7c6b48318ee3186256ab4427055b4ec3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7c6b48318ee3186256ab4427055b4ec3_JaffaCakes118
Size

988KB
MD5

7c6b48318ee3186256ab4427055b4ec3
SHA1

744d3b9adc30e602bfd88266fb03012760a20c18
SHA256

1e6c0504f9fbdb3c6346e51697bade9500ce02d6bab24e4b40a56f7967ef4cc8
SHA512

dbd1892fe5afe7c00ebd9e7599b40f795607a08478ba0e6d2a51a6530d62f97719724c0d67a0cd3bf3c11ecc5418242d8d40f6d1d25b2c0409eb9f059ec2ece1
SSDEEP

24576:wHdaMLN2+rRYz3ozz+Tp6E9rZjjuqhKHkffj4tgjPmkfI:wHdaMJMk/+TMErZj+Hqj4tgjuJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack002/files/steam_api.dll
unpack002/files/uplay_r1.dll
unpack002/files/uplay_r1_loader.dll

Files

7c6b48318ee3186256ab4427055b4ec3_JaffaCakes118
.rar
Rayman Legends v 1.3.140380 NoDVD/files.rar
.rar
files/orbit_api.ini
files/steam_api.dll
.dll windows:6 windows x86 arch:x86

ce070dafef2fd4520282ab3b392be449

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LoadLibraryA
CopyFileA
GetProcessTimes
GetCurrentProcess
GetSystemTimeAsFileTime
GetTickCount
GetSystemPowerStatus
FindClose
GetLastError
FindNextFileA
GetDiskFreeSpaceExA
GetFileTime
ReadFile
CloseHandle
IsBadReadPtr
WriteConsoleW
SetStdHandle
SetFileAttributesA
DeleteFileA
GetFileAttributesA
CreateDirectoryA
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
InitializeCriticalSection
GetModuleFileNameA
FindFirstFileA
VirtualFree
GetConsoleMode
GetConsoleCP
CreateFileA
SetEndOfFile
SetFilePointerEx
WriteFile
GetFileSizeEx
VirtualAlloc
HeapAlloc
HeapFree
GetProcessHeap
HeapDestroy
HeapCreate
RaiseException
WideCharToMultiByte
MultiByteToWideChar
QueryPerformanceCounter
EncodePointer
DecodePointer
RtlUnwind
GetCommandLineA
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
GetProcAddress
HeapSize
IsDebuggerPresent
SetLastError
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
LCMapStringW
GetModuleFileNameW
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
HeapReAlloc
OutputDebugStringW
GetStringTypeW
FlushFileBuffers
CreateFileW

user32

LoadBitmapA

gdi32

DeleteObject
GetBitmapBits

advapi32

CryptDestroyHash
CryptHashData
CryptCreateHash
CryptImportKey
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextA
CryptVerifySignatureA

shell32

SHGetSpecialFolderPathA

Exports

Exports

GetHSteamPipe
GetHSteamUser
IGetVersion
SteamAPI_GetHSteamPipe
SteamAPI_GetHSteamUser
SteamAPI_GetSteamInstallPath
SteamAPI_Init
SteamAPI_InitSafe
SteamAPI_IsSteamRunning
SteamAPI_RegisterCallResult
SteamAPI_RegisterCallback
SteamAPI_RestartAppIfNecessary
SteamAPI_RunCallbacks
SteamAPI_SetBreakpadAppID
SteamAPI_SetMiniDumpComment
SteamAPI_SetTryCatchCallbacks
SteamAPI_Shutdown
SteamAPI_UnregisterCallResult
SteamAPI_UnregisterCallback
SteamAPI_UseBreakpadCrashHandler
SteamAPI_WriteMiniDump
SteamAppList
SteamApps
SteamClient
SteamContentServer
SteamContentServerUtils
SteamContentServer_Init
SteamContentServer_RunCallbacks
SteamContentServer_Shutdown
SteamController
SteamController_GetControllerState
SteamController_Init
SteamController_SetOverrideMode
SteamController_Shutdown
SteamController_TriggerHapticPulse
SteamFriends
SteamGameServer
SteamGameServerApps
SteamGameServerHTTP
SteamGameServerNetworking
SteamGameServerStats
SteamGameServerUtils
SteamGameServer_BSecure
SteamGameServer_GetHSteamPipe
SteamGameServer_GetHSteamUser
SteamGameServer_GetIPCCallCount
SteamGameServer_GetSteamID
SteamGameServer_Init
SteamGameServer_InitSafe
SteamGameServer_RunCallbacks
SteamGameServer_Shutdown
SteamHTMLSurface
SteamHTTP
SteamMasterServerUpdater
SteamMatchmaking
SteamMatchmakingServers
SteamMusic
SteamMusicRemote
SteamNetworking
SteamRemoteStorage
SteamScreenshots
SteamUGC
SteamUnifiedMessages
SteamUser
SteamUserStats
SteamUtils
SteamVR_ComputeDistortion
SteamVR_GetD3D9AdapterIndex
SteamVR_GetDisplayId
SteamVR_GetDriverId
SteamVR_GetEyeOutputViewport
SteamVR_GetHeadFromEyePose
SteamVR_GetLastTrackerFromHeadPose
SteamVR_GetProjectionMatrix
SteamVR_GetProjectionRaw
SteamVR_GetRecommendedRenderTargetSize
SteamVR_GetTrackerFromHeadPose
SteamVR_GetTrackerZeroPose
SteamVR_GetViewMatrix
SteamVR_GetWindowBounds
SteamVR_IHmd_Version
SteamVR_WillDriftInYaw
SteamVR_ZeroTracker
Steam_GetHSteamUserCurrent
Steam_RegisterInterfaceFuncs
Steam_RunCallbacks
SuperSecretAPIWithTagDontCopyThisOne
VR_GetControlPanel
VR_GetGenericInterface
VR_GetStringForHmdError
VR_Init
VR_IsHmdPresent
VR_Shutdown
g_pSteamClientGameServer

Sections

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RLD0
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RLD1
Size: 460KB - Virtual size: 460KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
files/uplay_r1.dll
.dll windows:6 windows x86 arch:x86

d92c47c3b268d408647a85d3774c8ad5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
HeapFree
GetProcessHeap
HeapDestroy
HeapCreate
RaiseException
QueryPerformanceCounter
ReadFile
FindFirstFileA
FindClose
FindNextFileA
DeleteFileA
GetModuleHandleW
GetLastError
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
VirtualProtect
VirtualFree
GetFileAttributesA
CreateDirectoryA
GetLocalTime
FindResourceA
LoadResource
SetEvent
SizeofResource
CreateEventA
LockResource
WaitForMultipleObjects
CloseHandle
CreateThread
VirtualAlloc
RtlUnwind
GetCommandLineA
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
SetLastError
ExitProcess
GetModuleHandleExW
GetStdHandle
GetFileType
FileTimeToSystemTime
GetStartupInfoW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
WriteFile
GetModuleFileNameW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
LoadLibraryExW
HeapReAlloc
OutputDebugStringW
GetStringTypeW
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CreateFileW
WideCharToMultiByte
SystemTimeToFileTime
MultiByteToWideChar
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFileSizeEx
CreateFileA
GetPrivateProfileStringA
WritePrivateProfileStringA

advapi32

CryptDestroyHash
CryptVerifySignatureA
CryptDestroyKey
CryptCreateHash
CryptImportKey
CryptAcquireContextA
CryptReleaseContext
CryptHashData

shell32

SHGetSpecialFolderPathA

winmm

waveOutWrite
waveOutOpen
waveOutPrepareHeader
waveOutClose
waveOutUnprepareHeader
waveOutReset

Exports

Exports

??0OrbitClient@orbitclient@mg@@QAE@XZ
??0SavegameInfo@orbitclient@mg@@AAE@XZ
??0SavegameReader@orbitclient@mg@@AAE@XZ
??0SavegameWriter@orbitclient@mg@@AAE@XZ
??1OrbitClient@orbitclient@mg@@QAE@XZ
??1SavegameInfo@orbitclient@mg@@AAE@XZ
??1SavegameReader@orbitclient@mg@@AAE@XZ
??1SavegameWriter@orbitclient@mg@@AAE@XZ
?CheckUpdate@OrbitClient@orbitclient@mg@@QAEHXZ
?Close@SavegameReader@orbitclient@mg@@QAEXXZ
?Close@SavegameWriter@orbitclient@mg@@QAEX_N@Z
?GetInstallationErrorNum@OrbitClient@orbitclient@mg@@QAEIXZ
?GetInstallationErrorString@OrbitClient@orbitclient@mg@@QAEPAGPBD@Z
?GetLocText@OrbitClient@orbitclient@mg@@QAEPBGPBGPBD@Z
?GetLoginDetails@OrbitClient@orbitclient@mg@@QAEXIPAVIGetLoginDetailsListener@23@@Z
?GetName@SavegameInfo@orbitclient@mg@@QAEPBGXZ
?GetNetworkTraffic@OrbitClient@orbitclient@mg@@QAEXIPAVIGetNetworkTrafficListener@23@@Z
?GetOrbitServer@OrbitClient@orbitclient@mg@@QAEXIPAVIGetOrbitServerListener@23@II@Z
?GetProductId@SavegameInfo@orbitclient@mg@@QAEIXZ
?GetRequestUniqueId@OrbitClient@orbitclient@mg@@QAEIXZ
?GetSavegameId@SavegameInfo@orbitclient@mg@@QAEIXZ
?GetSavegameList@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameListListener@23@I@Z
?GetSavegameReader@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameReaderListener@23@II@Z
?GetSavegameWriter@OrbitClient@orbitclient@mg@@QAEXIPAVIGetSavegameWriterListener@23@II_N@Z
?GetSize@SavegameInfo@orbitclient@mg@@QAEIXZ
?Read@SavegameReader@orbitclient@mg@@QAEXIPAVISavegameReadListener@23@IPAXI@Z
?RemoveSavegame@OrbitClient@orbitclient@mg@@QAEXIPAVIRemoveSavegameListener@23@II@Z
?SetName@SavegameWriter@orbitclient@mg@@QAE_NPAG@Z
?StartLauncher@OrbitClient@orbitclient@mg@@QAE_NIIPBD0@Z
?StartProcess@OrbitClient@orbitclient@mg@@QAEXPAG00@Z
?UPLAY_WIN_ActionTaken@@YAHPAUUPLAY_WIN_Action_t@@PAUUPLAY_Overlapped_t@@@Z
?Update@OrbitClient@orbitclient@mg@@QAEXXZ
?Write@SavegameWriter@orbitclient@mg@@QAEXIPAVISavegameWriteListener@23@PAXI@Z
SuperSecretAPIWithTagDontCopyThisOne
UPLAY_ACH_EarnAchievement
UPLAY_ACH_GetAchievementImage
UPLAY_ACH_GetAchievements
UPLAY_ACH_Write
UPLAY_AVATAR_Get
UPLAY_AVATAR_GetAvatarIdForCurrentUser
UPLAY_AVATAR_GetBitmap
UPLAY_ClearGameSession
UPLAY_FRIENDS_AddToBlackList
UPLAY_FRIENDS_DisableFriendMenuItem
UPLAY_FRIENDS_EnableFriendMenuItem
UPLAY_FRIENDS_GetFriendList
UPLAY_FRIENDS_Init
UPLAY_FRIENDS_InviteToGame
UPLAY_FRIENDS_IsBlackListed
UPLAY_FRIENDS_IsFriend
UPLAY_FRIENDS_RequestFriendship
UPLAY_FRIENDS_ShowFriendSelectionUI
UPLAY_GetInstallationError
UPLAY_GetLastError
UPLAY_GetNextEvent
UPLAY_GetOverlappedOperationResult
UPLAY_HasOverlappedOperationCompleted
UPLAY_INSTALLER_AreChunksInstalled
UPLAY_INSTALLER_GetChunkIdsFromTag
UPLAY_INSTALLER_GetLanguageUtf8
UPLAY_INSTALLER_Init
UPLAY_INSTALLER_ReleaseChunkIdList
UPLAY_INSTALLER_UpdateInstallOrder
UPLAY_Init
UPLAY_METADATA_ClearContinuousTag
UPLAY_METADATA_SetContinuousTag
UPLAY_METADATA_SetSingleEventTag
UPLAY_OVERLAY_SetShopUrl
UPLAY_OVERLAY_Show
UPLAY_OVERLAY_ShowFacebookAuthentication
UPLAY_OVERLAY_ShowShopUrl
UPLAY_PARTY_DisablePartyMemberMenuItem
UPLAY_PARTY_EnablePartyMemberMenuItem
UPLAY_PARTY_GetFullMemberList
UPLAY_PARTY_GetId
UPLAY_PARTY_GetInGameMemberList
UPLAY_PARTY_Init
UPLAY_PARTY_InvitePartyToGame
UPLAY_PARTY_InviteToParty
UPLAY_PARTY_IsInParty
UPLAY_PARTY_IsPartyLeader
UPLAY_PARTY_PromoteToLeader
UPLAY_PARTY_RespondToGameInvite
UPLAY_PARTY_SetGuest
UPLAY_PARTY_SetUserData
UPLAY_PARTY_ShowGameInviteOverlayUI
UPLAY_PRESENCE_SetRichPresenceLine
UPLAY_PRESENCE_SetRichPresencePropertyInt32
UPLAY_PRESENCE_SetRichPresencePropertyString
UPLAY_PeekNextEvent
UPLAY_Quit
UPLAY_Release
UPLAY_SAVE_Close
UPLAY_SAVE_GetSavegames
UPLAY_SAVE_Open
UPLAY_SAVE_Read
UPLAY_SAVE_Remove
UPLAY_SAVE_SetName
UPLAY_SAVE_Write
UPLAY_SetGameSession
UPLAY_SetLocale
UPLAY_StartPlatform
UPLAY_Startup
UPLAY_USER_ClearGameSession
UPLAY_USER_ConsumeItem
UPLAY_USER_GetAccountId
UPLAY_USER_GetAccountIdUtf8
UPLAY_USER_GetCdKeyUtf8
UPLAY_USER_GetCdKeys
UPLAY_USER_GetConsumableItems
UPLAY_USER_GetCredentials
UPLAY_USER_GetEmail
UPLAY_USER_GetEmailUtf8
UPLAY_USER_GetNameUtf8
UPLAY_USER_GetPassword
UPLAY_USER_GetPasswordUtf8
UPLAY_USER_GetTicketUtf8
UPLAY_USER_GetUsername
UPLAY_USER_GetUsernameUtf8
UPLAY_USER_IsConnected
UPLAY_USER_IsInOfflineMode
UPLAY_USER_IsOwned
UPLAY_USER_ReleaseConsumeItemResult
UPLAY_USER_SetGameSession
UPLAY_Update
UPLAY_WIN_GetActions
UPLAY_WIN_GetRewards
UPLAY_WIN_RefreshActions

Sections

.text
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RLD0
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RLD1
Size: 284KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
files/uplay_r1_loader.dll
.dll windows:6 windows x86 arch:x86

18252c067b91dda7367a313d5db338a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
IsProcessorFeaturePresent
GetLastError
SetLastError
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
HeapFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
WriteFile
GetModuleFileNameW
LoadLibraryExW
RtlUnwind
HeapAlloc
HeapReAlloc
GetStringTypeW
OutputDebugStringW
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW

Exports

Exports

UPLAY_ACH_EarnAchievement
UPLAY_ACH_GetAchievementImage
UPLAY_ACH_GetAchievements
UPLAY_ACH_Write
UPLAY_AVATAR_Get
UPLAY_AVATAR_GetAvatarIdForCurrentUser
UPLAY_AVATAR_GetBitmap
UPLAY_ClearGameSession
UPLAY_FRIENDS_AddToBlackList
UPLAY_FRIENDS_DisableFriendMenuItem
UPLAY_FRIENDS_EnableFriendMenuItem
UPLAY_FRIENDS_GetFriendList
UPLAY_FRIENDS_Init
UPLAY_FRIENDS_InviteToGame
UPLAY_FRIENDS_IsBlackListed
UPLAY_FRIENDS_IsFriend
UPLAY_FRIENDS_RequestFriendship
UPLAY_FRIENDS_ShowFriendSelectionUI
UPLAY_GetInstallationError
UPLAY_GetLastError
UPLAY_GetNextEvent
UPLAY_GetOverlappedOperationResult
UPLAY_HasOverlappedOperationCompleted
UPLAY_INSTALLER_AreChunksInstalled
UPLAY_INSTALLER_GetChunkIdsFromTag
UPLAY_INSTALLER_GetLanguageUtf8
UPLAY_INSTALLER_Init
UPLAY_INSTALLER_ReleaseChunkIdList
UPLAY_INSTALLER_UpdateInstallOrder
UPLAY_Init
UPLAY_METADATA_ClearContinuousTag
UPLAY_METADATA_SetContinuousTag
UPLAY_METADATA_SetSingleEventTag
UPLAY_OVERLAY_SetShopUrl
UPLAY_OVERLAY_Show
UPLAY_OVERLAY_ShowFacebookAuthentication
UPLAY_OVERLAY_ShowShopUrl
UPLAY_PARTY_DisablePartyMemberMenuItem
UPLAY_PARTY_EnablePartyMemberMenuItem
UPLAY_PARTY_GetFullMemberList
UPLAY_PARTY_GetId
UPLAY_PARTY_GetInGameMemberList
UPLAY_PARTY_Init
UPLAY_PARTY_InvitePartyToGame
UPLAY_PARTY_InviteToParty
UPLAY_PARTY_IsInParty
UPLAY_PARTY_IsPartyLeader
UPLAY_PARTY_PromoteToLeader
UPLAY_PARTY_RespondToGameInvite
UPLAY_PARTY_SetGuest
UPLAY_PARTY_SetUserData
UPLAY_PARTY_ShowGameInviteOverlayUI
UPLAY_PRESENCE_SetRichPresenceLine
UPLAY_PRESENCE_SetRichPresencePropertyInt32
UPLAY_PRESENCE_SetRichPresencePropertyString
UPLAY_PeekNextEvent
UPLAY_Quit
UPLAY_Release
UPLAY_SAVE_Close
UPLAY_SAVE_GetSavegames
UPLAY_SAVE_Open
UPLAY_SAVE_Read
UPLAY_SAVE_Remove
UPLAY_SAVE_SetName
UPLAY_SAVE_Write
UPLAY_SetGameSession
UPLAY_SetLocale
UPLAY_StartPlatform
UPLAY_Startup
UPLAY_USER_ClearGameSession
UPLAY_USER_ConsumeItem
UPLAY_USER_GetAccountId
UPLAY_USER_GetAccountIdUtf8
UPLAY_USER_GetCdKeyUtf8
UPLAY_USER_GetCdKeys
UPLAY_USER_GetConsumableItems
UPLAY_USER_GetCredentials
UPLAY_USER_GetEmail
UPLAY_USER_GetEmailUtf8
UPLAY_USER_GetNameUtf8
UPLAY_USER_GetPassword
UPLAY_USER_GetPasswordUtf8
UPLAY_USER_GetTicketUtf8
UPLAY_USER_GetUsername
UPLAY_USER_GetUsernameUtf8
UPLAY_USER_IsConnected
UPLAY_USER_IsInOfflineMode
UPLAY_USER_IsOwned
UPLAY_USER_ReleaseConsumeItemResult
UPLAY_USER_SetGameSession
UPLAY_Update
UPLAY_WIN_GetActions
UPLAY_WIN_GetRewards
UPLAY_WIN_RefreshActions

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce070dafef2fd4520282ab3b392be449

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

Exports

Exports

Sections

.text Size: 205KB - Virtual size: 205KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 115KB - Virtual size: 115KB

.RLD0 Size: 14KB - Virtual size: 13KB

.RLD1 Size: 460KB - Virtual size: 460KB

.reloc Size: 14KB - Virtual size: 13KB

d92c47c3b268d408647a85d3774c8ad5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

shell32

winmm

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 80KB

.rdata Size: 28KB - Virtual size: 28KB

.data Size: 5KB - Virtual size: 27KB

.rsrc Size: 311KB - Virtual size: 311KB

RLD0 Size: 5KB - Virtual size: 5KB

RLD1 Size: 284KB - Virtual size: 284KB

.reloc Size: 5KB - Virtual size: 5KB

18252c067b91dda7367a313d5db338a3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 40KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 1024B - Virtual size: 744B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 205KB - Virtual size: 205KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 115KB - Virtual size: 115KB

.RLD0
Size: 14KB - Virtual size: 13KB

.RLD1
Size: 460KB - Virtual size: 460KB

.reloc
Size: 14KB - Virtual size: 13KB

.text
Size: 81KB - Virtual size: 80KB

.rdata
Size: 28KB - Virtual size: 28KB

.data
Size: 5KB - Virtual size: 27KB

.rsrc
Size: 311KB - Virtual size: 311KB

RLD0
Size: 5KB - Virtual size: 5KB

RLD1
Size: 284KB - Virtual size: 284KB

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 40KB - Virtual size: 40KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 1024B - Virtual size: 744B

.reloc
Size: 3KB - Virtual size: 3KB