RALibretro[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

RALibretro.exe
Size

2.0MB
MD5

1c60ab41e8c4af6527b7060607b6d4bd
SHA1

97cf0c5c4a2af0b8d8128b940a93e0ae3d87608e
SHA256

e2fe410f8b5c9a9326173d51346f5da649991624d4cf6cb1f1ba832877740ded
SHA512

9b5a20dbb683e311fccb32535b26059a2a46a7095b08754f9f8a8d12b5fd6b7eaed0d44f7269b21f4e2d27fe787d824a6acf9817be54e91d2845229305ef4e0c
SSDEEP

12288:1wm9iy4agcuke6fninnDJB8wCq+TaI0Y60tcFhn9q6aQNwh+rjfmOP8JUQ5ofzG:f9iy4agufnMFBJClaI0Y6vDq2fz2I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
RALibretro.exe

Files

RALibretro.exe
.exe windows:5 windows x64 arch:x64

377f118f360d6d1761db0df9766687ff

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

E:\Source\RetroAchievements\RALibretro\obj\Release\x64\RALibretro.pdb

Imports

sdl2

SDL_GetCurrentDisplayMode
SDL_ShowSimpleMessageBox
SDL_SetMainReady
SDL_free
SDL_malloc
SDL_iconv_string
SDL_wcslen
SDL_GameControllerGetStringForButton
SDL_GameControllerGetButtonFromString
SDL_GameControllerGetStringForAxis
SDL_GameControllerGetAxisFromString
SDL_GetKeyFromName
SDL_GetKeyName
SDL_GetKeyFromScancode
SDL_GL_DeleteContext
SDL_GL_SwapWindow
SDL_GL_MakeCurrent
SDL_GL_CreateContext
SDL_GL_GetProcAddress
SDL_GetAudioDeviceStatus
SDL_HapticRunEffect
SDL_HapticUpdateEffect
SDL_HapticNewEffect
SDL_HapticEffectSupported
SDL_GetError
SDL_HapticOpenFromJoystick
SDL_GameControllerClose
SDL_GameControllerGetButton
SDL_GameControllerGetAxis
SDL_GameControllerUpdate
SDL_GameControllerGetJoystick
SDL_GameControllerName
SDL_GameControllerOpen
SDL_IsGameController
SDL_GameControllerAddMapping
SDL_GameControllerAddMappingsFromRW
SDL_JoystickInstanceID
SDL_JoystickGetGUID
SDL_JoystickName
SDL_NumJoysticks
SDL_RWFromFile
SDL_strncmp
SDL_DestroyMutex
SDL_UnlockMutex
SDL_LockMutex
SDL_CreateMutex
SDL_GetWindowWMInfo
SDL_Quit
SDL_Init
SDL_Delay
SDL_SetHint
SDL_EventState
SDL_PollEvent
SDL_ShowCursor
SDL_GL_GetSwapInterval
SDL_GL_SetSwapInterval
SDL_GL_SetAttribute
SDL_GL_LoadLibrary
SDL_DestroyWindow
SDL_SetWindowFullscreen
SDL_GetWindowSize
SDL_SetWindowSize
SDL_GetWindowPosition
SDL_GetWindowFlags
SDL_CreateWindow
SDL_CloseAudioDevice
SDL_PauseAudioDevice
SDL_OpenAudioDevice
SDL_HapticClose

winhttp

WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpenRequest
WinHttpQueryHeaders
WinHttpReadData
WinHttpConnect
WinHttpCloseHandle
WinHttpOpen
WinHttpQueryDataAvailable

opengl32

glDrawArrays
glTexSubImage2D
glBindTexture
glDeleteTextures
glGenTextures
glGetTexImage
glTexImage2D
glTexParameteri
glPixelStorei
glClearColor
glViewport
glGetString
glGetError
glGetIntegerv
glDisable
glEnable
glBlendFunc
glClear

kernel32

SetEndOfFile
MoveFileExW
ReadFile
GetModuleHandleExW
GetModuleFileNameA
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
RtlUnwind
EncodePointer
SetLastError
RaiseException
RtlPcToFileHeader
RtlUnwindEx
InitializeSListHead
GetCurrentThreadId
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SetConsoleCtrlHandler
GetSystemTimeAsFileTime
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
IsProcessorFeaturePresent
PeekNamedPipe
HeapReAlloc
HeapFree
GetProcessHeap
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
SystemTimeToTzSpecificLocalTime
CreateFileW
GetDriveTypeW
GetFileType
HeapQueryInformation
FileTimeToSystemTime
SetFileTime
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
ExitProcess
GetStdHandle
WriteFile
GetACP
HeapAlloc
HeapSize
HeapValidate
GetSystemInfo
Sleep
GetModuleFileNameW
SetCurrentDirectoryA
CreateDirectoryA
GetFullPathNameW
MulDiv
lstrlenW
MultiByteToWideChar
GetLastError
FormatMessageA
FreeLibrary
GetProcAddress
LoadLibraryA
LoadLibraryW
LocalFree
SetErrorMode
GetModuleHandleW
GetFileAttributesW
DeleteFileW
MoveFileW
MoveFileA
WideCharToMultiByte
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
GetCurrentDirectoryW
SetStdHandle
SetFilePointerEx
ReadConsoleW
GetTimeZoneInformation
GetStringTypeW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
CreateThread
WaitForSingleObjectEx
WriteConsoleW
OutputDebugStringW
OutputDebugStringA
CloseHandle

user32

InvalidateRect
DrawMenuBar
GetMenuStringA
GetMenu
MessageBoxW
IsDialogMessageA
SetTimer
GetKeyState
CreateDialogIndirectParamA
PeekMessageA
DispatchMessageA
TranslateMessage
SetWindowTextA
EnableWindow
SystemParametersInfoW
SetWindowLongPtrA
GetWindowLongPtrA
ReleaseDC
GetDC
IsDlgButtonChecked
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
EndDialog
DialogBoxIndirectParamA
SendMessageA
SetWindowTextW
GetDlgItem
ShowWindow
SendMessageW
MessageBoxA
SetMenuItemInfoA
GetMenuItemInfoA
DeleteMenu
AppendMenuA
GetMenuItemCount
GetSubMenu
EnableMenuItem
CreateMenu
SetMenu
LoadMenuA
GetSystemMetrics
GetMessageA

gdi32

GetDeviceCaps

comdlg32

GetOpenFileNameW
GetSaveFileNameW

shell32

SHCreateDirectoryExA

Exports

Exports

retro_get_memory_data

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 447KB - Virtual size: 447KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 365KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 296KB - Virtual size: 295KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

377f118f360d6d1761db0df9766687ff

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

sdl2

winhttp

opengl32

kernel32

user32

gdi32

comdlg32

shell32

Exports

Exports

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 447KB - Virtual size: 447KB

.data Size: 31KB - Virtual size: 365KB

.pdata Size: 50KB - Virtual size: 50KB

.rsrc Size: 296KB - Virtual size: 295KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 447KB - Virtual size: 447KB

.data
Size: 31KB - Virtual size: 365KB

.pdata
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 296KB - Virtual size: 295KB

.reloc
Size: 5KB - Virtual size: 5KB