C:\Users\admin\source\repos\stappup\Release Normal\GameUpdate.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00.exe
Resource
win7-20231129-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00
-
Size
10.0MB
-
MD5
eeb46b237c8c1c0ac637b5d169e976a1
-
SHA1
04bcf9e02883de25a8a2a3c0bcc78baf84a9e896
-
SHA256
c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00
-
SHA512
6c4d165a5d959636903cb565a718958a8d9d30e38e1091606b17d4ce95bc4b3002be16dd568c9933b5fa975c8a03d87d6742bc42d81ca268b3cd1370a82badc7
-
SSDEEP
196608:Cbe60hl1hAX+ktaQTwKhCAJxPXM2hIB/I2PXM2aay7aS:Ca6m7KsaVXM2eVIYXM2aaC
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00
Files
-
c379bdffa9687f60bce39a8558c807a82bd37cf89d49d510040d786851cb8a00.exe windows:6 windows x86 arch:x86
967386e2b7abf3870ed140937cacad8c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ws2_32
freeaddrinfo
getaddrinfo
listen
accept
WSAIoctl
getsockname
getpeername
WSASetLastError
ntohl
WSAWaitForMultipleEvents
WSAResetEvent
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
WSAAddressToStringA
recvfrom
sendto
socket
ntohs
gethostname
htonl
bind
__WSAFDIsSet
inet_ntoa
gethostbyname
WSACleanup
WSAStartup
WSAGetLastError
recv
send
closesocket
getsockopt
select
connect
ioctlsocket
setsockopt
htons
inet_addr
getnameinfo
inet_pton
shutdown
kernel32
SearchPathA
GetTempFileNameA
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
CreateEventW
GetUserDefaultLCID
OutputDebugStringW
SwitchToThread
TryEnterCriticalSection
CompareStringW
LCMapStringW
GetStringTypeW
WaitForMultipleObjectsEx
OpenEventA
SetWaitableTimer
GetLogicalProcessorInformation
CreateWaitableTimerA
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
GetCommandLineW
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
SetConsoleCtrlHandler
VirtualQuery
HeapQueryInformation
SetStdHandle
GetFullPathNameW
IsValidLocale
EnumSystemLocalesW
GetConsoleMode
ReadConsoleW
GetConsoleCP
GetTimeZoneInformation
GetDriveTypeW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetCurrentDirectoryW
WriteConsoleW
CreateTimerQueue
SignalObjectAndWait
GetThreadPriority
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetThreadTimes
GetVersionExW
InterlockedPopEntrySList
QueryDepthSList
UnregisterWaitEx
SleepEx
GetSystemDirectoryA
CompareFileTime
PeekNamedPipe
FindResourceA
SizeofResource
LoadResource
LockResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
FormatMessageA
GetFileAttributesExW
DeleteFileW
SetConsoleMode
ReadConsoleA
SwitchToFiber
DeleteFiber
CreateFiber
ConvertFiberToThread
ConvertThreadToFiber
FindFirstFileW
GetSystemTime
FormatMessageW
WideCharToMultiByte
LocalFree
CreateEventA
CloseHandle
SetEvent
MultiByteToWideChar
GetLastError
TerminateThread
GetModuleFileNameA
GetCurrentProcessId
GetCommandLineA
FindResourceW
WaitForSingleObject
DeleteFileA
RemoveDirectoryA
GetTempPathA
CopyFileA
CreateFileA
OpenProcess
CreateProcessA
GetEnvironmentVariableA
SetEnvironmentVariableA
ExitProcess
MoveFileA
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
SetCurrentDirectoryA
FindFirstFileA
FindClose
CreateThread
WaitForMultipleObjects
CreateSemaphoreA
GetSystemInfo
GetCurrentProcess
DuplicateHandle
ReleaseSemaphore
HeapAlloc
GetProfileIntA
GetProcessHeap
HeapFree
WaitForSingleObjectEx
GetTickCount
UnmapViewOfFile
FindNextFileA
GetFileSizeEx
GetFileAttributesA
SetFileAttributesA
CreateDirectoryA
OutputDebugStringA
CreateToolhelp32Snapshot
Process32First
TerminateProcess
Process32Next
Module32First
Module32Next
SetThreadPriority
GetCurrentThread
WriteFile
FlushFileBuffers
GetFileSize
LockFile
UnlockFile
SetFilePointerEx
SetEndOfFile
GetFileInformationByHandle
ReadFile
GetCurrentDirectoryA
GetExitCodeThread
WTSGetActiveConsoleSessionId
lstrcpynA
lstrcpynW
LoadLibraryW
GetModuleFileNameW
OpenMutexA
CreateMutexA
ReleaseMutex
SetUnhandledExceptionFilter
InitializeCriticalSection
DeleteCriticalSection
IsBadReadPtr
VirtualProtect
GetModuleHandleA
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
HeapSize
HeapReAlloc
RaiseException
DecodePointer
SetFileTime
SetFilePointer
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
GetFileAttributesExA
ExpandEnvironmentStringsA
MoveFileExA
DeviceIoControl
GetProcessAffinityMask
SetProcessAffinityMask
GetVersionExA
GetLogicalDriveStringsA
GetDriveTypeA
GetDiskFreeSpaceExA
GetStdHandle
GetEnvironmentVariableW
GetFileType
GetModuleHandleW
SetLastError
GetWindowsDirectoryA
InitializeCriticalSectionEx
VirtualFree
VirtualAlloc
CreateFileW
ResetEvent
ResumeThread
TlsAlloc
QueueUserAPC
TlsFree
QueryPerformanceFrequency
QueryPerformanceCounter
MulDiv
GlobalSize
FreeResource
EncodePointer
GetSystemDirectoryW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
LocalAlloc
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
lstrcmpA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalFlags
TlsGetValue
TlsSetValue
GlobalReAlloc
GlobalHandle
LocalReAlloc
GetThreadLocale
SetErrorMode
FindResourceExW
VerifyVersionInfoA
VerSetConditionMask
GetVolumeInformationA
lstrcmpiA
GetFullPathNameA
GetFileTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
lstrcpyA
GetACP
user32
GetMessageA
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetTopWindow
GetClassLongA
CopyRect
MapWindowPoints
AdjustWindowRectEx
RemovePropA
ShowScrollBar
GetScrollRange
CopyAcceleratorTableA
InvalidateRgn
IsRectEmpty
MessageBoxA
GetDC
ReleaseDC
GetNextDlgGroupItem
CreatePopupMenu
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
GetForegroundWindow
ShowOwnedPopups
SetMenu
GetMenu
GetCapture
GetKeyState
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
RegisterWindowMessageA
IsDialogMessageA
GetWindow
GetMenuDefaultItem
DrawFocusRect
LoadImageA
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
LoadCursorW
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongA
SetWindowRgn
SetParent
DrawStateA
DrawEdge
DrawFrameControl
GetMenuItemCount
GetKeyNameTextA
GetWindowTextLengthA
SetFocus
MapVirtualKeyA
WindowFromPoint
IntersectRect
DestroyMenu
GetMenuItemInfoA
RealChildWindowFromPoint
GetSysColorBrush
TrackMouseEvent
DestroyIcon
LoadImageW
CopyImage
GetAsyncKeyState
CharUpperA
IsClipboardFormatAvailable
MessageBeep
SetRect
CharNextA
SetCapture
TrackPopupMenu
IsZoomed
BringWindowToTop
GetParent
GetClientRect
EnableWindow
GetWindowThreadProcessId
PostMessageA
EnumWindows
GetWindowRect
RegisterHotKey
SendMessageA
SetTimer
IsWindowVisible
GetDlgCtrlID
CheckDlgButton
ShowWindow
OffsetRect
SetRectEmpty
SendDlgItemMessageA
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
RemoveMenu
InsertMenuA
PtInRect
GetMenuItemID
GetCursorPos
ScreenToClient
GetSystemMetrics
SetWindowTextA
GetDlgItem
PostThreadMessageA
KillTimer
PeekMessageA
TranslateMessage
DispatchMessageA
IsWindow
LoadIconW
InvalidateRect
SetWindowPos
SetWindowLongA
GetWindowLongA
SetCursorPos
CopyIcon
DrawIcon
GetMenuState
GetMenuStringA
IsWindowEnabled
FillRect
GetSysColor
EndPaint
BeginPaint
GetUserObjectInformationW
GetProcessWindowStation
GetClassNameA
GetLastActivePopup
GetPropA
MoveWindow
MsgWaitForMultipleObjects
wsprintfA
UnregisterClassA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
ClientToScreen
GetSubMenu
LoadMenuW
SetCursor
FrameRect
LoadCursorA
UpdateWindow
IsChild
IsIconic
SetPropA
AppendMenuA
DeleteMenu
GetSystemMenu
RegisterClipboardFormatA
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
CharUpperBuffA
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
ReleaseCapture
SetForegroundWindow
MessageBoxW
GetWindowTextA
GetWindowDC
EqualRect
GetMessagePos
RedrawWindow
GetFocus
InflateRect
SystemParametersInfoA
GrayStringA
DrawTextExA
TabbedTextOutA
DrawTextA
gdi32
GetTextFaceA
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
SetPaletteEntries
ExtFloodFill
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
RoundRect
OffsetRgn
EnumFontFamiliesExA
LPtoDP
CreateRoundRectRgn
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
SetDIBColorTable
StretchBlt
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
GetRgnBox
GetTextColor
GetBkColor
GetTextMetricsA
DPtoLP
SetRectRgn
GetMapMode
CombineRgn
PatBlt
CreateRectRgnIndirect
CopyMetaFileA
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
MoveToEx
ExtCreatePen
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
SetPixel
CreateFontA
Rectangle
Polyline
CreateFontIndirectA
GetTextExtentPoint32A
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetBkMode
RealizePalette
SelectPalette
GetStockObject
GetObjectA
DeleteDC
CreateDCA
DeleteObject
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
CreateSolidBrush
BitBlt
CreateCompatibleDC
CreateDIBSection
msimg32
TransparentBlt
AlphaBlend
winspool.drv
DocumentPropertiesA
OpenPrinterA
ClosePrinter
advapi32
CryptExportKey
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueA
RegDeleteValueA
OpenProcessToken
GetTokenInformation
OpenSCManagerA
EnumServicesStatusA
CloseServiceHandle
OpenThreadToken
LookupPrivilegeValueA
AdjustTokenPrivileges
DeregisterEventSource
RegisterEventSourceW
ReportEventW
RegOpenKeyExA
RegEnumKeyExA
CryptAcquireContextA
CryptReleaseContext
CryptGetHashParam
CryptGenRandom
CryptCreateHash
CryptHashData
CryptDestroyHash
RegEnumKeyA
CryptAcquireContextW
CryptDestroyKey
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
RegDeleteKeyA
CryptDecrypt
CryptSignHashW
CryptEnumProvidersW
RegQueryValueA
shell32
SHGetFileInfoA
Shell_NotifyIconA
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
SHGetSpecialFolderPathA
SHGetDataFromIDListW
SHGetDesktopFolder
SHGetSpecialFolderPathW
ShellExecuteA
SHChangeNotify
SHGetSpecialFolderLocation
DragQueryFileA
DragFinish
SHAppBarMessage
comctl32
_TrackMouseEvent
InitCommonControlsEx
shlwapi
PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA
UrlUnescapeA
PathAppendA
PathCompactPathA
PathFileExistsW
StrFormatKBSizeA
PathRemoveFileSpecW
PathRemoveBackslashA
PathSetDlgItemPathA
UrlCanonicalizeA
PathCanonicalizeA
PathGetDriveNumberA
PathFileExistsA
PathGetArgsA
PathRemoveFileSpecA
PathAppendW
uxtheme
OpenThemeData
DrawThemeText
DrawThemeParentBackground
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetWindowTheme
GetThemeSysColor
CloseThemeData
ole32
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoRegisterMessageFilter
CoRevokeClassObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoCreateGuid
CoInitializeEx
CoCreateInstance
CoUninitialize
CoInitialize
CreateStreamOnHGlobal
oleaut32
VariantCopy
SafeArrayDestroy
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
SysAllocStringLen
SysAllocStringByteLen
VariantClear
VariantInit
SysFreeString
VarBstrFromDate
SysAllocString
oledlg
ord8
winmm
PlaySoundA
timeGetTime
gdiplus
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipFillRectangleI
GdipDrawString
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipCreateTexture
GdipFillRectangle
GdipDeleteBrush
GdipCloneBrush
GdipCreateSolidFill
GdipDrawImageRectRect
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipSetSmoothingMode
GdiplusShutdown
GdiplusStartup
GdipReleaseDC
GdipDrawImageRect
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdipGetImageHeight
GdipGetImageWidth
iphlpapi
IcmpCreateFile
IcmpCloseHandle
GetAdaptersInfo
GetAdaptersAddresses
GetIpForwardTable
IcmpSendEcho
imagehlp
MakeSureDirectoryPathExists
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
wininet
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetSetOptionA
InternetQueryOptionA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetOpenUrlA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetCloseHandle
InternetReadFile
HttpQueryInfoA
HttpOpenRequestA
InternetConnectA
HttpSendRequestA
HttpAddRequestHeadersA
InternetOpenA
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
wldap32
ord35
ord33
ord32
ord27
ord30
ord22
ord41
ord50
ord45
ord60
ord211
ord46
ord143
ord200
ord79
ord26
ord301
crypt32
CertGetCertificateContextProperty
CertDuplicateCertificateContext
CertOpenStore
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CertFindExtension
CertAddCertificateContextToStore
CryptDecodeObjectEx
CertOpenSystemStoreA
CertGetIntendedKeyUsage
CertGetEnhancedKeyUsage
PFXImportCertStore
CryptStringToBinaryA
CertFreeCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
CertCloseStore
bcrypt
BCryptGenRandom
Sections
.text Size: 4.5MB - Virtual size: 4.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 66KB - Virtual size: 174KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5.3MB - Virtual size: 5.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 287KB - Virtual size: 286KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ