCU991pwdINx1SABrN6puVLvTugibqHlpiEPY9fi:pGBDUhrZj/mljtpwGnFniuVLigibspnv
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
resource unpack001/# Crack/Virtual Villagers - The Secret City.exe unpack001/VirtualVillagersTheSecretCitySetup.exe
Files
-
Virtual Villagers 3 - The Secret City.rar.rar
-
# Crack/Virtual Villagers - The Secret City.exe.exe windows:4 windows x86 arch:x86
e5f7188a68b479ba7e079a3d5ed2cf98
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
fmod
_FSOUND_PlaySound@8
_FSOUND_SetVolume@8
_FSOUND_StopSound@4
_FSOUND_SetSFXMasterVolume@4
_FSOUND_IsPlaying@4
_FMUSIC_LoadSong@4
_FSOUND_Stream_Open@16
_FMUSIC_SetMasterVolume@8
_FMUSIC_FreeSong@4
_FSOUND_Close@0
_FSOUND_Sample_Free@4
_FSOUND_Init@12
_FSOUND_Sample_SetMode@8
_FSOUND_Stream_GetTime@4
_FMUSIC_GetTime@4
_FMUSIC_IsPlaying@4
_FSOUND_Stream_Stop@4
_FMUSIC_StopSong@4
_FMUSIC_StopAllSongs@0
_FSOUND_Stream_SetMode@8
_FSOUND_Stream_Play@8
_FMUSIC_SetLooping@8
_FMUSIC_PlaySong@4
_FSOUND_Stream_Close@4
_FSOUND_Sample_Load@20
winmm
timeEndPeriod
timeBeginPeriod
timeGetTime
ddraw
DirectDrawCreateEx
kernel32
GetModuleFileNameA
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateDirectoryA
SetThreadPriority
GetCurrentThread
SetFilePointer
CreateFileA
CloseHandle
ReadFile
SystemTimeToFileTime
GetCurrentDirectoryA
LocalFileTimeToFileTime
GetFileAttributesA
SetFileTime
WriteFile
GetVersionExA
GetLastError
CreateMutexA
GetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
FreeLibrary
GetProcAddress
LoadLibraryA
lstrlenA
GlobalUnlock
GlobalLock
GlobalAlloc
MultiByteToWideChar
HeapFree
GetProcessHeap
lstrcmpA
lstrlenW
WideCharToMultiByte
MulDiv
InitializeCriticalSection
Sleep
InterlockedIncrement
InterlockedDecrement
EnterCriticalSection
HeapAlloc
FlushInstructionCache
GetCurrentProcess
GetCurrentThreadId
RaiseException
LeaveCriticalSection
GetModuleHandleA
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
UnmapViewOfFile
GetFileSize
MapViewOfFile
CreateFileMappingA
GetFullPathNameA
GlobalFree
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount
LCMapStringW
GetTimeZoneInformation
FlushFileBuffers
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetOEMCP
GetCPInfo
HeapSize
SetHandleCount
GetStdHandle
RtlUnwind
GetFileType
GetSystemTimeAsFileTime
ExitProcess
TerminateProcess
DeleteFileA
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetStartupInfoA
GetCommandLineA
LCMapStringA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetStringTypeA
GetStringTypeW
GetCurrentProcessId
SetEndOfFile
CompareStringA
CompareStringW
DeleteCriticalSection
SetEnvironmentVariableA
user32
SetRect
ClientToScreen
GetSystemMetrics
SystemParametersInfoA
AdjustWindowRectEx
GetMenu
SendMessageA
InvalidateRgn
InvalidateRect
SetCapture
ReleaseCapture
CreateAcceleratorTableA
ReleaseDC
GetDesktopWindow
CharNextA
GetParent
GetClassNameA
UnregisterClassA
RedrawWindow
IsWindow
BeginPaint
FillRect
EndPaint
IsChild
GetFocus
GetWindow
GetSysColor
DestroyAcceleratorTable
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
RegisterWindowMessageA
GetClassInfoExA
LoadCursorA
RegisterClassExA
GetClientRect
GetDC
CallWindowProcA
SetWindowPos
GetDlgItem
SetForegroundWindow
IsIconic
wsprintfA
GetWindowLongA
SetWindowLongA
MsgWaitForMultipleObjects
GetCursorPos
ScreenToClient
PostQuitMessage
SetCursor
PostMessageA
DefWindowProcA
DestroyWindow
LoadIconA
RegisterClassA
CreateWindowExA
GetWindowRect
MoveWindow
SetFocus
ShowWindow
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
GetKeyState
MessageBoxA
gdi32
GdiFlush
GetStockObject
GetObjectA
GetDeviceCaps
CreateSolidBrush
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
CreateDIBSection
SelectObject
DeleteDC
DeleteObject
advapi32
RegCreateKeyExA
RegCloseKey
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
shell32
ShellExecuteA
SHGetSpecialFolderPathA
ole32
OleUninitialize
CreateStreamOnHGlobal
OleInitialize
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
StringFromGUID2
CoTaskMemAlloc
OleLockRunning
CoTaskMemFree
CoTaskMemRealloc
CoCreateInstance
oleaut32
SysFreeString
SysAllocStringLen
SysStringLen
SysAllocString
VariantInit
VariantClear
SysStringByteLen
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
OleLoadPicture
wininet
InternetCloseHandle
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetReadFile
InternetOpenA
Sections
.text Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 192KB - Virtual size: 189KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 68KB - Virtual size: 1.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.shr Size: 4KB - Virtual size: 4B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 176KB - Virtual size: 174KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
# Installation Guide.txt
-
VirtualVillagersTheSecretCitySetup.exe.exe windows:4 windows x86 arch:x86
655ef525c97730d767eaabf5fa8b32f1
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
MultiByteToWideChar
GlobalFree
LCMapStringW
GetStringTypeA
GetStringTypeW
VirtualAlloc
SetUnhandledExceptionFilter
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalReAlloc
Sleep
GetTempPathA
SetStdHandle
LocalAlloc
LocalFree
GlobalAlloc
GlobalLock
LCMapStringA
GlobalUnlock
SetFilePointer
ReadFile
GetTickCount
GetModuleFileNameA
CreateProcessA
GetExitCodeProcess
IsBadReadPtr
IsBadWritePtr
CloseHandle
FileTimeToDosDateTime
GetSystemTimeAsFileTime
FindClose
FindFirstFileA
GetFileAttributesA
CreateDirectoryA
CreateFileA
GetVersion
SetFileAttributesA
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetLastError
DeleteFileA
SetEndOfFile
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
FlushFileBuffers
user32
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
SetWindowPos
SendMessageA
InvalidateRect
PeekMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
ShowWindow
GetDesktopWindow
SetForegroundWindow
SetCursor
GetActiveWindow
MessageBoxA
GetDC
ReleaseDC
gdi32
CreateDIBitmap
CreateDIBSection
GetStockObject
GetObjectA
GetDeviceCaps
SelectObject
CreateCompatibleDC
GetMapMode
SetMapMode
DPtoLP
BitBlt
DeleteDC
CreateSolidBrush
PatBlt
DeleteObject
SelectPalette
RealizePalette
CreatePalette
advapi32
RegQueryValueExA
RegCreateKeyA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
Sections
.text Size: 136KB - Virtual size: 135KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 26KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ