Mario-Forever-tamindir[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

Mario-Forever-tamindir.exe
Size

20.5MB
MD5

a4aaa075ab1bc404d7fba1eeb6b91452
SHA1

04e6457e1a82b7b774cda372dadc8c1e113f636e
SHA256

6330f21591cb4d4be9ef0141cc8935ae0c353eda86cd06adef1d03a2f15e800e
SHA512

fd50a966c639e5e02dea791beb88a83728581d8fae5d3a2cd8adb21ccc5e3e6394b7cf542954bfe4d9b98b06faa3ea5deeca8b1a8d7f3053c302bc23b9fefb4e
SSDEEP

393216:9YR3I/upY+EFXeEYR69hPu7dVRbiHHjscYxxAVAU4lxokGFho:9GWu2tDthPi1iAcCiVAU4lxoVho

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Mario-Forever-tamindir.exe

Files

Mario-Forever-tamindir.exe
.exe windows:4 windows x86 arch:x86

50e2b7c1364ad5fd75a517961464d4e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
lstrcatA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
ExitProcess
GetCurrentProcess
CopyFileA
lstrcpynA
GetCommandLineA
GetWindowsDirectoryA
CloseHandle
GetUserDefaultLangID
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
GlobalAlloc
CreateThread
CreateProcessA
CreateFileA
GetTempFileNameA
lstrcpyA
lstrlenA
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetSystemDirectoryA
RemoveDirectoryA
lstrcmpA
GetVolumeInformationA
InterlockedExchange
RtlUnwind
lstrcmpiA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
VirtualQuery
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA
MulDiv

user32

CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuA
CreatePopupMenu
GetSystemMetrics
EndDialog
SetWindowPos
SetClassLongA
IsWindowEnabled
DialogBoxParamA
LoadBitmapA
GetClassInfoA
SetDlgItemTextA
GetDlgItemTextA
MessageBoxA
CharPrevA
LoadCursorA
GetWindowLongA
GetSysColor
CharNextA
ExitWindowsEx
CreateDialogParamA
DestroyWindow
SetTimer
SetCursor
IsWindowVisible
CallWindowProcA
GetMessagePos
ScreenToClient
CheckDlgButton
RegisterClassA
SetWindowTextA
wsprintfA
SetForegroundWindow
ShowWindow
SendMessageTimeoutA
FindWindowExA
IsWindow
GetDlgItem
SetWindowLongA
GetClientRect
LoadImageA
GetDC
EnableWindow
PeekMessageA
DispatchMessageA
SendMessageA
InvalidateRect
PostQuitMessage

gdi32

SetTextColor
SetBkMode
SetBkColor
CreateBrushIndirect
DeleteObject
CreateFontIndirectA
GetDeviceCaps

shell32

SHFileOperationA
SHGetSpecialFolderLocation
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA

advapi32

RegEnumValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ord17

ole32

OleInitialize
CoCreateInstance
OleUninitialize

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

snmpapi

SnmpUtilOidCpy
SnmpUtilOidNCmp
SnmpUtilVarBindFree

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsro
Size: - Virtual size: 196KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50e2b7c1364ad5fd75a517961464d4e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

snmpapi

Sections

.text Size: 26KB - Virtual size: 25KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 168KB

.rsro Size: - Virtual size: 196KB

.rsrc Size: 17KB - Virtual size: 20KB

.text
Size: 26KB - Virtual size: 25KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 168KB

.rsro
Size: - Virtual size: 196KB

.rsrc
Size: 17KB - Virtual size: 20KB