Static task
static1
General
-
Target
Sonic Adventure DX.exe
-
Size
53.0MB
-
MD5
43140e8c50f66cf8903fbd9da52a0601
-
SHA1
424c5c7940b3d4c2c8cffbc352ca9b338c922508
-
SHA256
1eb01ecd1507652dcbd368c6e954950ea82f2146849adeadce0002089f9bed80
-
SHA512
3f12e1e4b836ef1f8c6350ebcc2708a234c03d5abcd6d71f6274e63e6d1fc8e4cdcc9ed4cfff95d8889d94b144c312920807e240f87511d75a4a96718fea3fde
-
SSDEEP
786432:uSmSWk4zgvowVTUWrfNZpVVZhz8MnkvtYrmFb8iWQf11FAvv:ujSf4kvmWbNZpVV8jHf114
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Sonic Adventure DX.exe
Files
-
Sonic Adventure DX.exe.exe windows:4 windows x86 arch:x86
999fa301ffbe0f2186a7d00fc44bbd91
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CompareStringW
GetTimeZoneInformation
GetPrivateProfileIntA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryA
GetProcAddress
GetLogicalDriveStringsA
GetDriveTypeA
lstrcpyA
ReadFileEx
CancelIo
SleepEx
GetFileAttributesA
CreateMutexA
QueryPerformanceFrequency
FindFirstFileA
SetEnvironmentVariableA
HeapAlloc
HeapCreate
Sleep
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
InitializeCriticalSection
CreateThread
CreateEventA
CloseHandle
DeleteCriticalSection
WaitForSingleObject
SetEvent
InterlockedIncrement
GetLastError
InterlockedDecrement
ResetEvent
CreateFileA
lstrcmpA
DeleteFileA
lstrlenA
CompareStringA
CreateDirectoryA
LocalFree
FormatMessageA
ReadFile
GetFileSize
lstrcmpiA
WritePrivateProfileStringA
SetFilePointer
HeapReAlloc
HeapDestroy
HeapFree
HeapSize
FileTimeToSystemTime
FileTimeToLocalFileTime
FindNextFileA
GetACP
GetLocaleInfoA
GetVersionExA
GetCurrentThreadId
MulDiv
GetSystemInfo
VirtualFree
GetCurrentProcess
VirtualAlloc
GetModuleHandleA
WideCharToMultiByte
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
RtlUnwind
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
IsBadWritePtr
RaiseException
GetOEMCP
GetCPInfo
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
FlushFileBuffers
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile
VirtualProtect
VirtualQuery
IsProcessorFeaturePresent
FindClose
user32
ShowCursor
MessageBoxA
PostThreadMessageA
GetQueueStatus
PeekMessageA
MsgWaitForMultipleObjects
RegisterWindowMessageA
DispatchMessageA
TranslateMessage
SetForegroundWindow
SystemParametersInfoA
PostQuitMessage
DefWindowProcA
UpdateWindow
ShowWindow
CreateWindowExA
RegisterClassA
LoadCursorA
LoadIconA
wsprintfA
FindWindowA
SetWindowLongA
CallWindowProcA
ole32
CoUninitialize
CoTaskMemFree
CoFreeUnusedLibraries
CoTaskMemAlloc
CoCreateInstance
CoInitialize
dinput8
DirectInput8Create
winmm
mmioSeek
mmioDescend
mmioRead
mmioAdvance
mmioGetInfo
mmioClose
mmioOpenA
joyGetPosEx
timeKillEvent
timeBeginPeriod
timeEndPeriod
timeSetEvent
mmioAscend
timeGetTime
mmioSetInfo
dsound
ord11
gdi32
GetStockObject
advapi32
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
d3d8
Direct3DCreate8
Sections
.text Size: 3.9MB - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 732KB - Virtual size: 730KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48.4MB - Virtual size: 52.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ